Information System Security Officer (ISSO)
Job Description
Job DescriptionCompany Description
Ashburn Consulting, a Small Business based in the Washington, DC metropolitan area, specializes in providing network and network security solutions in complex environments to a select set of government and business clients. The company, an established leader in its field, is composed of an elite team of engineers and business consultants, each of whom is recognized —and highly regarded—within the network and security communities.
Job Description
Ashburn Consulting currently has an opening for an Information System Security Officer (ISSO) Lead to work with our federal client, the Federal Communications Commission (FCC). This role will serve as the primary liaison between the FCC Cybersecurity Group and system stakeholders, ensuring compliance with security policies and managing the security posture of IT systems. This position is contingent upon contract award.
Day to day responsibilities include:
● Serve as primary liaison between FCC Cybersecurity Group, Information System Owner (SO), Enterprise Common Control Provider (ECCP), and Information Owner.
● Verify applications and support systems meet information security policies including continuous vulnerability scans, patch management, and configuration management.
● Ensure compliance with commercial and open-source software requirements through FCC OCIO Governance Boards.
● Assist with reporting and investigating information security incidents to the Cybersecurity Group Security Operations Center (SOC).
● Identify security categorization and control selection of information systems following established methodology.
● Coordinate Initial Privacy Assessments (IPAs) and Privacy Impact Assessments (PIAs).
● Perform real-time monitoring of assigned information systems through dashboarding capabilities.
● Draft, review, and update information system continuous monitoring plans based on changes in risk, control selection, laws, and guidelines.
● Review tiered information security reports and participate in briefings with system owner, CISO, and Authorizing Officials.
● Prepare Security Posture Reports with adjusted metrics.
● Manage POA&M activities and vulnerability management across FCC networks and projects.
Qualifications
Qualifications/Requirements
● Must be a U.S. Citizen.
● Bachelor's degree in Cybersecurity, Information Systems, or related field.
● 5+ years of related management experience in information system security.
● Core competencies in RMF, information assurance, continuous monitoring, and POA&M management.
● Knowledge, skills, tasks, and capabilities described in NICE work role Systems Security Management (OG-WRL-014).
● Ability to perform any and all functions associated with this effort.
● Required Certifications: Certified Information Systems Security Professional (CISSP).
● Clearance Requirements: Secret (S) clearance with eligibility for Top Secret.
● Location: On-site at FCC headquarters; some telework may be available.
Additional Information
Equal Opportunity Employer/Veterans/Disabled. An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status
Ashburn Consulting is an Equal Opportunity Affirmative Action Employer.
In compliance with the American with Disabilities Act Amendments Act (ADAAA), if you have a disability and would like to request and accommodation in order to apply for a position with Ashburn Consulting, please e-mail hr@ashburnconsulting.com.”