Defense Point Security
  • Baltimore, MD, USA
  • Full Time

Benefits: See Below


Do you want to work for a company that is passionate about security and has a fun, start-up culture with large company perks? Do you want to be in an environment where you will continuously learn new skills, grow and take on new opportunities due to the abundance of new projects on the horizon?

If you answered yes to these questions, this opportunity could be for you! 

Defense Point Security is currently seeking an Information System Security Officer (ISSO) in Baltimore, MD.

Job Responsibilities:

  • Serve as the principal security advisor for one or more project teams on all matters involving the security of assigned information systems
  • Analyze the security process of the systems development lifecycle (SDLC), policies, procedures, developing laws, directives, and best practices and identify necessary ongoing improvements to Agency processes for compliance
  • Assess and/or support the assessment of the security risks of IT services, IT assets, software, hardware, and business processes used by Agency components in support of their mission critical workloads
  • Identify threats to Agency business processes, network, systems, and data. Identify security requirements and recommendations to provide appropriate level of protection to IT resources
  • Engage in stakeholder discussions, document reviews, and develop recommendations for mitigating risks
  • Develop present findings, articulate alternatives, and identify gaps using analytic techniques that balance risks with mission requirements
  • Develop and maintain supporting documentation, including but not limited to SIAs, SSPs, Security Risk Assessments (SRAs), and Security Test and Evaluation (ST&E) Reports
  • Continually evaluate and recommend improvements to the SSA SDLC models, procedures, and deliverables to improve process efficiency and compliance with Federal governance for security requirements
  • Analyze the impact and recommend strategies for implementation of new and developing governance, including but not limited to OMB, FIPS, and NIST guidance on the RMF, Ongoing Authorization (OA), Information Security Continuous Monitoring (ISCM), and Continuous Diagnostics and Monitoring (CDM)
  • Assist in the development and documentation of security policies and procedures in the SDLC, in accordance with NIST guidance
  • Develop and maintain security documentation templates, including but not limited to a FIPS-199 Information System Security Categorization, System Security Plan (SSP), Audit Plan, Configuration Management Plan, and Contingency Plan
  • Select and integrate appropriate security controls into SDLC processes to ensure project teams meet requirements for developing secure applications

Job Qualifications:

  • This position requires US Citizenship due to our Federal contractual obligation
  • 5 years' experience in IT security, including Certification and Accreditation and/or IT security risk analysis/advice, in support of the Federal government
  • Working knowledge of FISMA controls with the ability to develop and document controls
  • Experience with large federal agency ATO process and knowledge of United States Government information security Policies
  • Knowledge of Federal Government C&A practices and policies; FISMA, NIST SP Series e.g. 800-30, 800-37, 800-39, 800-47, 800-53, 800-53A, 800-60 Volumes 1 and 2, 800-64, 800-100, 800-137, 800-144, 800-145, 800-146, 800-171
  • Experience with Agile methodologies, Continuous Deployment Development principles
  • Working knowledge of Ongoing Authorization with in the NIST Framework
  • Demonstrated knowledge of Federal Risk and Authorization Management Process (FEDRAMP)

Preferred Skills:

  • Strong project task management skills
  • Flexibility to handle multiple stages of overlapping system reviews in a large organization
  • Experience assisting in the development a risk management framework (RMF) program and strategy
  • Experience with information assurance tools
  • Experience vulnerability assessment scanning tools and reporting, such as NESSUS, ACAS

 

Job Location: Baltimore, MD

Position Type: FullTime/ Regular

Security Requirement: Public Trust

All candidates must be clearable.

To see other locations please see the Information Security  Career Menu on defpoint.com

 

Defense Point Security is an IT Security Consulting firm specializing in government-focused security solutions.  Our goal is to provide expert IT security services to our clients while cultivating information security knowledge among all employees for the advancement of cyber security.  Defense Point Security offers a competitive employment package including medical, vision, and dental insurance (among others).

Defense Point Security offers a competitive benefits package to include:

  • Medical, Dental, Vision Insurance Premiums are 100% paid by DPS for employee and eligible dependents
  • Personal Accident Insurance paid by DPS
  • Life Insurance paid by DPS
  • Short and Long Term Disability Insurance paid by DPS
  • 401k Contribution Matching and 100% vested after 90 days
  • Flexible Spending Accounts 
  • Commuter Assistance
  • Paid Time Off starting at 3 weeks a year (15 days)
  • 10 paid Federal Holidays
  • Up to $100 per month reimbursed for cell phone
  • Up to $50 per month reimbursed for home internet
  • Up to $200 every 2 years for a cell phone upgrade
  • Capital BikeShare Membership for DC Metro Area
  • Reimbursement for qualifying training expenses
  • Flexible / Alternative Work Schedules

Defense Point Security is an Equal Opportunity / Affirmative Action Employer. We are committed to hiring and retaining a diverse Community workforce. DPS gives equal consideration to all qualified candidates without regard to race, color, religion, creed, gender identity, national origin, sex, pregnancy, marital status, age, sexual orientation, disability, veteran status, or any other protected class. 

Defense Point Security
  • Apply Now

    with our quick 3 minute Application!

  • * Fields Are Required

    What is your full name?

    How can we contact you?

    By clicking the button above, I agree to ApplicantPro's Applicant Information Use Policy.

  • Sign Up For Job Alerts!

  • Share this Page
  • Facebook Twitter LinkedIn Email
.
Logo Home Corporate Info Services R&D DPS News Careers Search