US
0 suggestions are available, use up and down arrow to navigate them
PROCESSING APPLICATION
Hold tight! We’re comparing your resume to the job requirements…
ARE YOU SURE YOU WANT TO APPLY TO THIS JOB?
Based on your Resume, it doesn't look like you meet the requirements from the employer. You can still apply if you think you’re a fit.
Job Requirements of ISSO Specialist:
-
Employment Type:
Full-Time
-
Location:
Lexington, MA (Onsite)
Do you meet the requirements for this job?
ISSO Specialist
Industrial Staffing Services, Inc.
Lexington, MA (Onsite)
Full-Time
* Assist and Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs).
• Continuously validate the organization against policies/guidelines/procedures/regulations/laws to ensure compliance.
• Ensure that plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc.
• Promote awareness of security issues among management and ensure sound security principles are reflected in the organization's vision and goals.
• Track audit findings and recommendations to ensure that appropriate mitigation actions are taken.
• Recommend resource allocations required to securely operate and maintain an organization's cybersecurity requirements.
• Provide technical documents, incident reports, findings from computer examinations, summaries, and other situational awareness information to key stake holders. Recognize a possible security violation and take appropriate action to report the incident, as required.
• Assist the Program Managers and the Information System Security Manager (ISSM) in the development and maintenance of System Security Plans (SSP) and associated artifacts such as the Plan of Action & Milestones (POA&M), Risk Assessment Report, and Continuous Monitoring Strategy.
• Ensure systems are operated, maintained, and disposed of in accordance with organization security policies and procedures.
• Conduct network, system, and application vulnerability scanning, configuration assessment, and remediation.
• Lead and align information technology (IT) security priorities with the security strategy.
• Prepare for and participate in periodic organization compliance assessments. Interpret patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program.
Education and Certifications:
-BS degree is preferred but not required
-Security Plus is the minimum 8570 certification requirement.
-A TS clearance with SCI eligibility is required. Candidate may be required to pass a CI polygraph.
-Interview process will consist of a phone screen followed by an extensive zoom interview with the team members.
#CJ
• Continuously validate the organization against policies/guidelines/procedures/regulations/laws to ensure compliance.
• Ensure that plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc.
• Promote awareness of security issues among management and ensure sound security principles are reflected in the organization's vision and goals.
• Track audit findings and recommendations to ensure that appropriate mitigation actions are taken.
• Recommend resource allocations required to securely operate and maintain an organization's cybersecurity requirements.
• Provide technical documents, incident reports, findings from computer examinations, summaries, and other situational awareness information to key stake holders. Recognize a possible security violation and take appropriate action to report the incident, as required.
• Assist the Program Managers and the Information System Security Manager (ISSM) in the development and maintenance of System Security Plans (SSP) and associated artifacts such as the Plan of Action & Milestones (POA&M), Risk Assessment Report, and Continuous Monitoring Strategy.
• Ensure systems are operated, maintained, and disposed of in accordance with organization security policies and procedures.
• Conduct network, system, and application vulnerability scanning, configuration assessment, and remediation.
• Lead and align information technology (IT) security priorities with the security strategy.
• Prepare for and participate in periodic organization compliance assessments. Interpret patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program.
Education and Certifications:
-BS degree is preferred but not required
-Security Plus is the minimum 8570 certification requirement.
-A TS clearance with SCI eligibility is required. Candidate may be required to pass a CI polygraph.
-Interview process will consist of a phone screen followed by an extensive zoom interview with the team members.
#CJ
Get job alerts by email.
Sign up now!
Join Our Talent Network!