ISS Officer
Apply NowCompany: NexThreat
Location: Lorton, VA 22079
Description:
Job Title:ISS Officer
Location: Fairfax, Lorton, Arlington, Sterling, and Chantilly, VA and El Paso, TX
Job Category: Information Technology
Time Type: Full-time
Potential for Telework: Yes, with approval from the COR/GPM
Minimum Clearance Required to Start: Active Secret Clearance and suitability for employment at DEA. Top Secret eligible
Employee Type: W2 or 1099
Special Instructions: All candidates must pass a mandatory drug test and be willing to attest in the lack of previous drug use
Citizenship: US Citizen, no Dual Citizenship
NexThreat is looking for ISS Officer to ensure the appropriate operational security posture is maintained for an information system or program. The ISSO also serves as the principal advisor to the Authorizing Official and Information System Owner on all matters (technical and otherwise) involving the security of the information system.
NexThreat is not just a place to work-it's a place to grow, innovate, and make an impact. As a small business, we pride ourselves on our agile approach to cybersecurity challenges, specializing in detecting cyber threats and providing cutting-edge solutions to our clients. Join our team of cyber professionals that are at the forefront of defending critical infrastructure and ensuring the security of some of the nation's most vital operations.
At NexThreat, we believe that our people are our greatest asset. We offer a dynamic and collaborative environment where every voice matters, and every team member has the opportunity to contribute meaningfully to our mission. We are committed to the professional development and well-being of our employees, offering competitive benefits that include 401K matching, health, vision, and dental insurance, paid leave and sick days, and a generous $5,000 vacation bonus after 5 years of service. We also have a referral program that rewards you for bringing talented professionals into our family.
Joining NexThreat means being part of a forward-thinking company that values innovation, integrity, and teamwork. Whether you're just starting your career or looking to take the next step, you'll find the support and opportunities you need to thrive with us.
Responsibilities:
Assisting in the identification, implementation, and assessment of the common controls;
Assisting in developing and updating the SSP, and coordinating with the Information system, any changes to the information system and assessing the security impact of those changes;
Ensuring systems are operated, maintained, and disposed of in accordance with policies
outlined in the approved security authorization package;
Reporting all incidents;
Monitoring system recovery processes and ensuring the proper restoration of information security features;
Performing annual assessments, at a minimum, on an annual basis to ensure compliance with DEA policy and standards;
Serving as a member of the Configuration Control Board (CCB) to ensure the configuration
management for Cybersecurity-relevant software, hardware, and firmware is maintained and documented;
Ensuring information system security requirements are addressed during all phases of the information systems lifecycle;
Establishing audit trails, ensuring their review, and making them available (when required);
Retaining audit logs in accordance with DOJ and Component policies; and
Ensuring awareness and precautionary measures are exercised to prevent the introduction and/or proliferation of malicious code.
Additional responsibilities include:
Working knowledge of the NIST RMF;
Evaluation of the assigned information systems' security control compliance with the federal requirements and DEA's monitoring strategy;
Management of emerging and defined risks associated with the administration and use of assigned information systems;
Coordination with the TC Cybersecurity Unit in order to achieve and maintain the information systems compliance and authorization to operate (ATO);
Generate and interpret documentation needed to address the items detailed within the JCAM
Work within a team environment to provide technically sound guidance in order to adhere to the cybersecurity industry best practices and DEA's monitoring strategy;
Analyze collected information to identify vulnerabilities and potential for exploitation and effectively present the results and guidance derived from scans to system owners or other leadership, as required;
Effectively communicate orally and in writing to track and detail the demands, efforts and shortcomings in meeting the goals of DEA's information system monitoring strategy;
Support the integration/testing, operations, and maintenance of systems security;
Develops, updates, and maintains internal Standard Operating Procedure for all internal assigned functions;
Provides system operation support, and administers hardware and software inventory.
Applicable DOD 8570 Certification Area: All
Requirements:
5-years of documented experience and/or education in IT or Cybersecurity.
General cybersecurity principles and techniques
Federal cybersecurity requirements, such as security and privacy assessments and continuous
monitoring
Cloud Security principles and techniques
Cybersecurity Engineering principles and techniques
Forensics
Security Operations Center principles and techniques
Cyber Incident and Contingency Response
Cyber Threat Hunting principles and techniques
Vulnerability Analysis & Penetration Testing principles and techniques
Supply Chain Risk Management and Acquisition Security
Cybersecurity Policy & Strategy principles and techniques
DevSecOps principles and techniques
SecCM principles and techniques
General IT principles and techniques
Data analysis and metrics
NexThreat is dedicated to our employees' well-being, growth, and satisfaction. We offer a competitive compensation package that supports and enables our corporate commitment to excellence.
Our extensive benefits include:
-Medical, Dental, and Vision Insurance: Ensuring our employees have access to essential healthcare services.
-401(k) Plan with Matching Contributions: Helping our employees secure their financial future.
-Life and Accidental Death & Dismemberment Insurance: Providing peace of mind with robust coverage.
-Up to Five weeks of PTO: Enabling you to streamline your work life balance.
-Short-Term and Long-Term Disability Insurance: Offering financial protection during unforeseen circumstances.
-529 College Savings Plan: Supporting our employees' educational savings goals.
-Employee Learning Program with Tuition Reimbursement: Encouraging continuous learning and development.
-Flexible Spending Account (FSA) and Health Savings Account (HSA) Plans: Allowing employees to manage their healthcare expenses effectively.
-Profit Sharing: Rewarding our employees for contributing to the company's success.
-Employee Referral Program: Incentivizing our team to bring in new talent.
-$5,000 Company-Paid Travel/Vacation after 5 Years of Service: Celebrating loyalty and service with generous vacation benefits.
-Equal Opportunity and Career Advancement
NexThreat is committed to being an equal opportunity employer. We provide a clear pathway for career development, ensuring that all employees have the opportunity to grow and advance within the company.
Fair Compensation
Our commitment to fair compensation is reflected in our competitive salary packages. NexThreat's internal efficiencies enable us to offer not only fair wages but also additional financial benefits such as spot and merit bonuses, profit sharing, commuting benefits, and comprehensive insurance coverage.
Reward and Recognition
We believe in recognizing and rewarding our employees for their hard work and dedication. By regularly collecting customer feedback, we identify opportunities to provide spot bonuses, gifts, and other forms of recognition, ensuring our team members feel valued and appreciated.
Vacation Benefits
Understanding the importance of work-life balance, NexThreat offers a unique vacation benefit. Every 5 years, employees receive $5,000 towards a vacation for themselves and their families.
We strive to create a supportive and rewarding work environment where our employees can thrive both personally and professionally.
Location: Fairfax, Lorton, Arlington, Sterling, and Chantilly, VA and El Paso, TX
Job Category: Information Technology
Time Type: Full-time
Potential for Telework: Yes, with approval from the COR/GPM
Minimum Clearance Required to Start: Active Secret Clearance and suitability for employment at DEA. Top Secret eligible
Employee Type: W2 or 1099
Special Instructions: All candidates must pass a mandatory drug test and be willing to attest in the lack of previous drug use
Citizenship: US Citizen, no Dual Citizenship
NexThreat is looking for ISS Officer to ensure the appropriate operational security posture is maintained for an information system or program. The ISSO also serves as the principal advisor to the Authorizing Official and Information System Owner on all matters (technical and otherwise) involving the security of the information system.
NexThreat is not just a place to work-it's a place to grow, innovate, and make an impact. As a small business, we pride ourselves on our agile approach to cybersecurity challenges, specializing in detecting cyber threats and providing cutting-edge solutions to our clients. Join our team of cyber professionals that are at the forefront of defending critical infrastructure and ensuring the security of some of the nation's most vital operations.
At NexThreat, we believe that our people are our greatest asset. We offer a dynamic and collaborative environment where every voice matters, and every team member has the opportunity to contribute meaningfully to our mission. We are committed to the professional development and well-being of our employees, offering competitive benefits that include 401K matching, health, vision, and dental insurance, paid leave and sick days, and a generous $5,000 vacation bonus after 5 years of service. We also have a referral program that rewards you for bringing talented professionals into our family.
Joining NexThreat means being part of a forward-thinking company that values innovation, integrity, and teamwork. Whether you're just starting your career or looking to take the next step, you'll find the support and opportunities you need to thrive with us.
