Be an early applicantLess than 25 applicants

Company

Valiant Solutions, LLC · 13 hours ago

Technical ISSO

Fort Worth, TX

Full-time

Remote

Mid, Senior Level

$124K/yr - $149K/yr

5+ years exp

Maximize your interview chances

Cyber SecurityInformation Technology

Comp. & Benefits

No H1B

Security Clearance Required

Insider Connection @Valiant Solutions, LLC

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Serves as the IT security POC (ISSO) for assigned systems to ensure agency information systems comply with FISMA OMB and agency Policies.

Ensure security activities are implemented throughout the SDLC from beginning to end.

Ensure all systems are operated, maintained and disposed of IAW documented security policies and procedures, including but not limited to Assessment & Authorization (A&A).

Oversee and manage relationships for assigned systems that may be contractor-owned and contractor-operated, ensuring vendors comply with agency security and privacy requirements.

Support the development and maintenance of all security documentation such as the System Security Plan, Privacy Impact Assessment, Configuration Management Plan, Contingency Plan, Contingency Plan Test Report, POA&M, annual FISMA assessment, and incident reports.

Promote Information Security Awareness and provide training.

Research assigned IT security systems to provide insight on IT security architectures and IT security recommendations for assigned systems.

Report, and respond to security incidents.

Assess vulnerabilities to ascertain if additional safeguards are needed and ensure systems are patched and security hardened at all levels of the “stack,” and monitor to see that vulnerabilities are re-mediated as appropriate.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Security+CISSPCISMCISANIST PoliciesFISMA ComplianceRMFIncident AnalysisNIST Cybersecurity FrameworkNessus Tenable SecurityNetSparkerInformation Security PoliciesTechnical Stakeholder CommunicationNon-Technical Stakeholder CommunicationSDLCSystem Security PlanPrivacy Impact AssessmentConfiguration Management PlanContingency PlanPOA&MIncident ReportsSecurity Awareness TrainingVulnerability Assessment

Required

Security+, CISSP, CISM, CISA, or equivalent Security certification.

Have detailed knowledge of NIST Policies, Governance, Security Planning and Architecture, FISMA Compliance, RMF, Incident Analysis, and General Security Best Practices.

Possess strong written and oral communication skills to support customers, internal stakeholders, peers, and public audiences.

Ability to communicate, both written and orally, to both technical and non-technical stakeholders.

Good understanding of and experience with applying FISMA and NIST Cybersecurity framework and requirements.

Technical expertise with Nessus Tenable Security and NetSparker reports.

Experience in developing Information Security policies and procedures.

Strong communication skills to interact with senior managers, junior staff, and business unit (non-technical) customers.

Five (5) years of experience in the IT security field.

Two (2) years of experience supporting A&A (NIST 800-53) and compliance activities.

Two (2) years of hands-on technical experience as a System Architect or Security Engineer.

Bachelor of Science in Computer Science, Information Systems, Mathematics, Engineering or a related field or an additional (3) three years of industry experience.