Information System Security Officer

Clearance Level
None
Category
Information Security
Location
Germantown, Maryland

REQ#: RQ129061

Travel Required: Less than 10%
Public Trust: NACI (T1)
Requisition Type: Regular

Information System Security Officer will support developing and implementing information system security programs and ensuring information system security compliance. As a member of the ISSO Team, perform the following tasks: Draft, review, and update Risk Management Framework (RMF) artifacts required for FISMA Compliance Coordinate with Operations and Maintenance (O&M) teams to drive compliance with Security Controls and requirements Work with System Owners and controls assessors to draft achievable Plans of Actions & Milestones (POA&Ms) to remediate findings Monitor and reporting on POA&M remediation activities Serve as a Point of Contact (POC) for cyber security questions Advise System Owners on cyber security best practices Provide clarification on cyber security policies and regulations Coordinate with Information System Security Managers (ISSMs) and Operations and Maintenance (O&M) teams in support of account approvals Coordinate with O&M and Identity Credentials & Access

Additional responsibilities may include:

  • Monitors and analyzes Intrusion Detection Systems (IDS) to identify security issues for remediation
  • Recognizes potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information
  • Evaluates firewall change requests and assesses organizational risk
  • Communicates alerts to agencies regarding intrusions and compromises to their network infrastructure, applications, and operating systems
  • Assists with implementation of countermeasures or mitigating controls
  • Conducts regular audits to ensure that systems are being operated securely, and information systems security policies and procedures are being implemented as defined in security plans
  • Develops, tests, and operates firewalls, intrusion detection systems, enterprise antivirus systems and software deployment tools
  • Safeguards the network against unauthorized infiltration, modification, destruction, or disclosure
  • Researches, evaluates, tests, and implements new security software or devices
  • Conducts investigations of information systems security violations and incidents, reporting as necessary to management
  • Implements, enforces, communicates, and develops security policies or plans for data, software applications, hardware, telecommunications, and information systems security education/awareness programs
  • Performs periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and external Web integrity scans to determine compliance
  • Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information
  • Provides information assurance project management, technical security staff oversight, and development of mission-critical technical documents
  • Ensure compliance with regulations and privacy laws
  • Develops materials for computer security education/awareness programs
  • Responds to queries and requests for computer security information and reports
  • Provides recommendations to clients on information assurance engineering standards, implementation dependencies, and changing information assurance related technologies
  • May coach and provide guidance to less-experienced professionals

EDUCATION AND EXPERIENCE: BA/BS or equivalent, 10+ years of experience


About Our Work

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

COVID-19 Vaccination

GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.