ISSO\/ Security Assessor (TS\/SCI) in Washington, DC at honor foundations

Date Posted: 10/25/2024

Job Snapshot

Job Description

Zachary Piper Solutions is seeking a ISSOs/Security Assessors to support an Office of Naval Intelligence program in Washington, D.C. The team is seeking security assessors and ISSOs to support ONIs cyber division in security assessment, compliance, documentation, and risk management.

Location: Washington, D.C. (100% on-site)

Number of positions: 4

Responsibilities of the ISSO/Security Assessor:

•      Implement and utilize NAVINTEL ICD 503 Risk Management Framework (RMF) Implementation Policies/Directives and Department of Navy (DON) cybersecurity Policies/Directives

•      Use automated tools such as ACAS, CIS, SCAP, and Retina

•      Documentation of A&A, SOPs, RMF development, and POA&Ms

•      Engage with Navy stakeholders

•      Conduct Test & Evaluation (T&E)

•      Conduct security control assessments and A&A

Qualifications of the ISSO/Security Assessor:

•      2-6+ years of experience in cybersecurity or equivalent field

•      Top Secret SCI eligibility clearance

•      Bachelors degree in a technical subject, additional years of experience in lieu of a degree

•      Certifications:

o  Jr ISSO: Security+CE

o  Mid ISSO: CAP, CASP+, CISM, CISSP, GCLC, CCISO, HCISPP

o  Security Controls Assessor/Validator: CISM, CISSP, GSLC, CCISO, Experience certification as a Navy qualified Validator

•      U.S. Navy A&A experience as a civilian, active duty, or reserves (highly desired)    

Compensation of the ISSO/Security Assessor:   

•      Compensation: $90,000 - $165,000 based on years of experience

•      Full benefits: PTO/Holiday, Medical, Dental, Vision, Certification reimbursement

•      Long-term program

Keywords: information assurance, Navy, Naval, A&A, SCAP, CISM, CASP+, RMF, Risk management framework, ATO, authority to operate, ISSO, cyber, cyber security, security analyst, Top secret, TS, security clearance, On site, Washington, D.C., ONI, IAM III, IAM II, IAT III, ACAS, HBSS, cyber security,  DOD, department of defense, NIST, Arlington, Washington D.C., CND, Computer network defense, computer defense, network security, network security engineer, CND engineer, cyber engineer, cyber security engineer, network administrator, network admin, firewall admin, firewall administrator, Top secret/sci, sensitive compartmented information, TS/SCI, intelligence agency, intel agency, DOD, department of defense, network monitoring, Elkstack, Ansible, scripting, POA&M, Nessus, ACAS, vulnerability, ELK, Mcafee, HBSS, SCAP, SCCM, Configuration manager, configuration management, Logstash, Windows, RHEL, ISSM, ISSO, remediation, security+, IAT II, sec+, security clearance, security, log analysis, malware, routing, switching, firewalls, network administration, CND, SOC, watch floor, NOC, network operations center, security operations center, risk assessment, RMF, risk management framework, threat mitigation, threat hunter, cyber threat, security breach, security events, risk analysis