Information System Security Officer (ISSO)
About The Position
Peraton is looking for an e xperienced Information System Security Officer (ISSO) to join our team on the Brand New Air Traffic Control System (BNATCS) . The ideal candidate will have e xperience supporting NIST and FedRAMP lifecycle activities ; have r egularly interfaced with senior government leadership, a uthorizing o fficials, program managers, and technical teams to communicate information system cybersecurity requirements, posture, risk impacts, compliance status , e tc . ; and have a demonstrative history of support ing information system authorization efforts, continuous monitoring activities, and audit readiness initiatives while maintaining mission continuity.
Requirements
- Minimum of a B achelor’s degree with 8 + years of experience, Master's degree with 6+ YoE, or Ph.D. with 3+ YoE in an Information System Security Official (ISS O) role for one or more government information systems
- St rong experience working with Federal Information Processing (FIPS), FISMA, FedRAMP and o ther c yber s ecurity related laws, regulations and directives
- W ell versed in developing, documenting , maintaining , and shepherding information system security plans (SSPs) through all phases of the NIST R isk Management Framework from Prepare and C ategoriz e through A uthoriz e and M onitor
- Self-motivated and tenacious about cybersecurity with the ability to work effectively under pressure and manage multiple priorities in a fast-paced environment
- Excellent communication skills and ability to demonstrate sound judgment, integrity, and s trong problem-solving skills
- US Citizenship with the ability to obtain/maintain a FAA suitability background investigation
- This is a 100% on-site position; Candidates must be local and willing to commute to our Chantilly/Herndon, VA or Bowie, MD locations.
Nice To Haves
- D egree in I nformation T echnology , Cybersecurity, Computer Science, or related IT field
- One or more of the following professional certifications: CISA, CRISC, CISM, or CISSP
- I n-depth knowledge of FAA ’ s Security Policy 1370.121B and 1600.75 and u nderstands DOT and FAA Security Polic ies
Responsibilities
- W ork closely under the supervision of the Governance Risk and Compliance (GRC) Lead , and with system engineers, architects, and other security personnel within the Peraton National Airspace Sector (NAS) to ensure information system control measures are tailored, documented, implemented , operating as intended, and producing desired results
- S upport authorization activities by developing, maintain ing , and controlling information s ystem security plan (SSP) documentation in accordance with federal guidelines . This documentation includ es , but is not limited to : Contingency Plan s , Disaster Recovery Plans, Incident Response Plan s , Standard Operating Procedures, Plan of Actions and Milestones , R emediation Plans, Configuration Management Plan s , other checklists, templates, and tools to aid in Security Assessment and Authorization ( A&A ) process es
- C onduct information system security control reviews , produce documented findings , and recommend remediation efforts
- M onitor information system security posture and coordinate vulnerability remediation with technical teams
- P roduce, t rack , and manag e Plan of Action and Milestone (POA&M) corrective action s from identification through closure
- Review system changes for security impact and ensure process and compliance requirements are addressed
- Support internal and external audits by preparing information system artifacts and responding to auditor information requests
- Assist with incident reporting and security event coordination
- Collaborat e with cross-functional teams to integrate cyber security requirements into operational processes
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