Responsibilities:
Assisting in the identification, implementation, and assessment of the common controls;
Assisting in developing and updating the SSP, and coordinating with the Information system, any changes to the information system and assessing the security impact of those changes;
Ensuring systems are operated, maintained, and disposed of in accordance with policies
outlined in the approved security authorization package;
Reporting all incidents;
Monitoring system recovery processes and ensuring the proper restoration of information security features;
Performing annual assessments, at a minimum, on an annual basis to ensure compliance with DEA policy and standards;
Serving as a member of the Configuration Control Board (CCB) to ensure the configuration
management for Cybersecurity-relevant software, hardware, and firmware is maintained and documented;
Ensuring information system security requirements are addressed during all phases of the information systems lifecycle;
Establishing audit trails, ensuring their review, and making them available (when required);
Retaining audit logs in accordance with DOJ and Component policies; and
Ensuring awareness and precautionary measures are exercised to prevent the introduction and/or proliferation of malicious code.
Additional responsibilities include:
Working knowledge of the NIST RMF;
Evaluation of the assigned information systems' security control compliance with the federal requirements and DEA's monitoring strategy;
Management of emerging and defined risks associated with the administration and use of assigned information systems;
Coordination with the TC Cybersecurity Unit in order to achieve and maintain the information systems compliance and authorization to operate (ATO);
Generate and interpret documentation needed to address the items detailed within the JCAM
Work within a team environment to provide technically sound guidance in order to adhere to the cybersecurity industry best practices and DEA's monitoring strategy;
Analyze collected information to identify vulnerabilities and potential for exploitation and effectively present the results and guidance derived from scans to system owners or other leadership, as required;
Effectively communicate orally and in writing to track and detail the demands, efforts and shortcomings in meeting the goals of DEA's information system monitoring strategy;
Support the integration/testing, operations, and maintenance of systems security;
Develops, updates, and maintains internal Standard Operating Procedure for all internal assigned functions;
Provides system operation support, and administers hardware and software inventory.
Applicable DOD 8570 Certification Area: All
Requirements:
5-years of documented experience and/or education in IT or Cybersecurity.
General cybersecurity principles and techniques
Federal cybersecurity requirements, such as security and privacy assessments and continuous
monitoring
Cloud Security principles and techniques
Cybersecurity Engineering principles and techniques
Forensics
Security Operations Center principles and techniques
Cyber Incident and Contingency Response
Cyber Threat Hunting principles and techniques
Vulnerability Analysis & Penetration Testing principles and techniques
Supply Chain Risk Management and Acquisition Security
Cybersecurity Policy & Strategy principles and techniques
DevSecOps principles and techniques
SecCM principles and techniques
General IT principles and techniques
Data analysis and metrics
NexThreat is dedicated to our employees' well-being, growth, and satisfaction. We offer a competitive compensation package that supports and enables our corporate commitment to excellence.
Our extensive benefits include:
-Medical, Dental, and Vision Insurance: Ensuring our employees have access to essential healthcare services.
-401(k) Plan with Matching Contributions: Helping our employees secure their financial future.
-Life and Accidental Death & Dismemberment Insurance: Providing peace of mind with robust coverage.
-Up to Five weeks of PTO: Enabling you to streamline your work life balance.
-Short-Term and Long-Term Disability Insurance: Offering financial protection during unforeseen circumstances.
-529 College Savings Plan: Supporting our employees' educational savings goals.
-Employee Learning Program with Tuition Reimbursement: Encouraging continuous learning and development.
-Flexible Spending Account (FSA) and Health Savings Account (HSA) Plans: Allowing employees to manage their healthcare expenses effectively.
-Profit Sharing: Rewarding our employees for contributing to the company's success.
-Employee Referral Program: Incentivizing our team to bring in new talent.
-$5,000 Company-Paid Travel/Vacation after 5 Years of Service: Celebrating loyalty and service with generous vacation benefits.
-Equal Opportunity and Career Advancement
NexThreat is committed to being an equal opportunity employer. We provide a clear pathway for career development, ensuring that all employees have the opportunity to grow and advance within the company.
Fair Compensation
Our commitment to fair compensation is reflected in our competitive salary packages. NexThreat's internal efficiencies enable us to offer not only fair wages but also additional financial benefits such as spot and merit bonuses, profit sharing, commuting benefits, and comprehensive insurance coverage.
Reward and Recognition
We believe in recognizing and rewarding our employees for their hard work and dedication. By regularly collecting customer feedback, we identify opportunities to provide spot bonuses, gifts, and other forms of recognition, ensuring our team members feel valued and appreciated.
Vacation Benefits
Understanding the importance of work-life balance, NexThreat offers a unique vacation benefit. Every 5 years, employees receive $5,000 towards a vacation for themselves and their families.
We strive to create a supportive and rewarding work environment where our employees can thrive both personally and professionally.