Philadelphia, PA
Posted 1 year ago

Work Status:  Full-Time

Location:  Philadelphia, PA

Security Clearance:  Secret

Requisition Number:  CU-ISS-III-ISSO-001

Job Summary:

The Information Systems Security III Specialist will support efforts to integrate new technology with IT security standards, technical writing, governance, and policy development/management required to develop, evaluate Information Assurance Assessment and Authorization (A&A) for servers and systems, and validation for systems.

Responsibilities:

  • Research and recommend any corrections of CS non-compliance findings.
  • Review and analyze network security requirements, network design, and software and hardware, as well as analysis to ensure security controls are implemented in compliance with CS policies and standards.
  • Ensure accreditation and authorization packages for systems within the assigned technical department are developed, maintained, and updated.
  • Work with the ISSM to tailor the delivery of Cybersecurity Program elements, such as accreditation requirements and strategies, to ensure effective dissemination and implementation within the assigned technical department.
  • Ensure information systems are operated, used, maintained, and disposed of in accordance with security policies and practices as required by the authorization package.
  • Manage and implement the cybersecurity process, and oversee weekly documentation in accordance with the Risk Management Framework (RMF) to obtain assigned system’s, enclaves, and boundaries Authority to Operate (ATO).
  • Track and report on production of system cybersecurity artifacts and status of cybersecurity Assessment & Authorization (A&A) efforts.
  • Examine system services and provide guidance to users in assigned department on disabling services, review vulnerability findings with SMEs to determine potential impact of remediation efforts, and devise system remediation and associated test procedures based on vulnerability scan results, STIG findings, and review of system services.

Requirements:

  • Eight years of experience coordinating with various levels of an organization to enact required security changes to ensure compliance with published policies; conducting cybersecurity vulnerability and threat analysis; and support cyber incident-response by isolating potentially effected assets, initial investigation and data collection, through status updates/reporting.
  • CAP, GSLC, Security+ CE
  • Master’s degree in computer science, information technology, or an equivalent technical degree from an accredited college or university.

Apply For This Job

A valid email address is required.
A valid phone number is required.

ODME is a Federal contractor and an Equal Opportunity Employer. ODME is subject to Executive Order 11246, which requires government contractors to take affirmative action to ensure that equal opportunity is provided in all aspects of their employment. In addition, we are subject to Vietnam Era Veterans’ Readjustment Assistance Act of 1974, as amended by the Jobs for Veterans Act of 2002, 38 U.S.C. 4212 (VEVRAA), which requires Government contractors to take affirmative action to employ and advance in employment protected veterans. In order to comply with these laws, ODME invites applicants to voluntarily self-identify their gender, race/ethnicity and protected veteran status. ODME does not discriminate on the basis of race, religion, color, sex, sexual orientation, gender identity, age, protected veteran status, non-disqualifying physical or mental disability, national origin, genetic information, or any other basis covered by appropriate law.  All employment is decided on the basis of qualifications, merit, and business need.

Submission of this information is voluntary and refusal to provide it will not subject you to any adverse treatment. The information obtained will be kept confidential and may only be used in accordance with the provisions of applicable laws, executive orders, and regulations, including those that require the information to be summarized and reported to the federal government for civil rights enforcement. When reported, data will not identify any specific individual.

ODME invites any applicant and/or employee to review the Company’s written Affirmative Action Policy (Link)