Mantech

Currently, ManTech is seeking a motivated, career and customer-oriented Information Systems Security Officer (ISSO) onsite at Bolling AFB, Washington, D.C.

The ISSO will Perform Risk Management Framework (RMF) implementation for a DoD organization, support updates resulting from the DoD audits, and support system security control monitoring and improvements.

. 

Responsibilities: 

• Work closely with the DoD Organization System Branch Chief to understand specific RMF requirements for the DoD Organization

• Write policies and procedures related to systematic physical and system security processes, and review of the Management Internal Control Program (MICP) and ensure meeting the RMF standards

• Recommend process improvements for existing business operations and internal controls and help drive the implementation of the new and improved process

• Assist the Government with the development of certification and accreditation (C&A) efforts; includes vulnerability/risk assessment analysis to support certification and accreditation

• Notify the Government when changes occur that might affect system accreditation/certification

• Maintain an understanding of the changes/updates to system controls and determine if the organization’s RMF plan requires modifications

• Provide detailed status updates to the System Branch Chief and Government Program Manager

• Understand system audit findings and provide response with recommend changes to the RMF plan to resolve findings

• Implement and document cybersecurity and related internal controls; coordinate with other organization members

• Provide recommendations for configuration management (CM) for information system security software and hardware

• Identify changes to system and assess the security impact of those changes; prepare and review documentation to include Systems Security Plans (SSPs)

• Be knowledgeable of DoD regulations included in the following:

  • DoD Risk Management Framework (RMF) developed by the National Institute of Standards and Technology (NIST)

  • Committee of National Security Systems (CNSS) – security related items

  • DoD BIO (Business Integration Office) end-to-end (E2E) business processes (desired)

Required Qualifications: 

• Bachelor’s Degree or Equivalent (6 additional years of experience)

• 7+ years in experience in system controls/security  with experience in addressing issues identified in system controls auditing; worked on RMF plan and resolution of plan deficiencies; providing resolution for complex system security and/or control deficiencies

• IAT II Certification (Security + or equivalent)

Desired Qualifications: 

• IAT III Certification (CISSP or equivalent)

• Able to travel within the organizational area of responsibility (15% travel)

• Possess ability to interact with multiple personnel to resolve issues and answer questions

• Develop and perform briefings for Government Program Management

• Working knowledge of Microsoft Office (Word, Powerpoint, Visio, and Excel) 

Security Clearance Requirements:  

• Must have a current / active Secret, JAFAN eligible 

Physical Requirements:  

• The person in this position must be able to remain in a stationary position 50% of the time.  

• Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers, management, and customers, via email, phone, and or virtual communication, which may involve delivering presentations.