Information System Security Officer (23-027)

CTI is looking for an information security professional to oversee and maintain the security posture of Department of Defense systems for a customer at INDOPACOM. As an ISSO, you will be part of a professional security team that is responsible for managing the security aspects of an information system distributed across multiple locations to meet mission requirements.

The ISSO will be responsible for ensuring the appropriate operational security posture is maintained for an information system and, as such, works in close collaboration with the ISSM and ISO. Appointed in writing by the authority at a site responsible for the information system, the ISSO shall have the detailed knowledge and expertise required to manage the security aspects of an information system and CTI organization and the day-to-day security operations of a system. Additional responsibilities such as physical and environmental protection, personnel security, incident handling, and security training and awareness.

In close coordination with the ISSM and ISO, the ISSO will play an active role in monitoring a system and its environment of operation, including:

• Developing and updating the SSP
• Managing and controlling changes to the system
• Assessing the security impact of those changes

Responsibilities of the ISSO include, but are not limited to:

• Assist the ISSM in meeting their duties and responsibilities. The ISSO shall assume ISSM responsibilities in the absence of the ISSM.
• Ensure systems are operated, maintained, and disposed of following security policies and procedures outlined in the security authorization package.
• Attend required technical and security training (e.g., operating system, networking, security management) relative to assigned duties.
• Maintain required IA certifications.
• Ensure all users have the requisite security clearances, authorization, and need-to-know and know their security responsibilities before granting access to the IS.
• Report all security-related incidents to the ISSM.
• Conduct periodic reviews of information systems to ensure compliance with the security authorization package; h. Serve as a member of the CCB if designated by the ISSM.
• Coordinate any changes or modifications to a system's hardware, software, or firmware with the ISSM and AO/DAO before the change.
• Formally notify the ISSM and AO/DAO when changes might affect system authorization.
• Monitor system recovery processes to ensure security features and procedures are restored and functioning.
• Ensure all IS security-related documentation is current and accessible to properly authorized individuals.
• Ensure audit records are collected, reviewed, and documented (to include any anomalies).

This position is located at Camp Smith in Hawaii.

Necessary skills and experience

• DoD 8570 Compliance for Information Assurance Technician (IAT) Level II: 3 years in Information Assurance technology or a related area.
• Experience with Linux, Windows, Firewalls, Switching and Routing, Virtual Machines (VMs), Tenable Security Center and Nessus (ACAS), Risk Management Framework (RMF).
• After being hired, must obtain a Assured Compliance Assessment Solution (ACAS) certification within 6 months of onboarding as it is required.
• Must have an active U.S. government Top Secret security clearance and must be SCI eligible- U.S. citizenship is required to obtain security clearance.
• Security , GSLC, GSEC, or other DoD approved 8570 Baseline Certification in the Information Assurance Management (IAM) Level I or Information Assurance Technical (IAT) Level II categories.

Beneficial skills and experience

• RedHat 7 and 8, Windows 10, Dell switches, Palo Alto firewalls, Kubernetes, Containerization, Joint Special Access Program (SAP) Implementation Guide (JSIG).
• Typically requires a bachelor’s degree or equivalent experience and minimum 5 years prior relevant experience, or an Advanced Degree in a related field and minimum 3 years’ experience.

CTI is a rapidly growing company offering the following:

• Medical, dental and vision insurance
• H.S.A. (partially funded by CTI) and Flex Spending
• Company-paid life insurance/AD&D and disability insurance
• Optional supplemental life, critical illness, hospital indemnity and accident insurances
• Paid vacation, sick leave and holidays
• 401k plan with Safe Harbor contribution
• Tuition reimbursement/professional training options
• Employee Assistance Program
• Travel Assistance
• Financial Planning Assistance
• Voluntary Pre-Paid Legal
• Flexible schedules with telecommuting options
• Service awards program

CTI is an Equal Opportunity employer and shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.