DRC Logo resources. responsiveness. reliability.


 

home > Senior ISSO

Senior ISSO
Tracking Code 9369

Job Description

The Information System Security Officer (ISSO) serves as the principal advisor to the Information System Owner, Business Process Owner, and the Chief Information Security Officer (CISO) on all matters, technical and otherwise, involving the security of an information system. ISSOs are responsible for ensuring the implementation and maintenance of security controls in accordance with the System Security Plan (SSP) of a system. ISSOs are called on to provide guidance, oversight, expertise, and develop security documents or actually implement any security controls. While ISSOs will not actually perform all functions, they will have to coordinate, facilitate, or otherwise ensure certain activities are performed. As a result, it is important for ISSOs to build relationships with the System Owner, technical staff, and other stakeholders.

About DRC

DRC is a leading provider of mission-critical technology management services and solutions for government programs. In the past three years, we have made several strategic hires and acquisitions that have positioned us for rapid growth in the Greater DC Metro (National Capital Region) area. Towards this end, we will be consolidating our Reston and Ballston offices with the opening of a new facility in Clarendon in June  2011. These investments have resulted in DRC being featured in a Federal Computer Week article titled “9 Hot Companies to Watch in 2011.”

Required Skills

  • Proficient in MS Word due to responsibility in writing several security artifacts

  • Proficient in developing and presenting, both verbally and in writing, highly technical information and presentations to non-technical audiences

  • Working knowledge of the NIST 800 series publications to include, but not limited to: 800-30, 800-37, 800-53, and 800-53a

  • Working knowledge of DHS 4300A

  • Understanding of network topologies, TCP/IP, and boundary protection appliances

  • Ability to work in independent environments under aggressive timelines    

Required Experience

  • 3-6 years of experience with the Security Authorization (or C&A) methodology according to an agency standard framework such as DCID 6/3, DIACAP, or NIST

  • Experience creating Certification and Accreditation (C&A) documentation

  • Experience conducting and evaluating/analyzing results from the following vulnerability/continuous monitoring tools (not limited to):  NESSUS, AppDetective, WebInspect, and ISS

  • 5 years of experience with Enterprise Network devices (i.e., routers, switches, firewalls)

  • 5 years of experience with Operating platforms (i.e., UNIX, Solaris, and Microsoft) DHS experience preferred

Certifications

Individual must possess at least one of the following:  CISA, CISM, CISSP, Certification and Accreditation Professional (CAP), or similar widely recognized IT Security certification   

Clearance

Must have an active Secret Clearance with the ability to obtain Top Secret/SCI level access  

Job Location

Arlington, VA US

Position Type

Full-Time/Regular

At DRC You Can Make a Difference. To be considered, please forward your resume to: cyberjobs@drc.com.

For more information about DRC, please visit www.drc.com

 

 

 

Privacy Policy | Terms & Conditions | © 2013 DRC. All rights reserved | 800-522-4321 | webmaster@drc.com