Information Systems Security Officer

Mantis Security Corporation

Reston, Virginia

JOB DETAILS
SKILLS
Analysis Skills, Applications Security, Computer Security, Concept of Operations (CONOPS), Documentation, Employee Benefits, Functional Testing, Information Technology & Information Systems, Information/Data Security (InfoSec), International Classification of Diseases (ICD), Mantis Bug Tracking Software, Operational Audit, People Management, Project Engineering, Risk Management Framework (RMF), Schedule Development, Security Analysis, Security Policy, Sensitive Compartmented Information (SCI), Systems Maintenance, Technical Leadership, Test Plan/Schedule, Testing, Top Secret Clearance, U.S. National Institute of Standards and Technology (NIST)
LOCATION
Reston, Virginia
POSTED
2 days ago

What you will be doing:

Mantis Security is seeking for immediate placement a highly qualified and technical Information Systems Security Officer (ISSO) to lead the Assessment and Authorization (A&A) for multiple analytic mission systems. The ISSO must be proficient in standard A&A activities, and will generate and maintain the complete security body of evidence (BoE) while leading the A&A activities according to the Risk Management Framework (RMF).

Duties Include:

  • Support to the Assessment and Authorization (A&A) and all Risk Management Framework (RMF) processes (ICD 503, CNSSI-1253, NIST 800-37, NIST 800-53, etc.) for all multiple information systems

  • Ensure validity and accuracy review of all associated security documentation

  • Create and maintain System Security Plan (SSP), Security CONOPS, Security Test Plan (STP) and Security Test Procedures, document and maintain implementation details of NIST 800-53 security controls

  • Plans and performs security functional testing, creates and maintains STPs, supports security assessments

  • Utilize Xacta to maintain Security Body of Evidence (BoE) files and to work through the A&A process for each system release cycle

  • Provide guidance on the application of security policy, identifying security requirements, providing technical guidance for the satisfaction of requirements, reviewing and determining the adequacy of required documentation

  • Manage the plan of action and milestones (POA&Ms) by working with project managers and engineers to develop schedules and engineering actions that mitigate open findings

  • Monitor and audit operational systems for proper use

Must have:

  • Bachelor’s degree with 9 years of experience, or Master’s degree with 7 years of experience, or no degree with 13 years of experience

  • DoD 8570 IAT Level II certification requirements (one of CCNA Security, CySA+, GICSP, GSEC, Security+ CE, or SSCP)

  • Must have current TS/SCI eligibility or Active TS/SCI

  • Must be able to obtain a CI polygraph

Nice to have:

  • Proficiency with Xacta IA Manager (or Xacta 360)

We believe that our strength is in our employees. We offer employees the chance to work with great people on projects of high importance and are committed to providing the best culture that foster’s technical innovation and personal growth. To help our staff achieve a productive work-life balance, we offer a full range of highly competitive benefits for our employees and their families. For more information visit our website at https://www.mantissecurity.com

About the Company

M

Mantis Security Corporation