Information System Security Officer

Job Category:Information Security Engineer Principal Leader Primary Location:USA-DC: DISTRICT OF COLUMBIA-WASHINGTONSchedule:Full-time Job Type:Regular Employee Status:RegularJob Posting: 04/04/2008Description: Essential Job Functions The ISSO is responsible for ensuring the implementation of the Security Program developed by the Information System Security Manager for a particular system or systems. The primary ISSO responsibilities will include maintaining a system security plan and associated documentation; Ensuring the Information System (IS) is operated, used, maintained and disposed of in accordance with security policies and practices; Ensuring the IS is accredited and certified; ensuring users and system support personnel have the required security clearances, authorization and need-to-know; indoctrinated and familiar with internal security practices before access to the IS is granted. Additional responsibilities include ensuring compliance of system users with security policies and safeguards applicable to the IS for which the ISSO is responsible; Ensuring audit trails are reviewed periodically (e.g. weekly, daily), and audit records are archived for future reference. The ISSO is also responsible for initiating and/or implementing risk mitigation countermeasures; Reporting security incidents in accordance with FBI and division-specific policy to the Designated Accrediting Authority (DAA) when an IS is compromised; Reporting the security status of an IS, as required by the designated accrediting authority; evaluating known vulnerabilities to ascertain if additional safeguards are needed. Identifies security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives. Provides technical support in the development, testing and operation of firewalls, intrusion detection systems, enterprise anti-virus and software deployment tools. Conducts complex security architecture analysis to evaluate and mitigate issues. Develops policies and procedures for securing the system infrastructure and applications. Develops complex technical and programmatic assessments, evaluates engineering and integration initiatives and provides complex technical support to assess security policies, standards and guidelines. Develops, implements, enforces and communicates security policies and/or plans for data, software applications, hardware and telecommunications. Performs highly complex product evaluations, recommends and implements products/services for network security. Validates and tests complex security architecture and design solutions to produce detailed engineering specifications with recommended vendor technologies. Identifies and oversees the installation, modification or replacement of hardware or software components and any configuration change(s) that affects security. Provides complex technical oversight and enforcement of security directives, orders, standards, plans and procedures at server sites. Develops manuals and ensures system support personnel receive/maintain security awareness and training. Assesses the impact on the business unit/customer caused by theft, destruction, alteration or denial of access to information and reports to senior management. Provides leadership and work guidance to less experienced personnel. Basic Qualifications All applicants must possess a current (i.e., within the past five years) single-scope background investigation (SSBI) AND have a TOP SECRET security clearance. First-hand familiarity with NIST and DCID 6/3 guidance, security requirements and processes. First-hand familiarity with Federal Certification and Accreditation standards, such as DCID 6/3 and NIST security requirements and processes, is required. Bachelor's degree or equivalent combination of education and experience Bachelor's degree in computer science or related field preferred Nine or more years of experience in network, host, data and/or application security in multiple operating system environments Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail and access-lists Experience working with internet, web, application and network security techniques Experience working with relevant operating system security (Windows, Solaris, Linux, etc.) Experience working with leading firewall, network scanning and intrusion detection products and authentication technologies Experience working with federal regulations related to information security (FISMA, Computer security Act, etc.) Experience working with NIST Special Publications and C & A process methodology Possess security certifications (CISSP, CCNA, etc) and/or top secret security clearance Other Qualifications Strong communication skills Strong analytical and problem solving skills to troubleshoot and resolve network/operating system security issues Ability to perform and interpret vulnerability assessments Ability to administer the operations of a security infrastructure Ability to balance and prioritize work Security certifications (e.g., CISSP, GIAC) and technical certifications (e.g., MCSE, CNE, CCDP) are a plus.Remote Work Location Authorized:No Relocation Assistance:Not AvailableClearance Level:TS/SCI Create Success