We are seeking an experienced Information Systems Security Officer. The individual assigned to this position will have various responsibilities that relate to the protection of Classified and Critical Unclassified Information (CUI) and other security interests which may include: special nuclear material; and various types of proprietary information.
Serve as Information Systems Security Officer (ISSO)
Performs computer security functions as assigned, including preparation of System Security Plans (SSPs), computer security briefings, computer/network security audits and inventory
Supports security authorization activities in compliance with the Risk Management Framework process (RMF)
Provide guidance to other team members for implementing, and enforcing information systems security policies, standards, and methodologies
Evaluate security solutions to ensure they meet security requirements for processing classified information
Enforce information systems security policies, standards, and methodologies
Maintain operational security posture for an information system or program
Provide CM for security-relevant information system software, hardware, and firmware
Assist with the management of security aspects of the information system and perform day-to- day security operations of the system
Participate in the development or revision of security related policies and procedures
Manage and control changes to the system and assessing the security impact of those changes
Generate and maintain required IS security documentation including Systems Security Plans (SSP), Continuous Monitoring Plans, Security Control Traceability Matrices, Risk Assessments, Plan of Action & Milestones (POA&M), equipment specifications, practices and procedures.
Interact with customers, IT staff, and high-level corporate officers
9+ years security experience or Bachelor’s Degree with 3+ years of experience
Must possess active Secret clearance
Experience in supporting Information Technology (IT) within a classified environment
Must possess working knowledge of and experience with NISPOM, ICD 503, CNSS 1253, and/or NIST SP 800 series
Knowledge of technical standards relating to systems security; experience administering Windows operating systems, experience with large-scale server systems, system virtualization and other related peripherals
DoD 8570/8140 compliant with a minimum certification of Security +; CISSP, CAP, CISA, CEH, or CISM
Proficient in the use of MS Office Suite
Experience bringing in and supporting a SIPR enclave
Well organized, able to multi-task and handle competing priorities and deadlines, detail oriented
Experience in using eMASS
Experience with security hardening, assessment and reporting tools such as: SCAP, STIG, ACAS, SPLUNK, and Nessus
COVID-19 Vaccination Requirement: To protect the health and safety of its employees and to comply with customer requirements, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.