ANR - Security Expert III - ISSM
Remote Worker - US Only
Alaska Northstar Resources (ANR) is currently seeking a highly qualified Security Expert III (ISSM) to join our Cybersecurity team to provide support on our HICATS Cybersecurity contract. The ISSM will serve as the primary cybersecurity technical advisor to the AO, PM, and ISO, ensuring the integration of cybersecurity into and throughout the lifecycle of the IT, on behalf of the AO and in accordance with DoDI 8510.01.
This fully remote role entails but is not limited to:
- Supporting the PM or ISO in maintaining current “Authorization to Operate” and “Approval to Connect” (if required) and in implementing any corrective actions necessary to keep applications secure.
- Coordinating with the PMO office, SCA team, and AO staff in developing an ISCM strategy and monitoring any proposed or actual changes to the system and its environment.
- Continuously monitoring IT and environment for security-relevant events, assessing proposed configuration changes for potential impact on the cybersecurity posture, and assessing the quality of security control implementation against performance indicators.
- Ensuring cybersecurity-related events or configuration changes that impact AF IT authorization or adversely impact the security posture are formally reported to the AO and other affected parties, such as IOs and AOs of interconnected IT.
- Ensuring all ISSOs and privileged users receive necessary technical training.
- Day-to-day management of ISSO tasks.
- Managing eMASS security control test results and documentation.
- Overseeing the creation of RMF-related artifacts specific to NIST security control families.
- Candidate must be a U.S. Citizen
- Candidate must have active DoD Secret Clearance at minimum.
- Candidate must have an active DoD 8570.01 IAM Level III (CISM, CISSP, GSLC, CCISO)
Candidate must possess at least 5 years of experience in the following:
- ISSO/ISSM experience with mission application in RMF Authorization to Operate (ATO) process management of RMF and A&A process, risk assessments, and security controls.
- Experience with STIG review, provides remediation recommendations and test results.
- Experience overseeing security configuration reviews and creating Security Test Plans.
- Meets the technical requirements relevant to the cybersecurity roles, responsibilities, and technical system functionality and processes.
Desired Knowledge, Skills, Abilities
- Experience supporting DoD government customers.
- Experience under DAF Enterprise AO.
Work Environment
Office environment. Requires ability to provide clear, concise, accurate and timely communication, both verbally and in writing (100%). Requires ability to interact professionally with co-workers, management, and client (100%). Occasional business travel may be required. Only requested and approved expenses will be covered by ANR.
About …
This job isn't fresh anymore!
Search Fresh JobsJob Profile
Active DOD secret clearance required U.S. citizenship required US Only
Benefits/PerksCareer growth opportunities Challenging work assignments Challenging work assignments with opportunities for advancement/career growth Competitive compensation Fully remote Opportunities for advancement Opportunities for advancement/career growth Outstanding benefits
Tasks- Coordinating
- Development
- Implementation
- Monitoring
- Monitor security events
- Provide technical training
Communication Compliance Configuration Management Cybersecurity Documentation EMASS Monitoring NIST Remediation Risk Management Framework RMF Security assessments Security Controls STIG
Experience5 years
Education CertificationsCISM CISSP DoD Secret Clearance GSLC
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9