Skip to main content Skip to Footer

Job Listing



Federal - Information System Security Officer

Job Location: VA - Chantilly

Regional Description: Southeast

Job Number: 00545489

APPLY SAVE THIS JOB

- Job description

Organization: Accenture Federal Services

Location: Washington, D.C.

 

Accenture Federal Services, a wholly owned subsidiary of Accenture LLP, is a U.S. company that helps clients transform bold ideas into breakthrough outcomes.  We serve every cabinet-level department and 30 of the largest federal organizations. Our 9,000 dedicated colleagues and change makers work with clients at the heart of the nation's priorities in defense, intelligence, public safety, civilian and health to make a difference for the people they employ, serve, and protect.   


Successful Information System Security Officer (ISSO) candidates will deliver high-quality client solutions to support the design, development, implementation, testing and continual monitoring of our IC, DoD, and Federal Government Client’s systems security controls.  Review Information Systems (IS) in order to identify potential security weaknesses, recommend improvements to mitigate vulnerabilities, implement security controls and document changes.  Responsibilities also include physical and environmental protection, personnel security, incident handling, and security training and awareness.

 

Develop Information Assurance (IA)/Cybersecurity strategies. Communicate and enforce IC, DoD and Federal IA and Information Security policies, standards and guidelines. Develop and administer an effective industrial security protocol that assures compliance with National Industrial Security Program Operating Manual requirements, Special Security Agreement and other applicable security requirements.

 

Read, interpret, implement, test and monitor to National Institute of Technology (NIST) Information Security guidelines. Interpret and evaluate the implementations of NIST 800-53 security controls. Define, create, and maintain the documentation for Certification and Accreditation (C&A) of each Information System (IS) IAW government requirements.  Preparation of system security Assessment and Authorization (A&A) artifacts for new and reaccreditation of client based systems. Develop and promulgate System Security Plans (SSPs).  Perform compliance monitoring, analysis, tracking and reporting. Analyze and advise on the risk and remediation of security issues based on reports from vulnerability assessment scanners, patch management tools, and emerging threat information. Initiate, coordinate and track the patching and remediation of security weaknesses as they are discovered, via a "Plan of Actions and Milestones" (POA&M).  Review monthly vulnerability scan reports and track and address weaknesses in POAMs as needed. 


Responsibilities of the ISSO include, but are not limited to:


  • Ensure systems are operated, maintained, and disposed of in accordance with security policies and procedures as outlined in the security authorization package;
  • ISSO shall be adequately trained and possesses technical competence commensurate with the complexity of the ISs. ISSO will also attend technical and security training (e.g., operating system, networking, security management) relative to assigned duties;
  • Ensure all users have the requisite security clearances, authorization, need-to-know, and are aware of their security responsibilities before granting access to the IS and educate cleared personnel to their security responsibilities as outlined in Security Requirements Documents (DD254 or equivalent);
  • Conduct periodic self-inspections and lead Security Vulnerability Assessments (SVAs) and report all security-related incidents to the ISSM;
  • Conduct periodic reviews of ISs to ensure compliance with the security authorization package;
  • Supervise and direct security measures necessary for implementing Government Requirements and insure compliance with all security requirements for Classified and Unclassified contracts and develop written procedures outlining the security requirements for each government contract;
  • Assess the impacts on system modifications and technological advances and coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM prior to the change;
  • Formally notify the ISSM when changes occur that might affect system authorization;
  • Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctly;
  • Ensure all IS security-related documentation is current and accessible to properly authorized individuals;
  • Ensure audit records are collected and reviewed as outlined in the SSP;
  • Clearly understand the contract terms and conditions related to security requirements and direct and lead contract execution support related to security;
  • Coordinate Security Education Training and Briefings to all employees.
  • Comply with DISA Security Technical Implementation Guides (STIG) requirements and understand how to configure systems according to guidelines.

 

 

Basic Qualifications:

  • US Citizenship Required
  • Education: Bachelors of Science degree OR 10+ years of experience working in classified environments on classified systems and programs with a CISSP or DoD Cyber Security Fundamentals certification
  • 4 years experience working with Defense Security Service (DSS) governance and processes and have developed System Security Plans (SSP) IAW DSSs previous process and newly implemented Risk Management Framework (RMF)
  • 4 year experience in accreditation and assuring systems compliance with all required security B16 as defined by DSS security policies
  • 4 years work experience in IT security, including Certification and Accreditation (C&A)/Assessment and Authorization (A&A) and IT security risk analysis/advice, preferably in support of the IC, DoD and/or Federal Government clients
  • 4 years - Knowledge of Federal government C&A / A&A practices and policies, particularly ICD 503, FISMA and NISP SP 800-Series
  • 4 years - Working knowledge of Ongoing Authorization with in the NIST Framework.
  • 4 years - Experience performing system analysis, system audits, system monitoring, security control assessment/testing (or ST&E), risk management, incident response.

     

An active security clearance or the ability to obtain one may be required for this role.


Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration. 


Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States and with Accenture (i.e., H1-B visa, F-1 visa (OPT), TN visa or any other non-immigrant status).


Accenture is a Federal Contractor and an EEO and Affirmative Action Employer of Females/Minorities/Veterans/Individuals with Disabilities.


Equal Employment Opportunity 

All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.


Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.


Accenture is committed to providing veteran employment opportunities to our service men and women.




Find a job

Start your search here: Enter job title, skill, experience level or city

Stay in touch

Join the Accenture Talent Connection, follow our Careers blog, or sign up for job alerts.