Job Description

Information System Security Officer- ISSO

Job Category: Information Technology

Time Type: Full time

Minimum Clearance Required to Start: TS/SCI

Employee Type: Regular

Percentage of Travel Required: Up to 10%

Type of Travel: Continental US

* * *

The Opportunity:

CACI is hiring an ISSO to join our team at Fort Liberty, NC!

In this role, the ISSO will perform independent and group work on one primary project and others as required.  The candidate will generate deliverables through the customer’s Risk Management Framework (RMF) Process and Commercial Solutions for Classified (CSfC) authorization processes, ensuring the deliverables achieve approvals.  The ISSO effectively leverages their knowledge and familiarity with the RMF ATO & CSfC processes to secure the approvals by the required date, raising any concerns that may impact approvals being granted and resolving any issues.  Using their thorough knowledge of cybersecurity principles, concepts, policy, and regulations, the ISSO generates required artifacts, with special emphasis on control implementation verbiage to ensure it is clear, concise, and accurately depicts how the security and privacy controls are met. Working with the Archon cybersecurity team, professional services (engineering and O&M) team, and product development team, the ISSO identifies information system risks and possible mitigation measures, documenting these in various risk reports and Plans of Action and Milestones (POA&Ms).  The candidate will be supporting the review of existing product solutions and work closely with the security team to propose improvements to include security, operational, deployment, and new feature integrations.  Additionally, the candidate will provide management and training to the O&M cyber staff responsible for ensuring that the customer’s solution preserves its NSA CSfC Accreditation status.

Responsibilities:

• Possess hands-on experience processing an Information System (IS) through a U.S. Government RMF process, completing all steps (Selection through Continuous Monitoring)

• Prepare, review, and maintain current documentation to include all required RMF ATO and CSfC artifacts, including but not limited to: System Security Plans (SSP), Security Controls Traceability Matrix (SCTM), Risk Assessment Report (RAR), Security Assessment Report (SAR), Plan of Action & Milestones (POAM)

• Perform and complete STIG checklists, monitor IAVM compliance, and document and appropriately assess to completion any associated POAMs

• Configure and validate secure systems, tests security products/systems to detect computer and information security weaknesses

• Perform continuous monitoring of automated vulnerability detection scan results and track the engineering efforts to remediate/address vulnerabilities and keep customer apprised of progress

• Provide security coordination and review on all cybersecurity documentation

• Support security team in analyzing existing Archon solutions to develop steps and processes to improve operating within the constraints of a U.S. Government technology solution

• Assist in review of all proposed system or software application changes against the latest NIST standards and all other applicable standards

• Ability to translate technical IS configurations into non-technical documentation

• Knowledge of RMF requirements and automated tools to validate compliance with these requirements

• Possess the ability to create/analyze requirements accountability records, develop cybersecurity POA&Ms and monitor compliance through the entire program’s lifecycle

• Ability to verify that software and its documentation are compliant with applicable requirements

• Analyze and interpret vulnerability assessment results

• Advise and assist in completing Security Technical Implementation Guide (STIG) checklists

• Ability to work in a team with diverse backgrounds

• Interact with Archon customers and engineers with the initial setup and configuration of Archon solutions in external network constrained environments

• Self-starter, proactive, and must be able to handle multiple simultaneous tasks

Qualifications:

• U.S. Citizenship

• TS/SCI with Polygraph eligibility

• 5+ years experience in U.S. Government Risk Management Framework (RMF) packages and compliance

• Demonstrate experience performing technology analysis related to Information Technology and Information Security, within a U.S. Government environment

• Hands-on experience with internal or external security audits and assessments

• Technical knowledge of all phases of Information Technology operations

• Working knowledge of Red Hat, VMware, and Microsoft Operating Systems

• Detail oriented and organized; able to understand and articulate evaluation criteria and be exact in assessments

• Must closely follow network or systems protocols and methodology

• Reviews the work of others and can detect errors or needed modifications

• DoD 8570 IAT Level II Required

• Solid understanding of Data Center Architectures and design principles 

• Highly experienced with U.S. Department of Defense and Intelligence Community policies and protocols

Desired:

• Experience in NSA’s Commercial Solutions for Classified (CSfC) or related Cross Domain technologies (Archon, AFRL SecureView, Forcepoint Trusted Thin Client, etc.)

• Bachelor’s degree in Cybersecurity, Computer Science, Electronic Engineering or other engineering or technical discipline or equivalence in experience

-

______________________________________________________________________________

What You Can Expect:

 

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.

An environment of trust.

CACI takes pride in fostering a diverse and accessible culture where every individual feels supported to chart their own path. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.

Your potential is limitless. So is ours.

Learn more about CACI here.

______________________________________________________________________________

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here.

The proposed salary range for this position is:

$78,000 - $163,800

CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, age, national origin, disability, status as a protected veteran, or any other protected characteristic.

',