Deloitte is hiring an Information Systems Security Officer(ISSO) for an exceptional opportunity in Annapolis Junction, Maryland.
TS/SCI with polygraph clearance required.
The candidate will be a member of the Government and Public Services (GPS) Security team with primary responsibilities for all aspects of classified systems accreditations, continuous monitoring, procedures, and security plans. The candidate will also support the configuration, control, maintenance and troubleshooting of the classified systems.
The candidate will join a team of professionals with primary responsibility for Information Technologies in Annapolis Junction, MD while providing additional backup and surge support for locations in the Washington D.C. metropolitan area.
ISSO candidate requirements:
1. US citizenship
2. Current TS/SCI clearance with a Polygraph
3. Primary work location, Annapolis Junction, MD, National Business Park
Responsibilities of the Information Systems Security Officer include:
Responsible for maintaining and enforcing all Information Security policies, standards, and guidelines.
Reviews and updates SSPs as needed. Evaluates proposed changes to a system to ensure the change does not impact the system's security.
Assist with installation and setup of new hardware, including desktops, servers, and networking equipment.
Incident response: collaborates internally and externally to develop and support operational procedures to mitigate risks related to classified data spills, intrusions and unauthorized accesses within Federal compliance guidelines relative to specific Federal agency clients to maintain system integrity and availability.
Strong verbal and written skills required providing management status reports and document system changes.
Implement baseline changes under tech lead oversight. Review audit logs.
Conduct vulnerability scans and check scan reports for compliance
Check POA&M status.
Ensure all system users and people with security responsibilities receive their annual awareness training.
Assist with the CM for information system security software, hardware, and firmware
Review and validate user access rights.
Ensure all system users sign the User Agreement before being granted access.
Manages changes to system and assesses the security impact of those changes.
Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).
Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational IA posture for a system, program, or enclave
Position specific required skills:
Strong technical knowledge of security system functions, security policies, technical security safeguards, and operational security measures to include government security requirements with NISPOM and ICD 503.
Must meet 8570 IAT II requirements to include one of the following certifications: CCNA Security, GSEC, Security+ CE, SSCP, CASP CE, CCNP Security, CISA, CISSP.
Two (2) years of experience with Assessment and Authorization, Information Assurance and supporting a client within the Intelligence Community.
One (1) year of experience in a network/software/hardware support and/or systems administrator role.
Information Assurance experience including evaluating, testing, certifying and accrediting of classified and sensitive but unclassified information systems as well as Commercial Off The Shelf (COTS) and Government Off The Shelf (GOTS) products
Have technical knowledge of security system controls, policies, technical security safeguards, and operational security measures to include various government security requirements and working knowledge of NISPOM, NIST, and ICD 503.
Virtualization technologies, such as VMware, Citrix XenServer, or Microsoft Virtual Server/Hyper-V.
Familiarization and understanding and/or training with National Institute of Standards and Technology (NIST) Special Publication 800 Series.
Knowledge of the latest developments in current Information Systems Security strategies and be familiar with the services Information System Security policies.
Team player and can work in a fast-paced environment.
Logistics: Primary work site is in Annapolis Junction, MD with occasional travel to Arlington, Crystal City, VA for support, security team and internal client meetings.
Internal Number: 13996048
At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits.Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Deloitte is led by a purpose: to make an impact that matters. This purpose... defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you’re applying to.