THE CENTECH GROUP

Information Systems Security Officer (ISSO)

US-DC
Job ID
2045

Overview

THE CENTECH GROUP, Inc. (CENTECH®) is seeking an Information Systems Security Officer (ISSO) to be part of the Federal Highway Information Technology Support Services (FITSS) III team. FITSS IIII will provide the Federal Highway Administration (FHWA) with software development and integration, development testing, configuration management support, production support and software maintenance, information technology (IT) program management support, integrated communications and video teleconference (VTC) support, capital planning support, infrastructure support, customer service support (Tier II), SharePoint, Web support and IT security. The person in this position will be responsible for managing and maintaining the cyber security posture of FHWA's IT infrastructure and software applications.  

This bid position is contingent upon award and the qualified candidate may be selected as key personnel. Work location is Washington, D.C.

Responsibilities

  • Research, develop, implement, test and review an organization's information security in order to protect information and prevent unauthorized access
  • Inform users about security measures, explain potential threats, install software, implement security measures and monitor networks
  • Ensuring systems are operated, maintained, and disposed of in accordance with internal security policies and practices outlined in the security plan
  • Ensuring that all users have the requisite security clearances, authorization, and need-to-know, and are aware of their security responsibilities before granting access to the information system (IS)
  • Reporting all security-related incidents to the Information Systems Security Manager (ISSM)
  • Initiating, with the approval of the ISSM, protective or corrective measures when a security incident or vulnerability is discovered.
  • Developing and maintaining System Security Plans (SSP)
  • Conducting periodic reviews to ensure compliance with the SSP
  • Ensuring configuration management (CM) for security-related IS software, hardware, and firmware is maintained and documented
  • Ensuring that system recovery processes are monitored to ensure that security features and procedures are properly restored.
  • Ensuring all IS security-related documentation is current and accessible to properly authorized individuals
  • Formally notifying the ISSM and authorizing official when changes occur that might affect accreditation
  • Ensuring that system security requirements are addressed during all phases of the system life cycle
  • Following procedures developed by the ISSM, authorizing software, hardware, and firmware use before implementation on the system

Qualifications

  • Bachelor of Science/Bachelor of Arts degree in Computer Science, Information Systems, Software Engineering or other related analytical, scientific or technical discipline
  • Ten (10) years of experience in IT security, including certification and accreditation (C&A) and/or IT security risk analysis, preferably in support of the federal government
  • At least one (1) year C&A, U.S. Department of Defense (DoD) IT Security Certification and Accreditation Process (DITSCAP) and/or Do It Yourself Vulnerability Assessment Program (DITYVAP) experience
  • U.S. Citizenship and able to pass a government background for a Public Trust Clearance
  • Certified Information Systems Security Professional (CISSP) certification required
  • IT Infrastructure Library (ITIL) Foundation certified preferred
  • Experience in all aspects of information technology including application development, operations, IT security, service desk, network, telecommunications, and end user services
  • Demonstrated experience in meeting project milestones within funding parameters
  • Demonstrated experience in solving complex problems
  • Demonstrated experience with Microsoft Project
  • Demonstrated communication experience to include oral, written, and formal presentation skills
  • Knowledge of federal government C&A practices and policies, particularly Federal Information Security Management Act (FISMA), National Institute of Standards and Technology NIST) SP 800-53, and U.S. Department of Homeland Security (DHS) 4300.
  • Experience with C&A tools preferred, such as RMS, TAF / Trusted Agent FISMA, vulnerability assessment scan reports, etc.
  • Effective written and oral communication skills

THE CENTECH GROUP, Inc. is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. EOE M/F/Disabled/Veteran.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed