Information Systems Security Officer (ISSO)

Overview

Bowhead seeks a ISSO to join our team supporting NSWC Corona – Corona Division.

The ISSO will work directly with the Navy Qualified Validator and site Information Systems Security Manager (ISSM) to analyze complex and unique technical support assignments and collaborate with other cyber security engineers, system administrators, and program analysts within a scaled agile environment. The ISSO will work directly to support and manage all eMASS packages in the NSWC Corona portfolio

Responsibilities

• Support all RMF packages for the NSWC Corona – Corona Division.• Support site Information Systems Security Manager (ISSM) in compliance reviews of systems.• The ISSO may be called on to author, review and critique perspective artifacts and required RMF documentation • Work with ISSM to support all cybersecurity actions for division.• Contribute to the development of cybersecurity policies and procedures. • Responsible for reviewing and assessing cybersecurity risks.• Responsible for the management of Risk Management Framework (RMF) best practices to attain/ maintain continuous Authority-to-Operate (ATO) capability.• Ensure the cybersecurity posture of assigned systems.• Research National Institute of Standards and Technology (NIST), DoD and Navy Guidance on Cybersecurity and related topics in response to requests for data or information related to cybersecurity topics, posture, impacts, or issues and reviews. • Review architectures and designs for cybersecurity compliance and provide recommendations. • Ability to perform and troubleshoot security measures including analysis, periodic testing, evaluation, verification, accreditation, and review of information system installations at appropriate classification levels.• Review results in a cybersecurity impact assessment report when required.• Compile, review, and manage system POA&Ms.• Other duties as assigned.

Qualifications

• Bachelor of Science degree in Information Systems, Engineering, Computer Science, or Business or similar field (MS preferred)

• Minimum of seven (7+) years of experience to include the following:• Nessus/ACAS Scanner Experienceo ACAS dashboard, setup, ability to run scans, ability to troubleshoot scanner and scanner results• NIST/STIG Experienceo Experience with STIG Viewer/validation/analyzing and compiling results into a POA&M• RMF Experience o Experience with eMASS, Artifacts, Test Plans, Control Assessments, and compiling tools to process and collate test results

• Security + (IAT Level II Certified)

Must currently hold a security clearance at the minimum Secret level.

Physical Demands:• Must be able to lift up to 25 pounds• Must be able to stand and walk for prolonged amounts of time• Must be able to twist, bend and squat periodically

#LI-DNI

MN1