Information Systems Security Officer Resume Samples

Description :

1. Supported the overall enterprise strategy for information security, technology risk management, and compliance.
2. Oversaw the continuous monitoring and protection of the information system(s) (IS).
3. Prepared weekly audit reports on findings and anomalies.
4. Evaluated the suspected security breaches, work with subject matter experts, and recommend corrective actions.
5. Performed Data Transfer Agent duties and create data CD/DVD for user support, as required.
6. Assisted in the review of applications and/or technology environments during the acquisition process.
7. Developed and implement IS certification testing as required by the Information Systems Security Manager (ISSM).

Experience

2-5 Years

Level

Junior

Education

Management

Description :

1. Researched, developed, implemented, tested and reviewed the Agency's information security in order to protect information.
2. Updated and informed users of security measures, explain potential threats, install software, implement security measures and monitor networks.
3. Reviewed System Security Plans and coordinated with System Administrators to harden servers for accreditation.
4. Applied RMF and discuss acceptable risk with ISSM.
5. Granted Top Secret clearance based on Single Scope Background Investigation.
6. Maintained on-line SSPs and supporting documentation in accordance with the Department of Defense and NIST guidelines.
7. Provided site input to acquisition security vetting programs for IS procurements.

Experience

7-10 Years

Level

Management

Education

Information Technology

Description :

1. Provided security guidance to additional professionals within a security capacity.
2. Maintained a thorough and reliable repository for all system accreditation and certification documentation and modifications.
3. Transferred unclassified information via uploads and downloads to higher or lower classifications.
4. Coordinated and assisted with AIS security inspections, tests, and reviews.
5. Archived documents that tracked uploads and downloads of classified or unclassified information via classified systems.
6. Reviewed C&A documentation and assisted ISSM in the preparation of documentation for systems installed without existing documentation.
7. Performed isolation and investigation of classified and unclassified information being loaded onto unauthorized systems.

Experience

7-10 Years

Level

Management

Education

Security

Description :

1. Generated all documents required to comply with the DOE Program Cyber Security Plan.
2. Generated and completed a Certification and Accreditation of the AMWTP Information Systems Enclave.
3. Implemented Security and Configuration Management plans.
4. Planned, Organized and managed the complexity of the AMWTP Cyber Security Program IAW DOE requirements.
5. Provided strategic direction for the success of the AMWTP Cyber Security Program.
6. Generated a policy to track change control processes and changes to the AMWTP Information System Enclave.
7. Managed AMWTPs Risk Profile and advised senior management on significant cybersecurity threats and vulnerabilities.

Experience

2-5 Years

Level

Junior

Education

Business Management

Description :

1. Provided user support in a mixed system's network to include user testing and training.
2. Managed and implement information security policies and standard operating procedures.
3. Performed system audit and investigate questionable audit trails.
4. Implemented a yearly upgrade budget in order to reduce repair costs and decrease downtime.
5. Generated database that keeps all systems accredited and accountable.
6. Analyzed hardware and software requirements in order to recommend cost-effective solutions.
7. Trained personnel to mitigate insider threat scenarios.

Experience

2-5 Years

Level

Junior

Education

Active Secret Clearance

Description :

1. Managed all aspects of information security within accredited closed areas.
2. Developed, wrote, and maintained SSP documentation.
3. Assisted in writing, review, and coordination of System Security Accreditation Agreements (SSAA).
4. Ensured network infrastructure is set properly for certification and accreditation (C&A) using NISPOM Guidelines.
5. Gave Information Systems Security and Security Awareness briefings.
6. Performed and tested systems weekly to ensure policies are set up and running properly on computer systems and servers.
7. Performed the system, server, and workstation audits; archive the audits on CD/DVD.
8. Managed database to track and maintain inventory.

Experience

2-5 Years

Level

Junior

Education

Information Technology

Description :

1. Researched, implemented, tested and reviewed new hardware, software, and test equipment to determine compliance with system security requirements.
2. Maintained certification and accreditation of classified information systems.
3. Identified and mitigated security weakness in classified information systems.
4. Maintained documentation for compliance with Defense Security Services and NISPOM.
5. Ensured end-users were aware of security requirements and responsibilities of using classified information systems.
6. Enforced security requirements to ensure the protection of classified data.
7. Performed customer requests in a timely manner.

Experience

5-7 Years

Level

Executive

Education

BS

Description :

1. Technical liaison between users and vendors for software applications; and managed firewall and IDS, web filtering.
2. Installed hardware and software on servers and user workstations.
3. Negotiated with the vendor for backup software and tape library.
4. Recovered servers lost due to power failure.
5. Created a backup strategy for disaster recovery and daily backup to ensure servers and data are backed up according to backup policy.
6. Wrote all policies, standards, and procedures for the IS department and Bank.
7. Worked with internal business partners to establish new systems.

Experience

10+ Years

Level

Senior

Education

Certificate

Description :

1. Managed, implemented, and supported all ArcSight related needs.
2. Configured ESM appliance, Logger appliance, Connector appliance.
3. Setup ArcSight ESM active channels, rules, notifications, and lists. Responsible for troubleshot all ArcSight related issues.
4. Researched, reviewed, developed, and implemented the organization's information security strategy.
5. Informed and trained users of security measures, policies, and procedures.
6. Maintained and created documentation for certification and accreditation of each information system.
7. Assessed the security impact on system modifications and technological enhancements.

Experience

2-5 Years

Level

Junior

Education

BA

Description :

1. Managed various system security plan programs.
2. Performed system security scans via WASSP/SECSCN.
3. Analyzed WASSP/SECSCN results with the customer then mitigated significant findings and provided justifications for false-positive results.
4. Provided continuous monitoring to "Authority to Operate" (ATO) SSPs.
5. Collaborated with System Administrators, DAO's, ISSM's, ISSE's, System Owners, etc in an effort to have an SSP granted an ATO status.
6. Reviewed the IAVA database to verify whether or not an Information System is IAVA compliant.
7. Interfaced with Defense Security Service personnel.

Experience

5-7 Years

Level

Executive

Education

BS

Description :

1. Security audited to include audit log and network log review weekly.
2. Coordinated and developed information assurance security awareness training quarterly.
3. Supervised initial system security configuration.
4. Ensured security updates/patching is occurring.
5. Reviewed of group and user profile settings and policy on Windows and Unix servers.
6. Intimated familiarity with Intelligence Community Directives.
7. Rewrote system security plans for two classified networks.

Experience

2-5 Years

Level

Junior

Education

Diploma