Information Systems Security Officer

Location: Annapolis Junction, MD
Date Posted: 06-15-2017
Company Information:
Synergy ECP is a Service Disabled Veteran-Owned Small Business SD(VOSB) that was formed in July 2007 with Headquarters in Columbia, MD and is made up of talented, dedicated staff to provide a broad range of services to the defense, intelligence and health care industries.

In an ultra-competitive environment, Synergy ECP has thrived by adhering to our name, making sure excellence is displayed by our Employees, to our Customers and by Improving Performance (ECP).

It’s what sets us apart, enabling us to be an autonomous yet agile business that delivers huge results - showing we’re ready to meet our customers’ evolving demands.

Synergy ECP has earned a client list that includes numerous Fortune 100 companies, in addition to multiple branches of the US government and military services.
Synergy ECP is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, veteran status, or any other protected class.

Clearance Required: TS/SCI w/ Full Scope Polygraph

Bachelor’s Degree or higher in computer engineering or in a field related to the computer engineering or computer science disciplines. 5 years Security Engineering experience.  An additional 4+ years of Security Engineering experience may be substituted for the degree for a total of 9 years. The candidate will be responsible for security architecture and systems engineering for the Identification, Authentication, and Authorization Service Provider Office which provides enterprise security services for the Intelligence Community Information Technology Enterprise – a shared IC environment for integrated intelligence operations.  

ISSO tasks include:
• Provide expertise and guidance on operational information systems security practices, and apply these to the development of the IA&A system.
• Ensure the security requirements are met, including defining the security mode, protocols and standards.
• Ensure security policies, practices, and procedures are implemented.
• Develop and maintain System Security Plans (SSPs).
• Assist developers by reviewing system changes for adverse security impact.
• Apply continuous monitoring techniques to evaluate the systems security posture
• Evaluate vulnerabilities to ascertain if additional safeguards are needed. • Knowledge of the customer’s certification and accreditation process.
• Knowledge of and experience implementing the requirements in ICD 503.
• Experience developing and maintaining SSPs.
• Able to clearly communicate ideas and status updates to management and other stakeholders.
• Strong technical writing skills.
• Familiar with Public Key Infrastructure-based authentication
• Familiar with a variety of security policies, especially within the IC
• Understands fundamentals of technical security risk assessment
• Understands requirement engineering
• Understands how to perform analysis of alternatives
this job portal is powered by CATS