Job Information
Belay Technologies Information Systems Security Officer in Fort Meade, Maryland
Belay Technologies has been voted Baltimore Business Journal's (BBJ) Best Places to Work 2019, runner up in 2020 and a finalist in 2021!
Belay Technologies is seeking an Information Systems Security Officer (ISSO) to join our intel team. The candidate will be responsible for security architecture and systems engineering supporting projects (primarily MFAMS, TITUS and JBlocks). The ISSO will provide guidance to the team to support system accreditation (IATT and ATO).
ISSO tasks include:
Prepare system security plan (SSP) and provide recommendations to assist in obtaining ATOs
Identify, develop (either directly, or in coordination with applicable experts), review and incorporate common artifacts found in an RMF accreditation package such as: system architecture and boundaries, hardware and software lists, risk assessment reports, POA&Ms, data flows, and other necessary system, network, and application documentation
Work with ISSM and DAOs to ensure systems obtain and maintain accreditation
Verify package submissions have met the threshold for approval such as: C&A Package for System Reauthorization, SAR Findings, CTO’s, POA&Ms, and System Security Plans (SSPs)
Apply continuous monitoring techniques to evaluate the systems security posture
Create tasking for developers and system administrators as changes and patching are required
Oversee the implementation of software patches to maintain the security posture of the organization
Responsible for implementing, and enforcing information systems security policies, standards, and methodologies
Familiarity with the use of vulnerability scanning and assessment tools (e.g., ACAS/Nessus) necessary to identify and document compliance
Review Audit Logs on a weekly basis
Perform Data transfers on a weekly basis driving from CACI Hanover Office to Ft. Meade
Maintain and report assessment and authorization statuses and issues in accordance with organizational guidance
Understand the PRIVAC process. Support personnel with new PRIVAC requests and extensions
Candidates should have the following qualifications:
TS/SCI Clearance with polygraph
This position has been designated as requiring IAM Level 1 CWIP certification and requires one of the following baseline certifications to qualify
CAP, CND, Cloud+, GSLC, Security+CE, HCISPP, CASP+CE, CISM, CISSP (or Associate), CCISO
If submitting using System Administrator Level 1 LCAT
Bachelor's degree in a technical discipline from an accredited college or university
Seven (7) years relevant work experience. Four ($) of additional experience may be substituted for a bachelor's degree
At least four (4) years of this experience must be as an ISSO on programs and contracts of similar scope, type, and complexity
If submitting using ISSO Level 2 LCAT
Bachelor's degree in computer science or related discipline from an accredited college or university
Ten (10) years’ experience as an ISSO on programs and contracts of similar scope, type, and complexity is required. Four (4) years of additional experience as an ISSO may be substituted for a bachelor's degree
Experience is to include at least two (2) of the following areas:
Knowledge of current security tools
Hardware/software security implementation
Communication protocols
Encryption techniques/tools.
Candidates are required to have experience with:
- The ICD 503/NIST 800-53 certification and accreditation process
The Risk Management Framework
Developing and maintaining SSPs
IAVA review and handling
Interpreting Security Scan results
Interfacing with System Administrators and Software Engineers
Task tracking systems (e.g. Jira, Redmine, ServiceNow)
Understand:
- Public Key Infrastructure-based authentication
A variety of security policies, especially within the IC
Fundamentals of technical security risk assessment
Understands how to perform analysis of alternatives
Able to clearly communicate ideas and status updates to management and other stakeholders.
Perks and Benefits:
8 weeks paid leave - 4 weeks of personal leave, 3 Yay! days, take off on your birthday, 11 paid holidays and optional leave up to 6 days through Belay's volunteer program
10% matching in 401(k) contributions vested on day one
$5,000 annual training/tuition
Student Loan Repayment Program
100% company-funded HSA
Rich medical coverage (100% coinsurance)
Dental coverage including orthodontia
Up to $420,000 in life insurance, premiums 100% company funded
Amazon Prime, gym reimbursement, monthly lunches, games and prizes
Pet adoption program, generous referral bonus program, fun events, and more!
At Belay, we are committed to creating an environment where you can thrive both professionally and personally. We believe in transparency and fairness in compensation. Several factors influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, education, specific skills and competencies and certifications. Belay offers a competitive total compensation package that includes benefits and perks, a flexible work-life balance, and career development.
Salary Range: $114,000 to $164,000
Belay Technologies is a certified Service-Disabled Veteran-Owned Small Business located in Columbia, Maryland (Baltimore/Washington area). Belay Technologies specializes in systems automation and full stack development. Belay Technologies provides leading technology and engineering solutions to the DoD, as well as state-of-the-art commercial products. We hire software engineers, web designers, test engineers, systems engineers, systems administrators, database engineers and other tech services. We are an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.
Powered by JazzHR