Information Systems Security Officer(ISSO), Mid (MCSES III)

AMERICAN SYSTEMS is an employee-owned federal government contractor supporting national priority programs through our strategic solutions in the areas of Information Technology, Test & Evaluation, Program Mission Support, Engineering & Analysis, and Training.

Ensure automated information system (AIS) and network nodes are operated, maintained, and disposed of in accordance with security policies and practices.
• Perform Information System Security Officer (ISSO) duties in support of in-house and external customers.
• Perform duties as the alternate Information Systems Security Manager (ISSM).
• Reviewing and developing AIS accreditation/certification support documentation.
• Notifying the customer when changes occur that might affect AIS accreditation/certification.
• Performing system and network self-inspections.
• Providing security coordination and reviews on all system test plans.
• Attending system Integrated Product Team meetings.
• Identifying AIS vulnerabilities and implementing countermeasures.
• Representing the customer on various technical review teams.
• Conducting security surveys at subordinate facilities and gathering pertinent security documentation for inclusion into system accreditation packages.
• Coordinating, preparing, and tracking AIS inspections, reports, and responses.
• Maintaining AIS security records and advising on and preparing Co-Utilization Agreements.

• 5 years of relevant experience supporting security and information technology systems.
• Active TS clearance with SCI eligibility.
• Proficient in firewall administration, intrusion detection systems, anti-virus software, and data encryption
• In-depth knowledge of information security principles and practices.
• Experience with security compliance and regulatory requirements.
• Strong analytical, problem-solving, and decision-making skills
• Adept at briefing executives and program IPT level leadership.

Certifications:

• Must possess an active DoD 8140/8570.01-M baseline certification at IAM Level II or higher (e.g., Security+ CE, CySA+, CISSP, or CISM).
• Candidates without IAM Level II on day one may be considered if they currently meet IAT Level II and can obtain an IAM Level II certification within an agreed-upon timeframe.