Information Systems Security Officer (ISSO) / Information Systems Security Manager (ISSM)
Apply NowCompany: RiVidium, Inc
Location: Arlington, VA 22204
Description:
Full-Time/Part-Time
Full-Time
Description
Cyber Intelligence Alliance (CIA) Joint Venture (JV) is seeking an Information Systems Security Officer (ISSO) / Information Systems Security Manager (ISSM) (contingent upon award) to support federal client ensuring cybersecurity is integrated in all phases of the lifecycle sustainment and proactively support the Government's effort to maintain, update and continuously monitor Chief of Staff (CoS) application's security posture in accordance with the Risk Management Framework (RMF).
Tasks and activities include: Achieve and maintain Authorization to Operate (ATO) and Authority to Connect (ATC), update eMASS with all required artifacts, Develop Plan of Action and Milestones (POA&M) for non-compliant controls to meet assessment and authorization requirements, ensure all releases are Information Assurance (IA) compliant with applicable STIGS, Nessus and Information Assurance Vulnerability Alert (IAVA), assist with system interface agreement process. Identify and mitigate code vulnerabilities as measured by the government provided "Fortify" tool; ensure that Development Teams prioritize findings in accordance with customer priorities and provide POAM for Fortify findings. Provide support to customer for independent verification. Ensure the Product Owner is notified of issues regarding vulnerability mitigation.
Requirements for this position shall include:
About the Organization
Established in 2008, RiVidium, Inc. (dba TripleCyber) is a VA-Verified SDVOSB and an SBA-Certified 8(a) company. To prepare our clients for the future, RiVidium has balanced all parts of our organization to attract the finest employees in order to 'Strive to be the missing element defining tomorrow's technology'. RiVidium keeps pace and surpasses its competitors by meeting challenges of advancements in Logistics, Human Capital, Cyber, Intelligence & Technology.
EOE Statement
We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law. If you need a reasonable accommodation for any part of the employment process, please contact Human Resources (HR) at hr@rividium.com.
This position is currently accepting applications.
Full-Time
Description
Cyber Intelligence Alliance (CIA) Joint Venture (JV) is seeking an Information Systems Security Officer (ISSO) / Information Systems Security Manager (ISSM) (contingent upon award) to support federal client ensuring cybersecurity is integrated in all phases of the lifecycle sustainment and proactively support the Government's effort to maintain, update and continuously monitor Chief of Staff (CoS) application's security posture in accordance with the Risk Management Framework (RMF).
Tasks and activities include: Achieve and maintain Authorization to Operate (ATO) and Authority to Connect (ATC), update eMASS with all required artifacts, Develop Plan of Action and Milestones (POA&M) for non-compliant controls to meet assessment and authorization requirements, ensure all releases are Information Assurance (IA) compliant with applicable STIGS, Nessus and Information Assurance Vulnerability Alert (IAVA), assist with system interface agreement process. Identify and mitigate code vulnerabilities as measured by the government provided "Fortify" tool; ensure that Development Teams prioritize findings in accordance with customer priorities and provide POAM for Fortify findings. Provide support to customer for independent verification. Ensure the Product Owner is notified of issues regarding vulnerability mitigation.
- Candidate shall have demonstrated experience and familiarity with the Risk Management Framework (RMF), to include all steps associated with the RMF.
- Candidate should have demonstrated experience creating, tracking and updating Plan of Actions and Milestones (POA&M).
- Candidate should be familiar with and have experience using eMASS
- Candidate should have experience and familiarity with assessing vulnerability assessment reports and working with customer, system owners and/or Program Managers regarding mitigations, tracking and closure.
Requirements for this position shall include:
- Bachelor's degree or higher in a related field of study or equivalent experience
- Minimum of three (3) years of experience, one within DoD
- Secret Security Clearance Required
- Candidates must possess one of the following or equivalent certifications:
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)
- CompTia Security +
- Certified in Risk and Information Systems Control (CRISC)
- ISO/IEC 27001 Lead Implementer or Lead Auditor
- Certified Ethical Hacker (CEH)
About the Organization
Established in 2008, RiVidium, Inc. (dba TripleCyber) is a VA-Verified SDVOSB and an SBA-Certified 8(a) company. To prepare our clients for the future, RiVidium has balanced all parts of our organization to attract the finest employees in order to 'Strive to be the missing element defining tomorrow's technology'. RiVidium keeps pace and surpasses its competitors by meeting challenges of advancements in Logistics, Human Capital, Cyber, Intelligence & Technology.
EOE Statement
We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law. If you need a reasonable accommodation for any part of the employment process, please contact Human Resources (HR) at hr@rividium.com.
This position is currently accepting applications.