Information Systems Security Officer (ISSO) - Seneca Holdings

Great Hill Solutions is part of the Seneca Nation Group (SNG) portfolio of companies. SNG is the federal government contracting business wholly owned by the Seneca Nation. SNG meets mission-critical needs of federal civilian, defense, and intelligence community customers across a variety of domains. The SNG portfolio receives shared services support from its parent company Seneca Holdings and is comprised of multiple companies that participate in the Small Business Administration 8(a) program. To learn more visit www.senecanationgroup.com and follow us on LinkedIn.

The Seneca Nation Group companies offer competitive compensation and a strong benefits package including comprehensive medical and dental care, matching 401K, paid time off, flexible spending accounts, disability coverage, and other benefits that help provide financial protection for you and your family. We pride ourselves on our collaborative work environment and culture which embraces our mission of providing financial and non-financial benefits back to the members of the Seneca Nation.

This team will provide IT services, systems engineering, application development, network integration, cyber security, mobile solutions, administrative and business process services to DoD Military Health System/Military Treatment Facility at the 633dMedical Group, Joint Base Langley-Eustis (JBLE), Virginia (VA).

Great Hill Solutions is hiring for a Information System Security Officer (ISSO) at Langley AFB to provide services that include, but are not limited to tasks/duties listed below:

• Primary function is to support the Information System Security Manager (ISSM) in executing and leading efforts to ensure system compliance within the DHA Risk Management Framework (RMF) process.
• Review and update RMF Information System accreditation packages, via eMASS and other required tools.
• Obtain and stay current on training to establish and maintain access to appropriate RMF tools and systems (eMASS, SBD, HBSS, ACAS, etc.).
• Conduct security surveys and gather pertinent security documentation for inclusion into system accreditation packages.
• Monitor assigned personnel, including Privileged Users, for continuous compliance with Cybersecurity Program requirements. This includes approval of onboarding packages.
• Review and sign documentation submitted to Cybersecurity office requesting systems access.
• Review request packages, using established systems of record, for new equipment purchases by the MTF.
• Validate entry authorization list (EALs) accuracy and currency for Communication Closets/Data Centers in the MTF.
• Oversee systems maintenance through coordination of IAVMs with vulnerability management team (System/Network Administrators).
• Review scans to identify vulnerabilities and implement countermeasures. Work with Vulnerability Management Team to ensure timely remediation implementation.
• Conduct STIG Review via available authorized tools (e.g., STIG Viewer, PCAT, BASS, SCC, etc.). Work with the ISSM to develop mitigation strategy for resolving findings.
• Review each "Report of the Day" from DHA J-6 and distribute necessary information which affects the MTF.
• Notify ISSM and CIO when changes occur that might affect the network accreditation and certification.
• Develop and enforce security measures; assesses risks and respond to security breaches. Implement changes and provide employee training-based on the results of the assessment.
• Ensure information system and network nodes are deployed, maintained, and disposed of IAW security policies and practices.
• Provide leadership, mentoring, and quality assurance for team members.

Certification: Security+ would be the minimum certification requirement.

Education and Experience: Bachelor's Degree in Computer Science or Information Systems OR minimum of 6-8 years' experience in lieu of a degree.

Work Schedule:  Monday through Friday, 7:30 A.M. to 4:30 P.M.