Information System Security Officer (ISSO) - Entry Level

SRC, Inc. is currently seeking an entry level information system security officer (ISSO). This information system security role based is in Springfield, VA.

Responsibilities

• Provide advice and assistance to the government regarding secure configuration and operation of the customer’s ITS assets
• Apply knowledge and experience with standard information system security concepts, practices, and procedures

Requirements

• TS/SCI with CI polygraph security clearance
• Knowledge of and experience with ICD 503, NIST 800 series and the Government’s certification and accreditation process
• Familiarity with conducting research and analysis
• Familiarity with network and information system security principles and best practices
• Familiarity with controlling, labeling, virus scanning, and appropriately transferring data (uploading/downloading) between information systems at varying classification levels
• Ability to engender rapport with the military, civilians, and other contractors at all levels
• Ability to prioritize tasks
• Familiarity with applicable NRO, IC, DoD policies, procedures and operating instructions related to Information Technology, Information Assurance, Information Management (IT/IA/IM)
• Security+ Certification

Preferred Qualifications

• Bachelor’s degree, in a technical specialty such as computer engineering, information security, information management, and/or computer science, and 3+ years’ experience in information systems security project management or information systems security engineering or a master’s degree and 2 years’ experience.
• DoD Directive 8140.01 IAT/IAM Level 2 Certification
• Thorough understanding and application of network security principles, practices, and implementations
• Working knowledge of cross-functional integration of information systems into a physical security environment
• Understanding of system methodologies including but not limited to client server, web hosting, web content servers, policy servers, directory servers, firewalls, WAN, LAN, switches, and routers
• Familiarity with detecting and preventing computer security compromises in a networked environment
• Working knowledge of configuration management; system maintenance; and integration testing
• Proficient in the use of tools used to prevent and/or negate malicious code
• Understanding of COTS tools that scan at the physical layer of all removable and fixed media types including but not limited to: (CDs, hard drives, thumb drives, Zip/Jazz, etc.)
• Ability to decipher and explain in clear language Intelligence Community Directive (ICD) 503
• Ability to support forensics and evidentiary preservation