Isso

Job Title : ISSO SpecialistJob Location : Lexington MA 02420Onsite Requirements : Information AssuranceRMFComplianceJob Description : This position assists in the security configuration and management of collateral classified systems and networks in a variety of traditional and virtual environments including Linux, Unix, Sun, and Windows.

Assists the Information System Security Manager (ISSM) in the development and maintenance of System Security Plans (SSP) and associated artifacts such as the Plan of Action & Milestones (POA&M), Risk Assessment Report, and Continuous Monitoring Strategy.

Ensures systems are operated, maintained, and disposed of in accordance with organizational security policies and procedures.

Collects, analyzes, and stores system audit records.Conducts network, system, and application vulnerability scanning, configuration assessment, and remediation.

Prepares for and participates in periodic organization compliance assessments.Ensures account management documentation is complete and updated.

Maintains configuration management documentation (change tracking, maintenance logs, etc.)Candidate must have strong interpersonal skills and be able to manage stress in a professional manner.

Candidate must be knowledgeable in computer security principles and policies, including : the Risk Management Framework (RMF), Security Technical Implementation Guides (STIGs), National Industrial Security Program Operating Manual (NISPOM), and Defense Counterintelligence and Security Agency (DCSA) Assessment and Authorization Manual (DAAPM).

Candidate must possess (and maintain) a DoD 8570.01M IAM I baseline certification (Security etc.)Process will consist of an initial phone or Zoom screen and may be followed by an extensive zoom interview with the team members.

16)3 yearsAssessment and Authorization3 yearsAuthorizing Systems (CS106.16)3 yearsCategorization of the System (CS102.16)3 yearsContinuous Monitoring (CS200.

16)3 yearsImplementation of Controls (CS104.16)3 yearsMonitoring Security Controls (CS107.16)3 yearsNIST 8001713 yearsNIST 800533 yearsNIST SP 800373 yearsRisk Management Framework (RMF)3 yearsSecurity Standards, best practices, scanning tools (Nessus, Forte, SonarQube)3 yearsSelecting Security Controls (CS103.

16)3 yearsSoftware ToolsSIEM tools (Splunk, SolarWinds, OpenNMS, Nagios)3 yearsNice to HaveSecurityNessus Security Center (or ACAS)3 years Due to the nature of the work, a United States Government Clearance is required to be eligible for the position.

Last updated : 2024-06-08