Senior Information System Security Officer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Steampunk, Inc. ยท 3 months ago

Senior Information System Security Officer

positionMcLean, VA
timeFull-time
remoteOnsite
seniorityMid, Senior Level
money$90K/yr - $140K/yr
date5+ years exp

Steampunk, Inc. is a Change Agent in the Federal contracting industry, focusing on innovative solutions for clients in various sectors. They are seeking a Senior Information System Security Officer to support a government customer by ensuring security measures are maintained and vulnerabilities are addressed effectively.

ConsultingInformation Technology
check
Growth OpportunitiesbadNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Ensures that weaknesses, vulnerabilities and findings are identified and addressed appropriately
Prepare POA&Ms, waivers, and/or accepted risk process as necessary
Maintains an inventory of hardware and software for assigned programs
Provide development teams with weekly security reports
Prepares all security documentation and ensures it is updated and maintained, including but not limited to: Security Plan and Contingency Plan
Conducts annual Contingency Plan Testing
Reports IT security incidents in accordance with established procedures
Create of Waivers or Risk Acceptance Memos to assist in the effective management of system risks
Review and update security authorization documents as needed, but at least annually
Coordinate with the customer's Privacy, Records, and Information Governance Divisions related to compliance documentation and other requirements
Maintain knowledge of inventory in accreditation boundary
Proactively ensure security requirements are included in development cycle (Waterfall, Agile, DevOPs)
Use DHS and mandated enterprise IA Compliance Tools
Devise a plan to certify and accredit their assigned Information system or information systems
Respond to emerging requirements or policies as set by legislation, regulation or policy
Participate in DevOps (security integrated into Agile processes) requirements for assigned systems

Qualification

Information Assurance (IA)FISMA complianceNIST guidelinesSecurity documentationVulnerability scanningRisk Management FrameworkApplication securityCloud environmentsCISSPCISACISMCEHAgile methodologiesDevOpsCustomer service skillsProblem-solving

Required

Five (5) to ten (10) years of IA experience is required; three (3) of which must be FISMA-related
Bachelor's Degree in related IT Field or Bachelor's Degree may be substituted with four (4) additional years of FISMA-related experience, for a total of 9 to 14 years of experience
Specialized knowledge of financial audit standards, classified system IA requirements and Privacy Act requirements
Specialized knowledge and experience with evaluating system, network, or infrastructure security controls against requirements such as FISMA, FIPS, and NIST guidelines
Knowledge and experience with the vulnerability scanning execution, assessment, and analysis
Knowledge and experience with information security and assurance principles (e.g., Defense-in-depth) and associated supporting technologies
Knowledge and experience with application security, database security, and network security
Knowledge and experience with the implementation of the NIST Special Publication (SP) 800 family of publications, particularly those associated with the Risk Management Framework
Experience with evaluating system, network, or infrastructure security controls against requirements such as FISMA, FIPS, and NIST guidelines
Ability to assess and weigh current and evolving security threats in an operational environment

Preferred

One of the following: Certified Information Systems Security Professional (CISSP), CompTIA Advanced Security Practitioner (CASP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH)
Current experience providing ISSO support to DHS
Experience supporting systems hosted in Cloud environments
Experience supporting systems in Agile and DevOps environments

Company

Steampunk, Inc.

twittertwittertwitter
Glassdoor4.4
company-logo
Steampunk is anchored by a startup culture with a customer-centered delivery approach, we put our Federal government clients in the center of everything we design, develop, and deliver to drive high-quality mission impacts and user experiences at speed.
dateFounded in 2019
location
Washington, District of Columbia, USA
people-size201-500 employees
web-link
https://steampunk.com/

Funding

Current Stage
Growth Stage
Total Funding
unknown
Key Investors
AcceliCITY powered by Leading Cities
2024-07-31Non Equity Assistance

Leadership Team

leader-logo
Matt Warren
CEO
linkedin
leader-logo
Mike Saliter
Executive Vice President - Homeland, Commerce, & Justice
linkedin

Recent News

PR Newswire
Steampunk promotes Stefani Shepherd to Vice President -- Homeland, Commerce, and Justice Portfolio
2025-11-20
Washington Technology
CBP picks 3 for $900M IT, enterprise business support pact
2025-10-01
PRNewswire
Steampunk Awarded BOA on USDA STRATUS Program
2024-05-21
Company data provided by crunchbase