Information Systems Security Officer - BP

Information Systems Security Officer (ISSO) shall possess the following capabilities:

• Provide support to senior ISSOs for implementing, and enforcing information systems security policies, standards, and methodologies
• Assist with preparation and maintenance of documentation
• Assist in the evaluation of security solutions to ensure they meet security requirements for processing classified information
• Assist with the CM for information system security software, hardware, and firmware
• Maintain records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc. to include system upgrades
• Propose, coordinate, implement, and enforce information systems security policies, standards, and methodologies
• Develop and maintain documentation for C&A in accordance with ODNI and DoD policies
• Provide CM for security-relevant information system software, hardware, and firmware
• Develop system security policy and ensures compliance
• Evaluate security solutions to ensure they meet security requirements for processing classified information
• Maintain operational security posture for an information system or program
• Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational IA posture for a system, program, or enclave
• Develop and update the system security plan and other IA documentation
• Assist with the management of security aspects of the information system and perform day-to-day security operations of the system.

Positions are available at the following two levels:

ISSO Level 1

Five (5) years experience as an ISSO on programs and contracts of similar scope, type, and complexity is required. Experience is to include at least one (1) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools. Bachelor’s degree in Computer Science or related discipline from an accredited college or university is required. DoD 8570 compliance with IAT Level I or higher is required. Four (4) years of additional experience as an ISSO may be substituted for a bachelor’s degree.

ISSO Level 3

Administer the user identification and authentication mechanism of the Information System (IS) Obtain C&A for ISs under their purview Provide support for a program, organization, system, or enclave’s information assurance program Plan and coordinate the IT security programs and policies

Manage and control changes to the system and assessing the security impact of those changes Manage and control changes to the system and assessing the security impact of those changes Serve as the Approval Authority for ISs under their control

Provide daily oversight and direction to contractor ISSOs Serve as an ISSM

Interact with customers, IT staff, and high-level corporate officers to define and achieve required IA objectives

Qualifications:

Fifteen (15) years’ experience as an ISSO on programs and contracts of similar scope, type, and complexity is required. Experience is to include at least three (3) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools. Bachelor’s degree in Computer Science or related discipline from an accredited college or university is required. DoD 8570 compliance with Information Assurance Management (IAM) Level I or higher is required. Four (4) years of additional experience as an ISSO may be substituted for a bachelor’s degree.