Information Systems Security Officer (ISSO)

Is your idea of fun getting hands-on experience with networks and servers and building an Information System from the ground up? If so, this is the perfect job for you! Bring your “A” game and join us in the role of Information System Security Officer (ISSO)! Applied Research Associates, Inc.

(ARA) is currently looking for a tenacious, logical, and detail-oriented team player capable of diagnosing complex Information Technology (IT) problems.

The ISSO is a key member of the security team that supports the Assessment and Authorization (A&A) process for information systems under the jurisdiction of the Defense Counterintelligence and Security Agency (DCSA).

The ISSO is responsible for ensuring that the information system complies with the security requirements and controls specified in the DCSA Defense Assessment and Authorization Process Manual (DAAPM) and other applicable policies and regulations.

As part of our IT Team, this person will be comfortable working independently but also enjoy working collaboratively and building close relationships with colleagues.

This type of individual is willing to proactively take ownership of challenges and is happy to support occasional after-hours work.

ARA is a 100% employee-owned company that offers excellent benefits package that includes medical, dental, vision, retirement and more.

This position is located in the city of Niceville, Florida on the gulf coast of Florida.

ARA offers an excellent benefits package that includes:


* 401-K Retirement (both Traditional and Roth) with employer matching


* Employee Stock Ownership Plan


* Various insurance options including Flexible Spending Plan and a Health Savings Account (HSA)


* Paid leave and holidays

 

ISSO Responsibilities include:


* Familiarity with the Defense Counterintelligence Security Agency (DCSA) Assessment and Authorization Process Manual (DAAPM) roles and responsibilities for the ISSO, as outlined in Section 3.7


* Coordinate with the Information System Security Manager (ISSM) and Facility Security Officer (FSO) to ensure the highest level of cybersecurity compliance for unclassified and classified information systems


* Maintain the Information Systems (IS) security program and policies for assigned areas of responsibility IAW the DCSA DAAPM, assigned NIST 800-53 controls, and other guidance as assigned by the ISSM.


* Review and analyze all audit data at least weekly to ensure user activity adheres to operational security policy and procedures.


* Review of network device System Log (syslog) information to correlate to system level activity across multiple information systems.


* Support ISSM oversight of operational IS security implementation policy and Risk Management Framework (RMF) guidelines to the system administrators.


* Support ISSM in the development and documentation of the Plan of Action and Milestones (POA&M) and produce actions to mitigate identified risks.


* Perform Con...