Information Systems Security Officer (ISSO)

Modern Technology Solutions, Inc. (MTSI) is seeking an Information Systems Security Officer (ISSO), to support the US Space Force Space Systems Command Rapid Reaction Branch. The ISSO will develop, implement and/or integrate cybersecurity standards into information systems and system components including those for networking and computing in various enclave enviroments IAW Risk Management Framework (RMF) requirements.

Why is MTSI known as a Great Place to Work?

• Interesting Work: Our co-workers support some of the most important and critical programs to our national defense and security.
• Values: Our first core value is that employees come first. We challenge our co-workers to provide the highest level of support and service, and reward them with some of the best benefits in the industry.
• 100% Employee Ownership: we have a stake in each other's success, and the success of our customers. It's also nice to know what's going on across the company; we have company wide town-hall meetings three times a year.
• Great Benefits - Most Full-Time Staff Are Eligible for:
• Starting PTO accrual of 20 days PTO/year + 10 holidays/year
• Flexible schedules
• 6% 401k match with immediate vesting
• Semi-annual bonus eligibility (July and December)
• Company funded Employee Stock Ownership Plan (ESOP) - a separate qualified retirement account
• Up to $10,000 in annual tuition reimbursement
• Other company funded benefits, like life and disability insurance
• Optional zero deductible Blue Cross/Blue Shield health insurance plan
• Track Record of Success: We have grown every year since our founding in 1993

Modern Technology Solutions, Inc. (MTSI) is a 100% employee-owned engineering services and solutions company that provides high-demand technical expertise in Digital Transformation, Modeling and Simulation, Rapid Capability Development, Test and Evaluation, Artificial Intelligence, Autonomy, Cybersecurity and Mission Assurance.

MTSI delivers capabilities to solve problems of global importance. Founded in 1993, MTSI today has employees at over 20 offices and field sites worldwide.

For more information about MTSI, please visit www.mtsi-va.com.

For additional company information, please visit: www.mtsi-va.com

• Perform day-to-day maintenance of systems, including auditing and patch management
• Perform technical security assessments of complex systems
• Identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies
• Apply knowledge of IA policy, procedures, and workforce structure to implement secure networking, computing, and enclave environments
• Write authorization and accreditation (A&A) documentation and ensure the systems are operated and maintained in accordance with these security plans
• Enforce the design and implementation of trusted relationships among external systems and architectures
• Support security planning, assessment, risk analysis, and risk management for client systems and programs
• Interact with technical team members from multiple organizations in a diversified, team environment
• Identify overall security requirements for the proper handling of client data
• Perform system or network designs that encompass multiple enclaves to include those with differing data protection/classification requirements
• Recommend system-level solutions to resolve security requirements
• Ensure all users have the requisite security clearances, authorizations, need-to-know, and are aware of their security responsibilities before granting access to client systems
• Conduct periodic reviews of information systems to ensure compliance with the security authorization package
• Perform key functions (above) and other security-related tasks as directed on multiple systems, at multiple sites, or for multiple clients

Required Education, Certifications and Experirence:

• AS degree from an accredited university including classes in Computer Science, Information Assurance, Information Security Systems Engineering, or related fields
• 4+ years of experience working in a cybersecurity or related field
• Must meet position and certification requirements outlined in the DoDD 8570.01-M for Information Assurance Technician (IAT) level 2 and Information Assurance Manager (IAM) level 1

Desired Education, Certifications and Experience:

• BS degree from an accredited university in Computer Science, Information Assurance, Information Security Systems Engineering, or related field

Required Skills & Experience:

• Certifications in one or more of the following: CompTIA Security+, GIAC Industrial Cyber Security Certification (GICSP), GIAC Security Essentials (GSEC), GIAC Cyber Security Leadership (GSLC), or ISC2 Systems Security Certified Practitioner (SSCP)
• Experience with both Windows- and Linux-based operating systems
• Expert knowledge of federal security requirements and mandates (e.g., RMF, Federal Information Processing Standards (FIPS), National Standards of Information Technology (NIST))
• Experience working on DISA Security Technical Implementation Guide (STIG) implementation across multiple operating systems and applications
• Must be a team player and be able to work within all levels of a project team
• Excellent time management, scheduling, and organizational skills
• Ability to work well independently as well as follow detailed instructions for completing tasks
• Demonstrated ability to complete tasks, drive projects to closure, assimilate and correlate project information in a fast-paced environment
• Demonstrated ability to shift from one project to another in a dynamic, agile work environment
• Excellent oral and written communication skills and ability to clearly translate client technical needs into technical specifications
• Ability to communicate technical approaches and details within small project teams, including team interactions and presentations
• Familiarity with security procedures while working in a SCIF/SAPF environment

Desired Skills & Experience:

• CISSP or equivalent level certification
• Experience with various Security Content Automation Protocol (SCAP) tools such as Assured Compliance Assessment Solution (ACAS) (Nessus) and SCAP Compliance Checker (SCC)
• Experience using the Splunk Security Incident and Event Management (SIEM) program
• Apply system security engineering expertise to various client programs/processes (e.g., system security design process, engineering life cycle, information domain and cross domain solutions, identification / authentication / authorization of commercial off-the-shelf and government off-the-shelf software employment, system integration, risk management, intrusion detection, contingency planning, incident handling, configuration control, change management, auditing, certification and accreditation process, principles of IA (confidentiality, integrity, non-repudiation, availability, and access control), security testing)
• Experience working on-site in a government client environment

Travel: This position will require overnight travel up to 10 percent of the time. Trip durations may range from overnight to several weeks.

Security Clearance:

• Active TS clearance.
• Active TS clearance with SCI eligibility. (Desired)
• U.S. Citizenship is required for this position.

#LI-Onsite