Are you looking to make a difference in the federal government? Are you looking for a career, not just a “job”? Are you passionate about doing what’s right? Do you have experience and skills in information security and risk assessments? Then we have a position for you.
Noblis is seeking an Information System Security Officer (ISSO) to work closely with stakeholder groups to understand system needs while ensuring agency security objectives are met. This opportunity supports a government agency with implementing Corporate Information Security Office (CISO) policies across the supplier community from procurement requirements through post award risk assessments. Responsibilities include: facilitating the implementation of a Resiliency Maturity Model, assessing third party risk, reviewing external dependencies, build and maintain security controls, determine risks and mitigations plans for data transmission and application development as they pertain to security standards. As part of a Noblis team, candidates will work closely with government clients to understand current issues and challenges in order to implement practical and effective solutions.
- Bachelor’s degree from an accredited college in a related discipline, or equivalent experience/combined education, with 2-5 years of professional experience as an ISSO or Security Analyst; or 1-3 years of professional experience with a related Masters degree.
- Understanding of Certification and Accreditation (C&A) of computer systems and networks.
- Review systems to identify potential security weaknesses, recommend improvements to amend vulnerabilities.
- Identify system security risks, prioritize risks, and maintain a risk registry and presenting findings to management and system development teams.
- Define security requirements and artifacts for supplier delivery as part of the system development process.
- Knowledge of federal security frameworks such as NIST 800-53 and ICD-503
- Ability to review and assess the suitability of program documentation to include Risk Assessment Reports, Accreditation Packages, System Security Plans (SSPs) and security policy guides.
- Coordinate with system owners to understand their operational needs, guide accreditation packages, risk assessments and security plans through the agency's process.
- CISSP, CISM, CRISC certifications preferred.
- Ability to conduct periodic assessments of supplier software to ensure compliance with security requirements.
- Capable of assisting the federal client with resolving any operational security issues involving suppliers.
- Excellent communication, collaboration, and presentation skills. Proven results-oriented problem solving abilities.
- Ability to work in a dynamic team-oriented environment, demonstrate teamwork and initiative, and function productively in a dynamic work environment.
Noblis and our wholly owned subsidiary, Noblis ESI, are solving difficult problems that help our government and our country. We bring the best of scientific thought, management, and engineering expertise with a reputation for independence and objectivity. We support a wide range of government and industry clients in the areas of national security, intelligence, transportation, healthcare, environmental sustainability, and enterprise engineering. Learn more at noblis.org/about.
Why work at a Noblis company?
Our employees find greater meaning in their work and balance the other things in life that matter to them. Our people are our greatest asset. They are exceptionally skilled, knowledgeable, team-oriented, and mission-driven individuals who want to do work that matters and benefits the public.
Noblis has won numerous workplace awards. Noblis maintains a drug-free workplace and is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race.