Information Systems Security Officer (ISSO) (15.24)

Information Systems Security Officer (ISSO) (15.24)

OCT Consulting is a business management and technology consulting firm that provides support to Federal Government clients. We provide consulting services in the areas of Strategy, Process Improvement, Change Management, Program and Project Management, Acquisition/Procurement, and Information Technology.

Responsibilities and Duties

OCT currently has an opening for an Information Systems Security Officer (ISSO) to work with our federal client - MacDill Air Force Base (MAFB) to support the security posture of classified and unclassified systems by conducting technical security assessments, managing compliance documentation, and advising Government Information Systems Security Managers and Authorizing Officials.  The contractor shall lead and perform IT security control assessments across United States Air Force systems at MacDill AFB, ensuring security controls are implemented, tested, and documented in accordance with RMF and AF cybersecurity mandates. This position is contingent on contract award.

Day to day responsibilities include:

• Conduct system security control assessments and risk evaluations in accordance with NIST SP 800-53, DoDI 8500.1, and DoDI 8510.01 and produce Security Assessment Reports (SAR).
• Identify key stakeholders in Assessment & Authorization (A&A) efforts and ensure system documentation reflects current system security configurations to include hardware and software components, data flow, interconnections, ports, protocols, and services.
• Assist in preparation and review of documentation to include System Security Plans (SSPs), Risk Assessment Reports (RAR), Security Controls Traceability Matrix (SCTM), and other A&A artifacts.
• Support compliance with Air Force cyber directives and assist in POA&M development and vulnerability remediation.
• Assist with pre-assessment preparation.
• Perform RMF activities to achieve Authority to Operate (ATO).
• Provide recommendations on security authorization and assess impact values for confidentiality, integrity, and availability.
• Use Air Force approved RMF tools and methods for assessment and documentation.
• Ensure risk management is integrated into technical, physical and administrative controls throughout the network, system, database, and application lifecycle.
• Ensure security control assessments are completed for each information system and ensure controls are working as intended and these controls protect the confidentiality, integrity and availability of IT resources at the appropriate levels.

Requirements

Qualifications/Requirements

• Must be a U.S. Citizen.
• Must hold an active DoD Secret or above clearance.
• Must be able to work on-site at MacDill AFB (3 days/week minimum).
• Previous experience supporting ISSO functions within Air Force or DoD environments.
• Experience in Air Force A&A processes, including SNAP submissions and configuration change processes.
• Familiarity with Air Force communications squadron operations and enclave architecture.
• Understanding of Air Force IA roles, DoD 8570.01M requirements, and cross-domain solution validation.
• Familiarity with DoD/DAF publications, end user policies and training requirements i.e., Comply-to-connect policy
• Strong verbal and written skills required providing management status reports and document system changes.
• Familiarity with DoD/DAF compliance methods, such as STIGs and CCRIs.
• Familiarity with DoD/DAF publications, end user policies and training requirements i.e., Comply-to-connect policy.
• Ability to communicate effectively with the Airmen and write SOPs that are intelligible to all audiences.
• Ability to interpret complex technical ideas from technicians into documentation that can be understood by non-technical supervisors and commanders.
• Knowledge and solid understanding of common Microsoft Office365 tools.
• 2+ years of experience in cybersecurity compliance or assessment.
• Bachelor's degree in Cybersecurity, Information Assurance, or related field.
• IAT Level II or IAM Level I certification.

Benefits

Benefits

OCT offers competitive compensation packages and a full suite of benefits which includes:

• Medical, Dental, and Vision insurance
• Retirement savings 401K plan provided by an industry leading provider with 3% employer contributions of the employee’s gross salary
• Paid Time Off and Standard Government Holidays
• Life Insurance, Short- and Long-Term disability benefits
• Training Benefits

Salary Range: $45,000- 140,000 yearly commensurate with experience, education, etc.

About OCT Consulting

OCT Consulting LLC is a minority-owned, Small ​Disadvantaged Business (SDB) providing professional services and information technology solutions to the Federal government and commercial clients. Founded in 2013, we bring the advantage of agility in operations along with a management team with a track record of leading successful engagements at major Federal government agencies.

At OCT, we are committed to ensuring equal opportunity for all individuals, recognizing that merit and qualifications are the foundation of our hiring, promotion, and development practices. We believe in creating a work environment where employees can thrive based on their abilities, skills, and achievements. Our practices ensure fair treatment and equal access to opportunities for all, regardless of race, ethnicity, gender, sexual orientation, age, abilities, or other personal characteristics. We are dedicated to providing career growth and professional development based on individual merit and fostering a workplace where everyone’s contributions are valued and recognized.