Description

Location: Herndon, VA (SCIF)

This is a full-time position based in a SCIF, with flexible hours.

We are currently seeking an experienced Information Systems Security Officer (ISSO) to uphold the integrity and compliance for an Intel Community (IC) customer based in Herndon, VA. Collaborating closely with the on-site team, you will maintain operational security, developing robust security documentation, and actively monitoring for potential threats. If you're passionate about cybersecurity and possess a strong background in information security, we welcome you to join our team!

Responsibilities:

• Act as the primary advisor on all information assurance matters related to classified information systems (IS) within your scope.
• Ensure IS compliance with agency information security policies, standards, and procedures to maintain operational security posture.
• Develop and maintain Assessment & Authorization (A&A) documentation, including System Security Plan (SSP), Security Test Plan (STP), Security Controls Traceability Matrices (SCTM), and Plan of Actions and Milestones (POA&M), in accordance with Risk Management Framework (RMF) processes.
• Support IS security self-assessment activities, including the development of SCTM and STP required for A&A security packages.
• Conduct security auditing of information and events within assigned systems or applications, analyzing security configuration settings and audit logs, and identifying potential threats using tools such as Splunk.
• Report IS security incidents and ensure compliance with vulnerability requirements.
• Ensure compliance with DISA STIGs and maintain operational compliance.
• Collaborate with software developers and architects to address security requirements and policies.
• Manage POA&Ms, develop schedules, and coordinate engineering actions to address open findings.
• Support Continuous Monitoring of operational systems, monitoring and auditing for proper use.
• Review weekly information systems security audits and coordinate corrective actions with project teams.

Requirements

• Active TS/SCI CI Poly security clearance with an original adjudication or periodic reinvestigation within the last 6 years.
• DoD Approved 8570 IAT/IAM Level II Baseline Certification (e.g., Security+).
• Bachelor's degree with 10 years of relevant experience or Master's degree with 8 years of relevant experience, or equivalent experience.
• Minimum of four years of experience as an IA/Security specialist.
• Understanding of the RMF process and practical experience applying NIST 800-53 security control requirements.
• Hands-on experience with risk management tools such as Xacta or EMASS.
• Experience performing the defined responsibilities.

Desired Qualifications:

• IAM DoD level 3 certification (CISM, GSLC, CISSP, or CISSP Associate).
• Practical experience with Splunk and vulnerability assessment tools such as ACAS or Tenable Nessus.
• Knowledge of DoD 8510.01.

Choisys is a proud Service-Disabled Veteran-Owned Small Business (SDVOSB) and a SBA certified 8(a) Business Development Program participant. We deliver Higher Value through customer-centric solutions that drive innovation and adapt to evolving mission requirements - with well documented success on numerous programs within the Civilian, Defense, and Intelligence communities. We are experts in IT Service Delivery processes and industry best practices, continuously integrating the framework of our ISO 9001, 20000, and 27001 certifications to achieve service excellence. Choisys combines empirical methodologies and lessons learned with leading-edge solutions to solve complex problems, provide ongoing support, and deliver quantifiable benefits. Our mission focus areas include, but are not limited to, PMO Support, Health IT, Education + Learning, Infrastructure Management, and Cyber Security.

Choisys Technology, Inc. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status. The candidate must have the ability to sit for long periods of time, ability to discern colors, ability to read and monitor a computer screen for an extended period.

Choisys is an E-Verify employer. E-Verify is an Internet based system operated by the Department of Homeland Security (DHS) in partnership with the Social Security Administration (SSA) that allows participating employers to electronically verify the employment eligibility of their newly hired employees in the United States. Please click on the following links:

E-Verify Participation Poster:

For more information visit the USCIS' website: