GDIT is seeking an individual that can perform as the Information System Security Officer (ISSO) with secondary duties in supporting the Endpoint Security System (ESS) analyst for the USAREUR-AF G6 MND Mission Partner Network (MPN) system. The individual will be responsible for all aspects of an organization's information security system, which is enforcing cybersecurity compliance for MPN account creation process, which is reviewing documentation for general and privileged user, as well as supporting endpoint security for systems within our MPN enterprise.
Other duties include performing security authorization activities in compliance with Risk Management Framework (RMF) using Army eMASS, developing Plans of Actions and Milestones (POA&M). Assist ISSMs/ISSOs in maintaining operational security posture to ensure information systems (IS), security policies, standards, and procedures are established and followed.
HOW AN ISSO WILL MAKE AN IMPACT
Support in general and privileged account process.
Ensuring information system security requirement are addressed during all phases of information systems lifecycle.
Support the A&A team in obtaining documentation for an ATO and ATC.
Triage cybersecurity incident response from initial to end and understanding CJCSM 6510.01B
Review and update policies based on industry standards and best practices.
Support CCRIs, Assessments, etc., improve risk ratings, and develop strategic plans for overall assessment procedures, policies, etc.
Support the endpoint security infrastructure sustainment, maintenance, and advanced configuration (policy management, database administration, and security management tools).
Support the incident response efforts including, but not limited to, investigation, artifact collection, escalation, containment, recovery, root-cause analysis, and drafting of incident reports.
Support the reporting, documentation, and investigation of all security-related incidents, and the development and implementation of corrective measures.
Support assessments of threats and vulnerabilities; determine deviations from acceptable configurations, enterprise, or local policy; assess the level of risk; and develop and/or recommend appropriate mitigation countermeasures in operational and nonoperational situations.
Support the establishment and mature security hardening standards and advocate for changes in policies that support organizational cyber security initiatives, enhancements, and drive process improvement efforts.
WHAT YOU WILL NEED TO SUCCEED
Security Clearance Required: TS/SCI
Education: BA/BS
Experience Required: 5+ years experience
Required Skills and Experience: Experience implementing CNSSI 1253 controls to maintain system RMF compliance; Experience interpreting and implementing STIGs to ensure system Cyber compliance; Understanding MPE governance (e.g., CJCSI 6290.01, DoDI 8110.01, etc.), and knowledge of the NATO Federated Mission Network (FMN) Spirals; Experience utilizing Trellix Endpoint Security products; Understanding Elastic dashboards, complex queries, event correlation, data enrichment, generation of alerts, and support the MND CTI analyst in threat hunting activities.
Certifications: Candidate must meet DoD 8570 IAM Level III certification requirements on day 1. Candidate must obtain ITIL Foundation certification within 90 days of hire
Candidate must be able to meet German TESA requirements.
German TESA requirements:
A bachelors degree plus 3 years of recent specialized experience, OR;
An associates degree plus 7 years of recent specialized experience, OR;
A major certification plus 7 years of recent specialized experience, OR;
11 years of recent specialized experience.
GDIT IS YOUR PLACE:
401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional growth opportunities including paid education and certifications
Cutting-edge technology you can learn from.
Rest and recharge with paid vacation and holidays