Expoint - all jobs in one place

מציאת משרת הייטק בחברות הטובות ביותר מעולם לא הייתה קלה יותר

Limitless High-tech career opportunities - Expoint

SAP SAP NS2 Information System Security Officer 
United States, Virginia 
407648699

09.09.2024

Active TS/SCI + poly

NS2 COMPANY DESCRIPTION

This position requires access to customer data; Must be a U.S. citizen
.SAP NS2 does not offer Visa sponsorships for this role. All internals must have manager’s approval to transfer.

POSITION OVERVIEW

The ISSO will provide support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies. Assist with managing and directing the IT-IA-IM requirements of classified corporate assets within Intelligence Community Directive 503 (ICD-503) for NIST Risk Management Framework governance requirements. They will be responsible for the implementation of automated information systems security, and operational compliance with the documented security measures and controls. Assist in maintaining operational security posture for an information system/program to ensure information systems security policies, standards, and procedures are established and followed. The ISSO will perform vulnerability/risk assessment analysis to support certification and accreditation and provide oversight and compliance for documentation of information system security engineering activity workflow efforts and requirements in ServiceNow (SNOW).

SKILLS/EXPERIENCE REQUIREMENTS

  • Communicate with stakeholders at the asset/system level while understanding security threats and vulnerabilities to the operations and the system’s environment.
  • Communicate routinely with government stakeholders to meet or exceed security controls.
  • Monitor and maintain processes and procedures to identify, track and mitigate system vulnerabilities.
  • Maintain real-time inventory listing of IT components approved for government use.
  • Perform data transfers.
  • Support the maintenance of the information system by working with multiple groups within the program to review and submit Plan Of Action and Milestones (POA&M) and exceptions.
  • Review and verification of asset controls.
  • Review and validation of vulnerability analysis by the team to ensure known vulnerabilities are being addressed in an appropriate timeframe.
  • Support the development, management, and monitoring of security dashboards to meet customer requirements.
  • 3-5 years of experience providing ISSO work.

DESIRED EXPERIENCE AND SKILLS

  • Knowledgeable about NIST Special Publications 800 series for computer security.
  • Knowledge of Splunk is desirable.
  • Advanced writing skills: able to clearly articulate ideas for executive level leadership and technical staff.
  • Advanced analytical skills: able to use prior experience and knowledge to seamlessly incorporate new knowledge or information during client interactions.
  • Obtain Security+ Certification within six months
  • Excellent verbal and written communication and interpersonal skills
  • Ability to communicate relevant messages on time and with constructive feedback to cross-functional colleagues and managers
  • Ability to apply analytical techniques when gathering information from users, defining work problems, designing technical solutions, and developing procedures to solve problems.
  • English: Fluent

ADDITIONAL REQUIREMENTS

  • Bachelor’s Degree is required. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology. MA/MS Preferred.

Note: The job description is meant to be a guideline. It is not exhaustive, and we will expect the selected candidate to show flexibility and eagerness to undertake varied tasks and projects.

We win with inclusion


Washington DC