Systems Planning and Analysis, Inc. (SPA) delivers high-impact, technical solutions to complex national security issues. With over 50 years of business expertise and consistent growth, we are known for continuous innovation for our government customers, in both the US and abroad. Our exceptionally talented team is highly collaborative in spirit and practice, producing Results that Matter. Come work with the best! We offer opportunity, unique challenges, and clear-sighted commitment to the mission. SPA: Objective. Responsive. Trusted.

The Classified Systems and Cybersecurity Team under SPA's Information Technology Department establishes and maintains the classified technology infrastructure and application support services required by our analysts to deliver timely, objective and cost-effective analysis. We design, develop, and deploy hardware- and software based solutions in close coordination with SPA's client-facing groups while adhering to strict security protocols.

SPA has an immediate need for an Information System Security Officer (ISSO) to support classified systems. The ISSO maintains day-to-day security posture and continuous monitoring of the cybersecurity tools to protect classified information systems. The ISSO conducts reviews, audits, and technical inspections to identify and mitigate potential security weaknesses, and ensure that all security features applied to a system are implemented and functional. In this role, you will report to the ISSM while preparing and maintaining security Assessment and Authorization (A&A) documentation, performing audits, performing incident response activities, interfacing with client and/or Government personnel, and maintaining a thorough understanding of NIST 800-53 controls. As the ISSO, you will also be expected to collaborate with team members to support Defense Counterintelligence and Security Agency (DCSA) Technical Reviews and Command Cybersecurity Readiness Inspections (CCRI).

Required Qualifications:

Bachelor's degree in an Information Technology related field or equivalent work experience and certifications.
• A minimum of three (3) years' experience in information system security.
• Must meet Department of Defense 8140 certification requirements at IAM Level I. Acceptable certifications include Security+ CE, CySA+, GICSP, or GSEC.
• Experience configuring systems for compliance using Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) with STIG Viewer and validating system compliance using the Security Content Automation Protocol (SCAP) Validation Tool.
• Ability to exercise independent judgment and to work autonomously with minimal supervision.
• Active DoD Top Secret security clearance.

Desired Qualifications:

• Experience with Host Based Security System (HBSS) deployments including management and configuration.
• Experience performing Vulnerability Management activities using tools such as ACAS or Ivanti.
• Experience with the Enterprise Mission Assurance Support Service (eMASS)