Information System Security Officer (ISSO)
Location: Dayton, OH 45409: Hybrid
Compensation: $115,000-$125,000 based on years of experience
Industry: Engineering Research/DoD
Requirements:
- Associates or Bachelor's Degree in Cybersecurity, Computer Science, or related field.
- 3+ years relevant cybersecurity experience.
- Active Security+ certification
- Experience with the NIST RMF process
- US Citizenship.
Job Description
This role supports the government cyber lead and provides cybersecurity support for advanced software-intensive technologies to include agile manufacturing, conditioned-based maintenance, augmented reality/virtual reality, learning neural networks, cloud-based infrastructure and services, and robotics.
The Information System Security Officer (ISSO) position is supporting the Air Force Rapid Sustainment Office (RSO). The RSO increases mission readiness by rapidly identifying, applying and scaling technology essential to the operation and sustainment of the U.S. Air Force. Success comes from our teamwork and mutual respect for each other's talents and unique perspectives.
Responsibilities:
- Serve as cybersecurity technical advisor, consultant, and primary point of contact to the Program Manager, Information System Owner, and other stakeholders for the weapon system.
- Assessing systems for vulnerabilities and providing corrective recommendations.
- Supporting government Cyber lead in performing RMF activities leading to system RMF acceptance IAW DoDI 8510.01, NIST 800-series special publications, USAF policy and instructions, and guidance as applicable on RSO IT systems in networked, standalone, and cloud configurations.
- Support, coordinate, and continuously monitor system security posture and ensure adverse events are formally handled and reported.
- Developing, reviewing, and updating necessary documentation associated with achieving RMF accreditation of each system.
- Applying currently accepted methods for documenting the RMF status of each RSO system within the DoD environment.
Managing projects in compliance with DoD and AF RMF policies including but not limited to the following:
o DoDI 8500.01 -- Cybersecurity Risk Management Framework for DoD Information Technology.
o DoD 8570.01 M - Information Assurance Training! , Certification, and Workforce Management.
o CNSSI 1253 - Security Categorization and Control Selection for National Security Systems.
o NIST 800-series Special Publications (SP).
o Computer Security, including SP 800-53 - Security Controls and Assessment Procedures for Federal Information Systems and Organizations and Air Force Instruction Series 17