Job Information
KaylaTek, Inc. Information System Security Officer (ISSO) in Arlington, Virginia
135000-155000 per year Salary plus benefits | Arlington, VA, USA | Salary | Full Time
Come join our growing team with a 21st Century Vision! At KaylaTek, we understand that the key to our success is the quality of the people we employ. Our focus is not just on jobs, but on building and enhancing your career through ongoing professional development, training, and high quality of life. Our team members choose KaylaTek for a number of reasons including our competitive compensation and benefit packages, dedication to education, as well as our outstanding service. Our Grow Strong Vision encompasses a place for employees to grow, learn and feel a sense of belonging, not just a place to work.
KaylaTek is seeking a Senior ISSO to support a premier Air Force contract.
JOB SUMMARY: The AFNCR IT Services program provides support services for information systems for Headquarters Air Force (HAF), Air Force District of Washington (AFDW), Office of the Secretary of Defense (OSD), Joint Chiefs of Staff, and other Air Force activities within the AFNCR missions to include the Pentagon, Joint Base Andrews (JBA), Joint Base Anacostia-Bolling (JBAB), and other locations, leased spaces, and alternate sites.
CERTIFICATIONS REQUIRED: Current DoD 8570 baseline certification for IAT II (one of the following: GSEC, Security+, SCNP and SSCP certifications)
SECURITY CLEARANCE: C urrently possess an active TS/SCI SCI clearance
TELEWORK: Day Shift - Full time on-site (includes ad-hoc telework)
PRIMARY RESPONSIBILITIES:
Must be able to work in a constantly changing regulatory environment with short, mid, and long term timelines for remediating any non-compliance
Must be able to work well within a team environment and able to adapt quickly to change
Identify key stakeholders in A&A efforts and ensure system documentation reflects current system security configurations to include hardware and software components, data flow, interconnections, and ports, protocols, and services, etc.
Maintain cybersecurity procedures and processes as assigned
Able to analyze, interpret, and apply Federal cybersecurity guidance to customer needs
Communicate the security posture of systems through designated reporting mechanism
Assist in preparation and review documentation to include System Security Plans (SSPs), Risk Assessment Reports (RAR), and other Assessment & Authorization (A&A) artifacts
Assist in the research and address information security issues as required, and develop and maintain the Plan of Action and Milestones (POA&M) and support remediation activities
Develop and advise development of Assessment and Authorization (A&A) artifacts and security documentation to include, but not limited to System Security Plans (SSP), Plan of Action and Milestone (POAM), Contingency Plan, Incident Response Plan, Configuration Management Plan
Assist with pre-assessment preparation
Perform Risk Management Framework (RMF) activities to achieve Authority to Operate (ATO).
Perform continuous monitoring of security controls to ensure that they are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the cybersecurity requirements for assigned IT systems.
Advise system owners on all matters, technical and otherwise, involving the security of assigned IT systems.
Strong verbal and written skills required providing management status reports and document system changes.
Analyze problems and provide focused solutions to effectively communicate information to various audiences verbally and through written communications.
BASIC QUALIFICATIONS:
Bachelor's degree or equivalent work experience and certifications
Active TS/SCI Security Clearance
Current DoD 8570 baseline certification for IAT II (one of the following: GSEC, Security+, SCNP and SSCP certifications)
5+ years of Cyber Security experience
2 Years of IT experience (Networking/System Administration)
Working knowledge of security system controls, policies, technical security safeguards, and operational security measures
Heavy experience with DoD STIG process.
Excellent verbal and written communication skills.
Executing the security assessment and authorization (or ATO) process with independent assessors
Executing Continuous Monitoring and maintaining the security posture of IT systems day to day
Familiarity with eMASS and XACTA
The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified.
COMMITMENT TO DIVERSITY
KaylaTek is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity or expression, pregnancy, age, national origin, disability status, genetic information, protected veteran status, or any other characteristic protected by law.