Information Systems Security Officer (ISSO) - Senior

ECS is seeking an Information Systems Security Officer (ISSO) - Senior to work in our Quantico, VA office.

ECS is seeking a Senior ISSO to join a team of experts charged with providing RMF support to the Marine Corps Community Services (MCCS) organization. MCCS supports readiness, preparedness, fitness, health, and overall quality of life for Marines and their Families around the world. This is a hybrid position, requiring two days on-site at the Customer's location in Quantico, VA.

In this role, you'll perform Information Systems Security Officer functions, including supporting the certification and accreditation of computer networks and standalone information systems using DoD standards and provide oversight and accountability of day-to-day security operations of all the information systems (unclassified/classified).

Specific tasks you will perform as an Information Systems Security Officer include, but are not limited to:

• Spearheading Authority to Operate (ATO) efforts while making independent recommendations to Government Leads during these processes
• Understand Risk Management Framework (RMF), and how risk management is executed, what risk means, and how to analyze it
• Develop documentation to include, but not limited to, Plan of Action and Milestones, System Security Plans, System Specific Policies and Procedures, Configuration Management Plans, Contingency Plans and Test Results, Business Impact Analyses, and Security Impact Analyses
• Prepare, maintain, and implement System Security Plans that accurately depict the customer's contractual requirements
• Support all disciplines within the security program and ensure business needs are met. Work directly with PMs and system security engineers on all phases of system life cycle development
• Conducts ongoing vulnerability testing of the information system to verify security features and operating controls are functional, effective and meet Government standards.
• Interacts with internal and external customers or Government security officials to perform security duties, address routine information security matters with employees regarding issues, report preparation and system security access briefings, etc.
• Assists Information Systems Security Manager in reporting and mitigation of information system security incidents

• U.S. Citizenship
• Active DoD Secret Clearance
• 8+ years' experience with a bachelor's degree, or 6-8 years' experience with a master's degree, or 5 years' experience with a PhD
• A current DoD 8570 IAM Level II certification (CAP, CASP CE, CISM, CISSP, GSLC)
• Strong background in obtaining and maintaining ATO's for DoD or U.S. Federal Government organizations, including experience executing the NIST Risk Management Framework (RMF) and applying security practices found in NIST publications. (i.e. SP 800-53, SP 800-30, SP 800-60, FIPS 199, FIPS 140-2, etc.)
• A self-starter who's able to work in both independent and team environments while building work relationships with SMEs across divisions. Additionally, must be comfortable with cyber security and able to brief issues to the customer.
• The ability to articulate and provide a true and accurate status update on government IT system security postures as well as overall system health to the customer in a clear and concise manner