Information System Security Officer

Overview

SOSi is currently seeking an experienced Information Systems Security Officer (ISSO) to join our team in Joint Base Pearl Harbor Hickam, Honolulu, Hawaii . The customer based out of Honolulu, Hawaii creates, manages, and supports IT solutions for our customer, its mission and its 5,000+ customers throughout the Pacific theater. Our team solves challenging technical problems that enable our customers to realize critical and time sensitive C2 strategies.

Essential Job Duties

As an ISSO, you should be well organized, detailed-oriented and proficient in Department of Defense (DoD) protocols, procedures and regulations, especially those pertaining to Risk Management Framework (RMF).  The duties of this position include being part of the team responsible for the entire RMF lifecycle, from identification and prioritization of security risk, to the implementation and monitoring of security controls.  The candidate should communicate effectively, orally and in writing, and be able to prepare and deliver executive-level briefings to interested parties as required.

• Assist the ISSM (Information System Security Manager) in formulating and upholding an organized information system security program and policies that are applicable to their assigned area of responsibility.
• Establish and maintain secure computer systems and networks for classified processing, and take responsibility for the administration, maintenance, and security auditing of such systems.
• Develop and supervise the implementation of guidelines and policies for operational information systems security.
• Manage assigned eMASS (Enterprise Mission Assurance Support Service) packages containing all security authorizations for information systems under their supervision.
• Coordinate inspections, tests, and reviews of information system security.
• As a key member of the team, you will be responsible for contributing your expertise and skills to help ensure the team's success in responding to security incidents and protecting organizational assets.
• Practical understanding of the Assured Compliance Assessment Solution (ACAS) to support the execution of the information system patch and vulnerability management program.
• Thorough understanding of Security Technical Implementation Guidelines (STIG) and ensure they are reviewed, maintained, and updated on a quarterly basis.
• Ensure compliance with Configuration Management policies and procedures for authorizing the use of hardware and software on an information system.
• Engage with external stakeholders to facilitate the coordination of interconnection requests and ensure that such requests are processed and approved in an efficient manner.
• Maintain current knowledge of system functions, security policies, technical security safeguards, and operational security measures.
• Manage, maintain, and execute the information security continuous monitoring plan.
• Keep records of all security-related vulnerabilities POA&Ms and ensure that serious or unresolved violations are reported to the AO / DAO.
• Evaluate any changes to the system, its environment, and operational requirements that could impact security authorization.

Minimum Requirements

Preferred Qualifications

Work Environment

Working at SOSi

All interested individuals will receive consideration and will not be discriminated against for any reason.

As an ISSO, you should be well organized, detailed-oriented and proficient in Department of Defense (DoD) protocols, procedures and regulations, especially those pertaining to Risk Management Framework (RMF).  The duties of this position include being part of the team responsible for the entire RMF lifecycle, from identification and prioritization of security risk, to the implementation and monitoring of security controls.  The candidate should communicate effectively, orally and in writing, and be able to prepare and deliver executive-level briefings to interested parties as required.