Information System Security Officer

Employer
DCS Corp
Location
Sterling Heights, Michigan
Posted
Jun 18, 2024
Closes
Jul 01, 2024
Ref
2777818033
Discipline
Engineering, Systems
Position Type
Other
Specialty
Other
Hours
Full Time
Organization Type
Corporate, Other Corporate
Hybrid - The Information Systems Security Officer (ISSO) reports to the Information Systems Security Manager (ISSM) and the Information System Owner (ISO), working under minimal supervision. The ISSO collaborates with technical resources to maintain the security posture of the information system.

The ISSO is responsible for the security management and security operational duties on the information system. The ISSO follows the Risk Management Framework (RMF) to ensure compliance with all Department of Defense (DoD) and National Institute of Standards and Technology (NIST) instruction or guidance. The ISSO is involved in development of security policies, processes, and procedures.

Essential Job Functions:

Provide information technology security services to the U.S. Army's Ground Vehicle Systems Center (GVSC). Provide security functions such as vulnerability management, traffic monitoring, log analysis, POAM management, eMASS management, security assessments, configuration management, incident response, and inventory management. Using the Risk Management Framework, contribute to the existing security posture of an accredited network as well as its re-accreditation. Use NIST 800-53 Rev. 4 controls and create security compliance documents such as FIPS199 workbook, Contingency Plan, Contingency Plan Test, Security Plan, Security Controls Traceability Matrix, others. Work efficiently with technical staff, security staff, and directors.

Required Skills:

Due to the sensitivity of customer related requirements, U.S. Citizenship is required.

Must be able to obtain a Secret clearance.

High School Diploma/GED with 16 years experience, or Associates with 10 years, or Bachelors with 8 years, or Masters with 6 years.

Knowledge of information security auditing and risk management.
Knowledge of system continuity planning.
Demonstrated skill in performing complex security analyses.
Ability to identify problems, evaluate alternatives, and implement effective solutions.
Linux experience.
Must have strong working knowledge of pertinent DoD and NIST requirements.

Some travel required.

Must be able to obtain a DoD 8570.1M IAM Level I, Level II, or Level III certification within first 30 days of employment:
CAP
CND
Cloud+
GSLC
Security+ CE
CASP+ CE
CISSP (or Associate)
CISM
GSLC
CCISO

Desired Skills:

Knowledge of IPS/IDS, Malware Analysis, UNIX/Linux, Splunk, Wireshark, ACAS, Firewalls and other security capabilities.