Cyber Security Specialist - Information Systems Security Officer (ISSO)

Clearance Level
Secret
Category
Cyber Security
Location
San Diego, California

REQ#: RQ125750

Travel Required: Less than 10%
Public Trust: None
Requisition Type: Regular

Responsibilities:

  • Provide on-site CS/IA technical expertise in a broad array of areas, including CS and network security policy, and Risk Management Framework (RMF).
  • Conduct risk analyses from vulnerability, compliance scans, or other audit activity.
  • Coordinate/lead along with the Government CS lead and the Program of Record (PoR) PM assigned Authority to Operate (AtO) and/or Authority to Proceed (AtP) efforts and make recommendations to improve the processes.
  • Develop and/or assist in the development of, but not limited to, , System Security Plans (SSP),  , Security Assessment Plan (SAP), Security Assessment Report (SAR) Risk Assessment Report (RAR), Plan of Action and Milestones (POAM) System Specific Policies and Procedures, Configuration Management Plans (CMP), Contingency Operations Plan (CONOPS), Test Results, Business Impact Analyses (BIA), and the Security Impact Analyses (SIA).
  • Support security testing and analysis of Information Management/Information Technology (IM/IT) capability requests (applications, systems, networking devices) being introduced to the Navy Enterprise.
  • Support the performance of security testing and evaluation of applications against applicable security criteria using common tools, including ACAS (Assured Compliance Assessment Solution), SCAP (Security Content Automation Protocol) Compliance Checker, and DISA (Defense Information Systems Agency) Security Technical Implementation Guides (STIGs).  
  • Produce security testing reports, including Security Risk Assessment Reports detailing the findings noted during testing.
  • Assist programs with completing security documentation to meet assessment and authorization requirements.

Qualifications:

  • 6 years of related experience.
  • Ability to obtain and maintain an Active U.S. Government Secret Clearance.  Be able to pass a security investigation and meet eligibility requirements for access to classified information.
  • Experience executing the NIST Risk Management Framework.
  • Supporting the security Assessment and Authorization/ATO process.
  • Experience with reviewing, comprehending and documenting findings from ACAS (Assured Compliance Assessment Solution) Reports.
  • Experience with SCAP (Security Content Automation Protocol).
  • Experience with performing cyber security risk assessments and identifying, verifying, and consolidating specific vulnerabilities, causes, analysis of alternatives and identification of appropriate corrective actions from each risk assessment conducted.
  • Experience with evaluation of Security Technical Implementation Guides (STIGs) to determine applicability to systems and assets.
  • Functional expertise with Microsoft Office suite of products, including Word, Excel, PowerPoint, Visio, and Project.

Minimum Certifications:

  • Navy Cyber Security Workforce (CSWF) baseline certification at IAM Level I or a higher-level certification is required.
  • Acceptable certifications include Security+ CE, CAP, CND, GSLC, Cloud+, and HCISPP.
  • IA Contractor Training and Certification and Computing Environment (CE) certification may be required at the task order level.

Preferred Qualifications:

  • BA or BS degree from an accredited institution in related field (e.g., Management Information Systems, Information Technology, Computer Science, Math, Business, Engineering, or Physical Science, etc.)
  • Prior experience with DoD Information Assurance Certification and Accreditation Program (DIACAP).
  • Experience with eMASS and/or Vulnerability Remediation Asset Manager (VRAM) would be beneficial.
  • IT project management experience supporting Navy or DoD network systems.
  • Experience with DoD Architecture Framework (DoDAF) standards and assessments of enterprise information security architecture, processes, procedures, activities, and operations.
  • Excellent oral and written communication skills, including drafting, reviewing, and editing technical graphs, briefs, or documents.
  • Evidence of being detail oriented with strong critical thinking in areas of IT process analysis / process improvement.
  • Possesses Good Team Skills having the ability to coordinate and work well with others.

About Our Work

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

COVID-19 Vaccination

GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.