Information System Security Officer (ISSO) with ...

Summary: Provides information system (IS) security support to National Security computing environments. The Information System Security Officer (ISSO) ensures all ISs are technologically configured and maintained during classified operations. Oversees the development, preparation, and submission of System Security Plans (SSP) as part of the Risk Management Framework (RMF) lifecycle. Provides technical writing assistance, compliance review, and approval coordination with appropriate US Government (USG) agencies, and final approval notification during SSP development. Interprets and adheres to various USG requirements including (but not limited to): NISPOM, JSIG, ICD 503 and associated NIST publications, and customer/contract specific IA regulations. Conducts reviews of computer security requirements for compliance, efficiency, and standardization of technical computer security configuration. The selected candidate will be responsible for day-to-day effective execution of the Information Assurance program(s). Performs oversight of the development, implementation and evaluation of information systems security program for assigned in compliance with ICD 503, JSIG RMF and NISPOM.Conducts periodic self-inspections on local processes and practices to ensure compliance; accurately reports security posture to site leadership.Ensures configuration management is appropriate for all ISs'' software and hardware, including documentation and tracking of change control actions.Ensures security logs and audit trails are reviewed in accordance with established schedules.Develop policies and procedures for responding to security incidents, and for investigating and reporting security violations and incidents.Ensure proper protection or corrective measures have been taken when an incident or vulnerability has been discovered within a system.Ensure that data ownership and responsibilities are established for each IS, to include accountability, access rights, and special handling requirements.Ensure development and implementation of an information security education, training, and awareness program, to include attending, monitoring, and presenting local IS security training.Evaluate threats and vulnerabilities to ascertain whether additional safeguards are needed.Assess changes in the system, its environment, and operational needs that could affect the accreditation.Ensure that certification is accomplished on each AIS.Ensure that system recovery processes are monitored to ensure that security features and procedures are properly restored.Ensure that system security requirements are addressed during all phases of the system life cycle. Qualifications and Education Requirements Bachelor''s degree or equivalent combination of education and work experienceMinimum of 5 years'' relevant experienceCan multitask and manage multiple large to small projects in a cross functional environment.Ability to create and maintain complex files and written documents.Achieve thoroughness and accuracy when accomplishing a task through concern for all the areas involved.Clear and effective communication skills in both written and spoken forms.Maintain confidentiality while processing and handling confidential information with discretion.Work collaboratively and build strategic relations with colleagues, coworkers, and contractors. Security Responsibilities Must comply with all company security and data protection / usage policies and procedures. Personally responsible for proper marking and handling of all information and materials, in any form. Shall not divulge any information, or afford access, to other employees not having a need-to-know. Shall not divulge information outside company without management approval. All government and proprietary information will be accessed and stored electronically on company provided resources. CAE USA Inc. is an EOE/AA employer and gives consideration for employment to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. If you''d like more information about your EEO rights as an applicant under the law, please click here EEO is the Law poster. PAY TRANSPARENCY NONDISCRIMINATION PROVISION The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor''s legal duty to furnish information.

Created: 2026-04-04