ISSO - Senior Level

As one of the world’s leading mission capability integrator and transformative enterprise IT providers, we deliver trusted and highly differentiated national security solutions and technologies that keep people safe and secure. Peraton serves as a valued partner to essential government agencies across the intelligence, space, cyber, defense, civilian, health, and state and local markets. Every day, our 22,000 employees “Do The Can’t Be Done”, solving the most daunting challenges facing our customers.

Peraton’s National Programs Business Intelligence Systems & Applications Operating Unit has a need for an experienced Senior Level ISSO to support its SITE III JIOC contract charged with the orchestration, sustainment, and evolution of a portfolio of applications that focus on Collection Management, Intelligence Surveillance and Reconnaissance (ISR) and intelligence operations that directly support intelligence analysts, operations, and collection managers across the Combatant Commands.  The SITE III JIOC contract is designed to establish and ensure a multi-discipline approach to requirements engineering, solutions engineering, scheduling, reliability, resiliency, services development, integration, test and evaluation, maintainability and analysis across the National apparatus of Defense Intelligence, Combatant Commands, supporting Partner Nations and other Federal Agencies to ensure timely and accurate Joint Intelligence Operations (JIOC) collection, correlation and dissemination.  Our support team applies best practices in architecture design, data science, cloud services, DevSecOps and platform integration to develop, sustain and continually evolve the enterprise business systems environment, systems integration, and back-end business process workflows.

The successful candidate will perform the following:

Perform as the Information Systems Security Officer (ISSO) for DIA applications. Provides technical and programmatic Information Assurance Services to internal and external customers in support of network and information security systems. Designs, develops and implements security requirements within an organization’s business processes. Prepares documentation from information obtained from customer IAW DoD/NIST RMF requirements. Prepares Security Test and Evaluation plans. Provides certification and accreditation support in the development of security and contingency plans and conducts complex risk and vulnerability assessments. Analyzes policies and procedures against Federal laws and regulations and provides recommendations for closing gaps. Develops and completes system security plans and contingency plans. Recommends system enhancements to improve security deficiencies. Develops, tests and integrates computer and network security tools. Secures system configurations and installs security tools, scans systems in order to determine compliancy and report results and evaluates products and various aspects of system administration. Conducts security program audits and develops solutions to lessen identified risks. Develops strategies to comply with privacy, risk management, and e-authentication requirements. Provides information assurance support for the development and implementation of security architectures to meet new and evolving security requirements. Evaluates, develops and enhances security requirements, policy and tools. Provides assistance in computer incident investigations. Performs vulnerability assessments including development of risk mitigation strategies. Requires a Bachelor's degree with 10 years of relevant experience. Additional experience may be considered in lieu of degree.

Responsibilities will include, but are not limited to:

• Serves as a principal advisor on all information systems matters, technical and otherwise, involving the security of an IS (classified Information System) under her/his purview.
• Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits and active evaluations such as vulnerability assessments.
• Establishes strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems. Includes support of process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections and periodic audits.
• Assist in the implementation of the required government policy (i.e., NISPOM, ICD 503), make recommendations on process tailoring, participate in and document process activities.
• Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards.
• Support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports.
• Document the results of Certification and Accreditation activities and technical or coordination activity and prepare the system Security Plans and update the Plan of Actions and Milestones POA&M.
• Periodically conduct a complete review of each system's audits and monitor   corrective actions until all actions are closed.
• Review weekly information systems security audits.
• Security configuration management.
• Security account administration.
• Evaluate system security plan documentation.
• Continuous security monitoring.

Requires 10 to 12 years with BS/BA or 8 to 10 years with MS/MA or 5 to 7 years with PhD.

Required Qualifications:

• Bachelors degree with 10yrs or MS with 8 yrs of relevant experience.
• Candidates must have a current DOD TS/SCI security clearance with an original adjudication, or a periodic reinvestigation date, completed within the last 6 years to be considered
•  DoD 8570 compliant at IA Technical (IAT)/IA Management (IAM) Level 2
•  Knowledge of DoD 8510
• Practical experience and with NIST 800-53 Risk Management Framework

Desired Qualifications:

• IAM DoD level 3 (CISM, GSLC and CISSP or CISSP Associate)
• Security +

Peraton drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted and highly differentiated national security solutions and technologies that keep people safe and secure. Peraton serves as a valued partner to essential government agencies across the intelligence, space, cyber, defense, civilian, health, and state and local markets. Every day, our employees do the can’t be done, solving the most daunting challenges facing our customers.