Information System Security Officer (ISSO) bei IMS Careers

About the role

Are you ready for your next career adventure? IMS is seeking a highly skilled and experienced Information System Security Officer (ISSO) to join our team and lead security architecture, planning and operations and aiding our federal client in obtaining Authorization to Operate (ATO) and overall management of their cloud and cyber security requirements. This position is based in Washington, DC and requires physical presence downtown at the client site three days per week. 

What you'll do

• Manage and coordinate with team members to effectively execute tasks to ensure high quality deliverables and timely delivery. 
• Serve as a skilled technical security advisor and security officer to business owners and stakeholders. 
• Develop documentation as the primary author on RMF A&A documents including but not limited to the System Security Plan, Privacy Threshold Analysis, Privacy Impact Assessment, Contingency Plan, Configuration Management Plan, and Incident Response Plan. 
• Implement quality assurance procedures to ensure a high level of quality in all deliverables submitted by the team. 
• Perform and support security operations tasks including vulnerability management, implement role-based access controls, data-masking and analytics, audit log analysis, secure configuration management, etc. 
• Provide tactical and strategic guidance to improve organizational security program 
• Provide security design and impact analysis for enterprise operations and solutions. 
• Aid in various assessment activities including A&A security control assessments. 
• Coordinate and communicate with system stakeholders as required to complete all aspects of the A&A process. 
• Understand and articulate security architecture of systems and how it integrates with the enterprise security stack. 
• Provide security design and security impact analysis on agency systems. 
• Perform both technical and documentation continuous monitoring tasks. 
• Keep abreast of changing audit guidelines, Federal guidance, and regulations. 
• Lead and advise on POA&M remediations and control finding closures using evidential matter or other required closure evidence. 
• Support security controls assessment activities. 
• Proactively identify opportunities to enhance the efficiency and effectiveness of security processes, implementing best practices and lessons learned across security domains. 

Qualifications

• Bachelor’s degree in computer science, or related field. Master’s degree preferred. 
• 5+ years of technical experience in cybersecurity. 
• 5+ years of experience with Federal certification and accreditation A&A. 
• 5+ years of experience with maintaining IT security policies, processes, and guidance. 
• Professional experience with a solid understanding of incident response, insider threat investigations, forensics, cyber threats, and information security. 
• Experience with applying the NIST Cybersecurity Framework. 
• Experience with Federal Risk and Authorization Management Program (FedRAMP). 
• Proficient understanding of the NIST RMF 800-137 Rev2 processes and the NIST security control set (800-53 Rev4, 800-53 Rev5). 
• Experience with developing and managing continuous monitoring and plans of action and milestones (POA&M). 

Desired Skills

• Experience working with Cyber Security Assessment and Management (CSAM) tool. 
• USDA security experience. 
• Experience with AWS, Azure, and other Cloud service providers. 
• Security Certification: CISSP, CISM, CAP or equivalent certification preferred. 
• Certification in AWS and/or Azure Security Specialty is preferred. 

What we offer:

In addition to a rewarding career, IMS offers a wide range of benefits to its employees, including:

• 401(k) Retirement Plan
• Medical, Rx, Dental & Vision Insurance
• Personal and Family Sick Time
• 11 Company Paid Holidays
• Medical & Dependent Care Flexible Spending Accounts
• Personal Development & Learning Opportunities
• Skills Development & Certifications
• Employee Referral Program
• Corporate Sponsored Events & Community Outreach
• Position may be eligible for a discretionary variable incentive bonus

Integrated Management Strategies is an equal opportunity employer that is committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, gender identity, national origin, disability, pregnancy, status as a protected veteran, or any other protected characteristic as outlined by federal, state, or local laws. If you are an individual with a disability and would like to request a reasonable accommodation for the employment process, please email your request to [email protected]

E-Verify® is a registered trademark of the U.S. Department of Homeland Security. This business uses E-Verify in its hiring practices to achieve a lawful workforce. www.dhs.gov/E-Verify

The salary range provided for this position is a nationwide market range and represents a broad range of salaries for this role across the country. The actual salary rate for this position will be determined by a number of factors, including, scope, complexity, and location of the role; the skills, education, training, credentials, and experience of the candidate, and other conditions of employment.