Information System Security Officer (ISSO)

The Information Systems Security Officer (ISSO) will provide security engineering support for the design, development, fielding, and sustainment of embedded electronics systems for DoD ground vehicles.  The ISSO assists the Cybersecurity IPT with research, guidance, and documentation within their assigned program. The ISSO serves as a trusted advisor in cybersecurity activities (I.e. eMASS, data entry, research, etc.) to ensure that identified systems are appropriately documented to meet compliance guidelines as directed by the DOD and appropriate subordinate organizations.

Essential Job Functions:

Lead a combined project team of government and contract employees located in many different locations while meeting directed delivery dates to meet fielding requirements.

Review ground combat vehicles systems for vulnerabilities and recommend controls.

Develop and input data into to support the Department of Defense Risk Mitigation Framework.  

Coordinate with government personnel to plan, coordinate and execute penetration testing.

Lead a combined project team of government and contract employees to develop Army Acquisition Milestone Documentation. 

Provide electrical, mechanical and software support to Combat Vehicle system planning, design, development, and execution.

Work in a team environment with our Army customer and DCS Engineers.

Develop Subject Matter Expertise on a variety of combat vehicle subsystems.

Appointed as an ISSO for a program or can function as cybersecurity support staff.

Supports the Information System Owner (ISO)/Information Systems Security Manager (ISSM) in their efforts to enforce and implement DoD/Army cybersecurity policies and procedures as mandated 
 

In partnership with cybersecurity staff, recommend common and system-specific security controls for ISO approval 
 

In partnership with cybersecurity staff, continually review the selected security controls and assist in determining their adequacy and suitability for protecting the information and information system 

Notify Cybersecurity IPT when changes occur that might affect the Information System accreditation/certification (ECP, Policy, Vulnerability, etc.) 
 

Report non-compliance issues and concerns through the Cybersecurity IPT in the event of identification (Scans, Document Review, New Technology, etc.) 
 

Participate in discovery of vulnerabilities and document mitigations in eMASS identified by Information System Security Engineer (ISSE) 
 

As necessary, participate in technical reviews, program and/or Cybersecurity IPT, and internal assessment/evaluation team meetings
 

Provide guidance and assistance to the supporting Cybersecurity IPT to ensuring documents are prepared, drafted, and maintained in accordance with the DoD Risk Management Framework.
 

In conjunction with the Cybersecurity IPT, monitor compliance with DOD/Army cybersecurity policies and procedures to ensure information system is operated, maintained, and disposed of in accordance with proper security policies and in accordance with programmatic documents during tenure with program.
 

Maintain a current working knowledge of NIST, DOD, Army guidance and regulations as they pertain to cybersecurity system authorization activities and the DOD RMF process. 
 

In coordination and collaboration with cybersecurity staff, the ISSO will assist with drafting cyber-related aspects, monitoring, and maintaining the below security documentation examples and enter into eMASS

This position requires full-time on-site support at the client location.

Required Skills:

Due to the sensitivity of customer related requirements, U.S. Citizenship is required.

Bachelor's degree in Cyber Security, Information Assurance, Electrical Engineering or Computer Engineering, or Information Technology with at least 2 years of experience.

Must be able to obtain and maintain a DoD Secret clearance.

Some exposure to Cyber or at least a willingness to work in and learn Cyber (preferable DoD RMF process).

Familiar with Systems Engineering and Software Engineering processes.

Ability to travel to various customer and contractor facilities and test centers (10% Travel).

Desired Skills:

CompTIA Secuirty+ certification

CISSP

CASP+ / SecurityX certification

Prior Military Experience.

Familiar with DoD C4ISR Systems such as: BFT, SINCGARS, WIN-T and/or familiar with Network Operations or Tactical Intranet.

Experience with US Army Ground Combat Vehicle System Electronics Hardware and Software.

Experience in Information Assurance, Computer Security, Risk Management Framework for Ground Combat/Military Systems.

Familiarity with DoD systems acquisition process.

Job Requirements: