Job Description

FAR Group headquartered in Stafford, VA., is a Service-Disabled Veteran Owned Small Business that provides federal professional services, primarily engaged in providing advanced information technology, cyber security, management systems support, as well as business and infrastructure management services.

We are among the most innovative, respected, and ethical providers of technology solutions to the United States government. Our mission is to provide superior-quality, innovative, information technology solutions that help federal agencies best aid, serve, and protect the American people.

Job Title: Senior Information System Security Officer (ISSO)

Work Location

· Washington, DC.

QUALIFICATIONS:

· Lead and manage cybersecurity risk management programs, overseeing a team of 5 or more IT professionals.

· Serve as a Subject Matter Expert (SME) in NIST SP 800-37 Risk Management Framework, 800-60, 800-53, 800-53A, FIPS199, FISMA, FedRAMP, NIST SP guidance, and other federal cybersecurity-related policies, directives, and mandates.

· Implement and maintain system/application security controls and procedures to protect information systems and data from unauthorized access, disclosure, alteration, or destruction.

· Perform risk management activities, including developing and maintaining System Security Plans (SSPs), Risk Assessment and Recommendations (RARs), and Plan of Action and Milestones (POA&M).

· Develop and deliver executive-level briefings and reports on the status of information security programs, risks, and compliance.

· Supervise and manage tasks, schedules, resource allocation, and communication with key stakeholders.

· Provide guidance and support to system owners and stakeholders on security best practices, policies, and procedures.

· Collaborate with third-party vendors and partners to ensure compliance with information security requirements and manage associated risks.

· Utilize the Cyber Security Assessment and Management (CSAM) tool for risk management activities.

· Stay updated with the latest trends, technologies, and regulations in the field of information security.

Responsibilities:

1. Demonstrated experience in leading cybersecurity risk management programs with 5 or more IT professionals.

2. Subject Matter Expert (SME) in NIST SP 800-37, 800-60, 800-53, 800-53A, FIPS199, FISMA, FedRAMP, NIST SP guidance, and other federal cybersecurity-related policies, directives, and mandates.

3. Extensive experience in system/application security, risk management, information assurance third-party management, and risk remediation.

4. Proven track record of performing risk management activities, including developing and maintaining System Security Plans (SSPs), RARs, POA&M, and delivering executive-level briefings.

5. Certification: International Information System Security Certification Consortium (ISC)2 Certified Information Systems Security Professional (CISSP).

6. 3+ years of experience in a lead role (supervisory, program manager, etc.) managing tasks, schedules, resource allocation, and communication with key stakeholders.

7. 3+ years of experience as an SME in NIST SP 800-37, 800-60, 800-53, 800-53A, FIPS199, and related OMB and NIST guidance.

8. 3+ years of experience in system/application security, risk management, information assurance third-party management, and risk remediation.

9. 3+ years of experience performing risk management activities, including developing and maintaining SSPs, RARs, POA&M, and delivering executive-level briefings.

10. 2+ years of experience using the Cyber Security Assessment and Management (CSAM) tool.

11. Experience with Qmulos.

12. Certification: Project Management Institute (PMI) Project Management Professional (PMP) certified and/or Certified in Risk and Information Systems Control (CRISC)..

Why FAR Group?

You can take pride in working for a company dedicated to serving our government by providing the best, most cost-effective solutions for the US Government. Our work helps the US Government secure our nation, support the efforts of our military and intelligence communities, and provide lifesaving medical services to our soldiers, vets, and their families.

Job Types: Full-time, Part-time

Ability to commute/relocate:

• Washington, DC 20001: Reliably commute or planning to relocate before starting work (Required)

License/Certification:

• CISSP (Preferred)
• Certified Information Systems Auditor (Preferred)

Work Location: In person

Please Note :
chrismaxcer.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, chrismaxcer.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.