Job Description
Be Challenged and Make a Difference
In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture.
Description of Task to be Performed:
AnaVation is seeking an Information System Security Officer (ISSO) Team Lead to support a key client in Washington DC. This individual will provide expert level guidance and leadership in implementing, maintaining, and enforcing information security policies, standards, and methodologies in accordance with federal regulations and agency requirements. This is a working Team Lead role.
What you will be doing
- Directly oversee ISSO team members including technical guidance and training, mentorship, performance management, and day-to-day work assignments
- Develop, review, and update system documentation and FISMA-compliant SA&A packages (e.g., SSP, IRP, SOP, POA&Ms, CMP, IPA, PIA, SORN) in accordance with client policies and procedures to obtain/maintain system accreditation (e.g., ATT, ATO, ATU, OA) using established processes
- Advise the Authorizing Official (AO) and System Owner (SO) on cybersecurity matters related to assigned information systems across all NIST RMF phases, including system categorization, control baselines, control assessments, document and track weaknesses, and oversee corrective actions.
- Serve as a member of the CCB to ensure system security requirements are addressed
- Monitor cybersecurity status of information systems throughout the system lifecycle
- Establish and regularly review audit trails, providing audit logs upon request
- Provide RMF process subject matter expertise across all FISMA-reportable systems
- Conduct SCA per NIST 800-53A, OMB A-130, OMB A-123, and client policies and schedules; report control gaps or weaknesses, risk levels, cost-benefit analysis, and impact to the client
- Maintain a full inventory of hardware and software for the information system
- Develop, coordinate, test, and train staff on Contingency Plans and Incident Response Plans; support Incident Response and DR/COOP activities
- Scan applications, networks, and databases; identify vulnerabilities
Required Qualifications:
Minimum Qualifications (Education/Certifications, Experience, etc):
- Minimum of ten (10) years of hands-on ISSO experience, including High and Cloud systems
- Minimum two (2) active certifications: PMP, CISSP, CISM, CEH, CASP, CCSP, CCSK, or Security+
- Minimum two (2) years of hands-on experience with JCAM
Clearance:
- Active Top Secret clearance with SCI Eligibility
Other Required Skills & Qualifications:
- In depth understanding of FISMA, NIST RMF, and SA&A processes
- Exceptional interpersonal skills to establish and maintain positive working relationships with all stakeholders
- Experience with GRC tools such as vulnerability management, vulnerability scanning, endpoint management, data protection, SIEM, and GRC automation platforms
- Expert-level command of the English language (oral and written), with experience interacting effectively at the CIO and CISO levels of large organizations
- Expert-level organizational skills and ability to keep a multitude of tasks and projects on track at all times and with minimal supervision
Location:
- This position is currently performed remotely but the work location is subject to change at the customer’s sole discretion. Candidates must be located in the DC-metro area and be willing to adapt to a hybrid or on site work location in Washington DC if required.
Preferred Qualifications:
- Bachelors Degree or higher
- CISSP certification
Benefits
- Generous cost sharing for medical insurance for the employee and dependents
- 100% company paid dental insurance for employees and dependents
- 100% company paid long-term and short-term disability insurance
- 100% company paid vision insurance for employees and dependents
- 401k plan with generous match and 100% immediate vesting
- Competitive Pay
- Generous paid leave and holiday package
- Tuition and training reimbursement
- Life and AD&D Insurance
About AnaVation
AnaVation is the leader in solving the most complex technical challenges for collection and processing in the U.S. Federal Intelligence Community. We are a US owned company headquartered in Chantilly, Virginia. We deliver groundbreaking research with advanced software and systems engineering that provides an information advantage to contribute to the mission and operational success of our customers. We offer complex challenges, a top-notch work environment, and a world-class, collaborative team.
If you want to grow your career and make a difference while doing it, AnaVation is the perfect fit for you!
AnaVation is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.
