Mar 20, 2023

Information Systems Security Officer - Experienced Level (Maryland)

  • National Security Agency
  • Fort Meade, MD, USA
Information Technology

Job Description

Do you want to be at the forefront of strengthening our National Cybersecurity posture? Do you want to do work you can't do anywhere else? Do you want to help chart the course for NSA's innovative Cybersecurity and help prevent future cyber-attacks against the United States? If so, NSA is the place for you! Information System Security Officers perform a broad spectrum of duties and may: - perform audits, inspections, and investigations in accordance with government regulations and make appropriate recommendations for improvement - provide technical support to the security certification and accreditation process - work collaboratively with stakeholders on the risk assessment process - coordinate hardware/software/firmware modifications within the Risk Management Framework - assess the effectiveness of security solutions against present and projected threats

Information System Security Officers are responsible for ensuring the appropriate operational security posture is maintained for an information system (IS). ISSO responsibilities support the monitoring of NSA/CSS networks to detect and correct areas of security non-compliance, unmitigated vulnerabilities, and other risks in order to prevent insider threats and adversary activity. ISSOs follow consistent security processes and play a critical role in the Information Systems Continuous Monitoring (ISCM) Program to support the agency's need to continuously operate its information assets within an acceptable security posture and coordinate a proactive response as the threat environment changes.

The qualifications listed are the minimum acceptable to be considered for the position. Degree must be in Information Assurance, Information Security, Information Systems, Information Technology, Computer Networking, Information Science, Cybersecurity, or any related field. Experience must be in one or more of the following areas: Risk Management Framework (RMF), Information Systems Security technologies, or IT policies. Relevant experience may also include information systems design, development, programming, information/computer/cyber/network security, vulnerability analysis, system auditing, penetration testing, computer forensics, computer systems research, reverse engineering, systems engineering, or network and system administration. Entry is with a Bachelor's degree plus 6 years of relevant experience, or a Master's degree plus 4 year of relevant experience or a Doctoral degree plus 2 years of relevant experience. A high school diploma or GED plus 10 years of relevant experience, or an Associate's degree or 18 semester hours of military coursework/training in a computer-related field plus 8 years of relevant experience may be considered.

The optimal candidate is someone with strong organizational, analytical, communication, and interpersonal skills. Specialized skills may include preventing, assessing, and/or mitigating threats to information systems and infrastructures and the information contained in or transmitted by these systems. This may encompass: - threat and vulnerability analysis - risk mitigation - certification and accreditation - Risk Management Framework Skills applying standards, policies, procedures and requirements for ensuring information security are also beneficial. Industry certifications such as CISSP, CAP, Security+CE, CCNS Security, CySA+, CISM or MSIS are helpful. If you want to utilize your ISSO expertise to help NSA strengthen the National Cybersecurity posture; you need to talk to us!

Salary offers are based on candidates' education level and years of experience relevant to the position and also taking into account information provided by the hiring manager/organization regarding the work level for the position. Salary ranges vary by location and work level. This position is hiring for Maryland. Salary Range: $112,015 - $172,075 On-the job training. Internal NSA courses, and external training will be made available based on the need and experience of the selectee. Typical work schedule is Monday - Friday, with basic 8 hr/day work requirements between 0600 and 1800 (flexible).