Information System Security Officer (ISSO)

Information System Security Officer (ISSO)
Joint Base San Antonio (JBSA), TX

ATS is seeking a qualified Information System Security Officer (ISSO) to support the Joint Base San Antonio (JBSA) Mission Training Complex (MTC) Contract with Simulation/Stimulation training support. The ISSO shall be responsible for the day-to-day security operations of all systems and networks for classified collateral and SCI networks. The ISSO shall be responsible for ensuring the appropriate operational security posture for JBSA information systems is maintained and documented. The position is responsible for implementing DoD, Army, & JBSA policies, and creating Plans of Action and Milestones (POA&M) in response to vulnerabilities identified during risk assessments, audits, and inspections. This responsibility includes physical and environmental protection, access control, incident handling, security training, vulnerability and compliance management, configuration management, and the assistance in the development of security policies and procedures. Assures successful implementation and functionality of security requirements and appropriate IT policies and procedures that are consistent with the organization’s mission and goals. The appointed ISSO shall work for and in close collaboration with the Government appointed ISSM. Appointed ISSO shall perform duties in accordance with DoD Instruction 8510.01, DoD Directive 8140.01, NIST Special Publication 800-37, and AR 25-2.

Specific duties may include, but are not limited to:

• The ISSO shall be responsible for the day-to-day security operations of all systems and networks for classified collateral and SCI networks.
• The ISSO shall be responsible for ensuring the appropriate operational security posture for JBSA information systems is maintained and documented.
• The position is responsible for implementing DoD, Army, & JBSA policies, and creating Plans of Action and Milestones (POA&M) in response to vulnerabilities identified during risk assessments, audits, and inspections.
• The ISSO will work for and in close collaboration with the Government appointed ISSM, and perform duties in accordance with DoD Instruction 8510.01, DoD Directive 8140.01, NIST Special Publication 800-37, and AR 25-2.
• Coordinates with the technical branch to ensure latest software, patches, and Security Technical Implementation Guides (STIGs) are being installed and reported.
• Physical set-up of facilities (furniture), configuration (event network, simulation and Army Mission Command Systems and database deployment) and end-to-end testing between the simulation and Army C2IS according to architectural design as directed.

Required Qualifications:

• Posses a Bachelor’s degree in engineering, science, mathematics, or a related field.
• Five years’ experience within the past 10 years, in planning simulation exercise architectures, supervising implementation of communication systems, and integration of Army C2IS in support of distributed exercises.
• Five years’ experience in information technology management.
• Experience with eMass or other Risk Management Framework (RMF) databases, and creating, uploading, maintaining, and inputting artifacts.
• Meet DoD 8570.01-M, 8140.01 Baseline Computing Environment (CE) Certification Requirements at Information Assurance Management Level II (IAM II).
• US Citizen.
• SECRET clearance for collateral level or TOP SECRET/SCI.
• Experience with eMass or other Risk Management Framework (RMF) databases, and creating, uploading, maintaining, and inputting artifacts.
• Three years’ experience on a senior Military Staff

Preferred Qualifications:

• Bachelor’s degree in Computer Science or Information Management.
• Possess an expert understanding of NIST, DoD, & Army Cybersecurity & Risk Management Framework policies, directives, instructions, manuals, and best business practices.
• Knowledge of current industry methods for evaluating, implementing, and disseminating IT security assessment, monitoring, detection and remediation tools and procedures utilizing standards-based concepts and capabilities (e.g., ACAS, MECM, ESS,etc.).
• Knowledge of disaster recovery continuity of operations plans. Knowledge of enterprise incident response program, roles, and responsibilities.
• Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., Application of Defense-in-Depth).
• Knowledge of known vulnerabilities from alerts, advisories, errata, and bulletins.
• Knowledge of measures or indicators of system performance and availability.
• Experience with eMass or other Risk Management Framework (RMF) databases, and creating, uploading, maintaining, and inputting artifacts.
• SECRET clearance for collateral level or TOP SECRET/SCI.
• Three years’ experience on a senior Military Staff

Travel: Some travel may be required