Posted:
11/4/2024, 4:00:00 PM
Location(s):
Columbia, Maryland, United States ⋅ Maryland, United States
Experience Level(s):
Mid Level ⋅ Senior
Field(s):
IT & Security
The Opportunity:
CACI is seeking a cleared Information System Security Officer (ISSO) to provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operations IA posture for a system, program, or enclave at Annapolis Junction, MD.
Responsibilities:
Maintain operational security posture for an information system or program.
Provide Cyber Security oversight, guidance, and support in support of Assessment and Authorization (A&A) as required by the Federal Information Security Management Act (FISMA).
Prepare system security plan (SSP) and provide recommendations to assist in obtaining ATOs based on RMF experience IAW established cybersecurity policies and procedures.
Verify package submissions have met the threshold for approval such as: CCIs, SCA-V results, POA&Ms, STIGs, Cyber Security Strategies and System Security Plans (SSPs) and other RMF documentation etc.
Identify, develop (either directly, or in coordination with applicable experts), review and incorporate common artifacts found in an RMF accreditation package such as: system architecture and boundaries, hardware and software lists, risk assessment reports, POA&Ms, data flows, PPSM accounting, and other necessary system, network, and application documentation.
Knowledge and experience identifying, assessing, and documenting compliance against applicable DoD security controls (technical, management, operational), within RMF packages.
Familiarity with the use of vulnerability scanning and assessment tools (e.g., ACAS/Nessus) necessary to identify and document compliance.
Analyze and interpret vulnerability assessment results and formulate plans to mitigate vulnerabilities.
Assist with the CM for information system security software, hardware, and firmware. Maintain records on workstations, servers, routers, firewalls, intelligent hubs , network switches, etc. to include system upgrades.
Oversee the implementation of software patches to maintain the security posture of the organization.
Identify information system risks and possible mitigation measures, documenting these in various risk reports and Plans of Action and Milestones (POA&Ms).
Perform and complete STIG checklists, monitor IAVM compliance, and appropriately assess and document to completion all associated POA&Ms.
Identify, interpret, and evaluate major applications, infrastructure, enclaves, and Enterprise system environments based on proposed accreditation boundaries.
Establish and publish upon approval Cybersecurity policies and Standard Operating Procedures (SOPs) as required.
Maintain and report assessment and authorization statuses and issues in accordance with organizational guidance.
Ability to translate technical IS configurations into non-technical documentation.
Responsible for implementing, and enforcing information systems security policies, standards, and methodologies.
Strong verbal and written communications and interpersonal skills.
Qualifications:
Required:
An active TS/SCI with Poly.
6 years of experience and HS/GED OR Bachelor’s and 2 years of experience.
IAT Level II (Security +).
Configuration and Document Management.
Security Policy.
Security Vulnerability Scanning Tools.
System Security Plan (SSP).
______________________________________________________________________________
What You Can Expect:
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.
An environment of trust.
CACI takes pride in fostering a diverse and accessible culture where every individual feels supported to chart their own path. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.
Your potential is limitless. So is ours.
______________________________________________________________________________
Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here.
The proposed salary range for this position is:
$78,700 - $165,300Website: https://caci.com/
Headquarter Location: Arlington, Virginia, United States
Employee Count: 10001+
Year Founded: 1962
IPO Status: Public
Industries: Software