Information Security Systems Officer

At Weston Solutions, Inc. you will do meaningful work and make valuable contributions. Employee ownership at Weston is a path to professional growth and access to diverse opportunities in a highly connected community that works together across key service areas to make a difference in the environment. Weston has continued to evolve and adapt to our changing world as a premier provider of environmental and infrastructure services for over sixty years. In both the public and private sectors our teams help identify, solve, mitigate, and manage critical environmental issues to help clients achieve a more sustainable future.Weston is seeking an Information Systems Security Officer (ISSO).  In this role you will assist in developing and maintaining System Security Plans (SSPs), Plan of Action and Milestones (POA&Ms), and Risk Assessment Reports (RARs) in accordance with NIST SP 800-53 controls. This position is primarily on-site, with occasionally remote work flexibility. You will ensure systems are operated, maintained, and disposed of in accordance with security policies and procedures as outlined in the SSP. The ideal candidate is a dedicated and knowledgeable ISSO with a passion for security and compliance. They thrive in a collaborative environment and are committed to delivering high-quality work. Location: West Chester, PAExpected Outcomes:

• Assist with the development and maintaining an (ATO) Authorization to Operate, System Security Plans (SSPs), POA&Ms, and RARs.
• Execute RMF processes and procedures, including Continuous Monitoring (ConMon) of security controls.
• Assist with the sanitization of equipment and manage hardware/software inventories.
• Attend change control board (CCB), Incident Response and Contingency Plan meetings.
• Write standard operating procedures (SOP) and security in depth (SID) plans, as well as security policies.
• Work closely with ISSMs, IT staff, and program security personnel to ensure adherence to security policies.
• Conduct auditing functions for information systems and networks, identifying deviations from acceptable configurations.
• Provide cybersecurity education and training for all system users on appropriate risk mitigation strategies.
• Notify the ISSM of any changes to a system that could affect authorization.
• Report all security-related incidents to the ISSM.
• Perform other security duties as required. 

Knowledge, Skills & Abilities:

• Must be a US citizen.
• Current/Active DOD Secret clearance and the ability to obtain and maintain Secret clearance.
• Bachelor's degree from an accredited university or college OR associate degree with a minimum of 2 years of professional experience OR High School Diploma with a minimum of 4 years of professional experience in Computer Science, Information Systems, Information Assurance, or Information Technology.
• Experience with Windows 10/11 Operating Systems (OS).
• Strong knowledge of Microsoft Office suite.
• Working knowledge of Group Policy managing and enforcing Group Policy Objects (GPOs) to standardize and secure user and computer settings.
• Working knowledge monitoring and analyzing system events recorded in the Event Viewer. 
• Problem solving and troubleshooting skills.
• Strong attention to detail and organization skills.

Preferred Qualifications:

• Must be a team player and able to work within all levels of a project team.
• Working knowledge of policies and guidance including the National Industrial Security Program Operating Manual (NISPOM), ICD 503, and/or DCSA Assessment & Authorization Process Manual (DAAPM).
• Working knowledge of Security Content Automation protocol (SCAP).
• Working knowledge of DISA Security Technical Implementation Guide (STIG).
• CompTIA Security+ certification or higher.
• Strong oral and written communication skills.
• Strong interpersonal and leadership skills.
• Experience using Nessus Vulnerability Scanner.
• Ability to lead initiatives of moderate scope and impact.
• Ability to coordinate several projects simultaneously.
• Proven analytical and organizational ability.

We fully invest in our people: Weston provides a generous, comprehensive benefits package program that offers employees high value options with solid financial protection, meeting the personal needs of its people and their families.

• Medical, Dental, Vision, 401K with base and matching employer stock contributions.
• Paid time off includes personal, holiday and parental.
• Life and disability plans.
• Critical illness and accident plans.
• Work/Life flexibility.
• Professional development opportunities.

Compensation will vary based upon experience, education, skill level, and other compensable factors.