• ISSO

    Job Locations US-DC
    Posted Date 3 months ago(10/24/2018 11:52 AM)
    Job ID
    2018-2229
    # of Openings
    1
    Category
    Information Technology
  • Overview

    Acuity is growing and has an immediate need for an ISSO.

     

    In the ISSO role, you will be supporting our federal government customers in managing the risk of operational information systems. You will monitor security posture using tools such as vulnerability, AV, and log management, and Azure Security Center, Azure Application Gateway. You will participate in change management meetings to identify and assess impact of proposed changes, you will execute and update security-related processes such as account authorizations, POA&M updates.


    You will also participate in implementation of a new cloud-based solution that will replace the current system. You will learn the new tools deployed for security management, developing new / revised processes for their use. You will then support the migration to the new system and decommission the old system. The new cloud system will be built on Microsoft Azure and ServiceNow, which include security tools for boundary protection, vulnerability management, intrusion detection, web application firewalls, and key management. Through your efforts, you will enable government agencies to adopt new technologies that streamline business processes or provide capabilities not presently available to them to better deliver on their mission.


    The office location is in Washington DC.

     

    Acuity, Inc is a leading management and technology consulting firm that specializes in serving the federal government. Our innovative, collaborative and rewarding work environment has earned repeat honors from the Washington Business Journal's Best Places to Work and SmartCEO Corporate Culture awards.

    Responsibilities

    As a skilled ISSO, you will be responsible for the following:

    • Leverage tools to automate processes, implement controls and perform monitoring wherever possible.
    • Constantly learn how to use new technologies and cloud services to reduce security risks, implement controls and automate control implementation.
    • Administer security tools, keep them updated, and learn how to get the most from the available tools to address security protection and detection needs as well as reporting of status.
    • Attend regular change management meetings, identifying impacts to security, performing assessment and communicating impact to security posture with recommendations and ongoing security control assessments and updates to key documentation.
    • Perform vulnerability assessment and configuration audits of application using tools or services selected and implemented in the application design. Work with operations team to prioritize and track remediation.
    • Manage security situational awareness of system by monitoring account management, network
      and system logs, anti-virus and related security threat detection systems.
    • Monitor the system for information spills, executing incident response when necessary.
    • Schedule and conduct incident response and contingency plan tests.
    • Perform quarterly POA&M updates adding new weaknesses, updating existing weaknesses and
      reporting to System Owner and CISO.
    • Assist in development of System Security Plan, Incident Response Plan, IT Contingency Plan and
      associated procedures for the new cloud-based system.
    • Prepare for and assist in migration from current system to new cloud-based solution.

    Qualifications

    Requirements:

    • BS/BS in information technology or related field (or 5 additional years of experience)
    • At least five (5) years of professional experience in information security / information assurance field
    • At least one of the following certifications: CISSP, CAP, CISA, or CCSK
    • Prior experience performing ISSO function in support of federal government agency
    • Strong analytical skills with solid verbal and written communication skills
    • Proficient with MS Office suite of tools
    • Experience with Microsoft Azure required

     

    Desired Capabilities

    • Experience with Microsoft Windows operating systems, Active Directory and networking
    • Experience with Tenable Nessus
    • Experience with Microsoft Azure ServiceNow

    Clearance Requirement:

    • Must possess active Secret government clearance, with Top Secret clearance preferred

     

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed