ISSO/ISSE- Hybrid (Philadelphia)

ishpi· Core IT Svc.
Apply Now ↗
📍 Philadelphia, PA, USFULL TIME

About this role

Overview

Ishpi Information Technologies, Inc. (DBA ISHPI) is passionate about providing our customers with technical solutions that satisfy their business needs. Through collaborative interactions with customers, team members, subject matter experts (SMEs), technical leaders, and partners we design practical solutions that solve real problems for major government and business organizations. As a member of our group, you will work with a team focused on delivering innovative business solutions using emerging technologies through proven successful methods. 

Responsibilities

The ISSO/ISSE will provide Risk Management Framework (RMF) and cybersecurity support to Naval Surface Warfare Center, Philadelphia Division (NSWCPD) Code 418 Information Technology Operations. These duties include but are not limited to:  

  • Maintain Authorizing Official (AO) Approvals and Authorizations to Operate (ATOs) by performing Continuous Monitoring (CM) activities IAW DoD, Navy, and NAVSEA policy, guidelines, and directives.
  • Assess, document, and review NIST SP 800-53 security controls IAW DoD, Navy, and NAVSEA policy, guidelines, and directives.
  • Perform automated vulnerability assessments utilizing DoD, Navy, and NAVSEA approved tools such as Assured Compliance Assessment Solution (ACAS), Security Content Automation Protocol (SCAP), Evaluate-Stig, and eMASSter.
  • Perform RMF Annual Security Reviews (ASRs) IAW the RMF Process Guide (RPG), NAVSEA Business Rules, and NAVSEA Standard Operating Procedures (SOPs).
  • Document, assess, and seek approval for system/baseline changes IAW Navy Authorizing Official (NAO) and Functional Authorizing Official (FAO) guides as documented in the NAVSEA Business Rules.
  • Manage and maintain RMF system packages and the required A&A artifacts in Enterprise Mission Assurance Support Service (eMASS) IAW DoD, Navy, and NAVSEA policy, guidelines, and directives.
  • Perform System Level Continuous Monitor (SLCM) IAW approved System Security Plans (SSPs) in eMASS.
  • Develop and maintain Plans of Action and Milestones (POA&Ms) for systems in eMASS.
  • Develop and maintain project integrated master schedules for RMF projects.
  • Evaluate, remediate, and mitigate technical and non-technical vulnerabilities.
  • Provide cybersecurity patching of assets as required by DoD and DoN TASKORDs, FRAGORDs, or as designated by Command ISSM, ACIO, and/or Code 418 management. 
  • Ensure correct application and implementation of DoD Security Technical Implementation Guides (STIGs) and Security Requirements Guide (SRGs).
  • Lead or assist with developing, maintaining, and tracking Risk Management Framework (RMF) system security plans to include System Categorization, Security Control Set, Platform Information Technology (PIT) Determination Checklists, Assess Only (AO) Determination Checklists, Implementation Plans, System Level Continuous Monitoring (SLCM) Strategies, System Level Policies, Hardware Lists, Software List, System Diagrams, Privacy Impact Assessments (PIA), and other package evidence or implementation guidance as required.

Qualifications

Education: Bachelor’s degree in Computer Science, Information Technology, Information Assurance, CyberSecurity, or an equivalent technical degree from an accredited college or university.  

 

Experience: Three (3) years or more of direct experience performing the above duties as an ISSO, ISSE, or Navy Qualified Validator (NQV) within a DoD component.

 

Minimum Certification Requirement includes one of the following: CGRC, SecurityX, CISM, CISSP, GSLC, CCISO, CCNA/CCNP Security, CySA+, GICSP, CND, GSEC, Security+ CE, SSCP, CISA, GCED, GCIH

 

Security Clearance:  Requires U.S. Citizenship and an active government security clearance.

 

“Ishpi Information Technologies, Inc. is an Equal Opportunity Employer. All qualified candidates will be considered without regard to legally protected characteristics.

 

Expression of Interest: By applying to this job, you are expressing interest in this position and could be considered for other career opportunities where similar skills and requirements have been identified as a match. Should this match be identified, you may be contacted for this and future openings.

 

*cj

 

 

Frequently Asked Questions

Is the salary disclosed for the ISSO/ISSE- Hybrid (Philadelphia) position at ishpi?
The salary for this ISSO/ISSE- Hybrid (Philadelphia) role at ishpi is not publicly listed. Click "Apply Now" to learn more about the compensation package on their official careers page.
Where is the ISSO/ISSE- Hybrid (Philadelphia) position at ishpi located?
This ISSO/ISSE- Hybrid (Philadelphia) role at ishpi is based in Philadelphia, PA, US. The position is listed as on-site or hybrid. Check the full job description or apply directly to confirm the work arrangement.
Is the ISSO/ISSE- Hybrid (Philadelphia) role at ishpi full-time or part-time?
This is listed as a FULL TIME position. It is posted as a ISSO/ISSE- Hybrid (Philadelphia) role in the Core IT Svc. department at ishpi.
Which team or department does the ISSO/ISSE- Hybrid (Philadelphia) at ishpi belong to?
This ISSO/ISSE- Hybrid (Philadelphia) position is part of the Core IT Svc. department at ishpi. See the full job description for more information about the team structure and responsibilities.
How do I apply for the ISSO/ISSE- Hybrid (Philadelphia) position at ishpi?
Click the "Apply Now" button on this page. You will be redirected to ishpi's official application portal hosted on icims where you can submit your application directly.
When was the ISSO/ISSE- Hybrid (Philadelphia) job at ishpi posted?
This ISSO/ISSE- Hybrid (Philadelphia) position at ishpi was posted on Jun 10, 2024. Apply as soon as possible — early applications are often reviewed first.
ISSO/ISSE- Hybrid (Philadelphia)
ishpi
Apply for this role ↗

You'll be redirected to ishpi's official application page on icims.