CISSP Jobs - Information System Security Officer (ISSO), 12178

at BAE Systems
Location Rockville, MD
Date Posted September 29, 2018
Category Default
Job Type Full-time


Job Description

The Information System Security Officer (ISSO) is responsible for applying Information System (IS) security principles, practices, and procedures under the Risk Management Framework (RMF) to maintain compliance with applicable security regulations, such as CNSSI, NIST, and NISPOM, governing the management of classified information systems. The ISSO will have a high degree of autonomy in implementing, monitoring, auditing, and reporting on the security program under his/her oversight. The ISSO will act as a member of the corporate security staff and will provide direct and indirect support to internal and external customers.

*Occasional local and domestic travel may be required for work or training purposes – less than 10%.

Specific Responsibilities:

  • Implement, maintain, and monitor security controls
  • Create and maintain security documentation
  • Achieve and maintain Authorization to Operate (ATO)
  • Provide security related training and guidance
  • Provide technical security and other security support to the corporation
  • Maintain eligibility for security clearance
  • Perform other duties as assigned

Typical Education & Experience

Typically a Bachelor's Degree and 6 years work experience or equivalent experience

Required Skills and Education

The successful candidate must have previous experience with; classified information system security management, network and/or system administration, and the RMF process. A successful candidate will have experience in the assessment and authorization of a classified information system. The candidate must also hold a Security or Information Technology related certification, such as CISSP.

Candidate must also have:

  • Current, final, SECRET clearance
  • Technical certification, such as CISSP
  • Understanding of NIST 800 series, CNSSI 1253, NISPOM Chapter 8, and related publications
  • Ability to perform risk assessment and risk management for classified IT systems
  • Familiarity with the RMF process
  • Experience in drafting RMF related documentation
  • Experience in implementing and monitoring technical, administrative, and operational security controls
  • Ability to maintain organized and complete records
  • Ability to prioritize competing demands and complete tasks on schedule

Preferred Skills and Education

In addition to the required skills for this position, a qualified candidate will demonstrate a combination of training and hands-on experience in several of the operational and technical skills listed below:

  • Good interpersonal and communication skills
  • Familiarity with the DSS OBMS system and/or the Xacta tool
  • MS Windows Server – Group Policy Objects
  • MS Windows Server - Active Directory
  • MS Windows Server – system administration
  • Reviewing MS Windows security event logs
  • Use of scanning tools and interpreting results
  • Security incident management
  • Working with hardware and software vendors
  • Providing end-user training

About BAE Systems Intelligence & Security

BAE Systems Intelligence & Security, based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do—from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels. That’s BAE Systems. That’s Inspired Work. Equal Opportunity Employer/Females/Minorities/Veterans/Disabled/Sexual Orientation/Gender Identity/Gender Expression. To see Inspired Work in action, visit and follow us on Facebook: