TA1 TACOM Information System Security Officer (ISSO)

The Information System Security Officer (ISSO) serves as the principal advisor to the Information System Owner (SO), Business Process Owner, and the Chief Information Security Officer (CISO) / Information System Security Manager (ISSM) on all matters, technical and otherwise, involving the security of an information system. ISSOs are responsible for ensuring the implementation and maintenance of security controls in accordance with the Security Plan (SP) and Department of Defense (DoD) policies. In almost all cases, ISSOs will be called on to provide guidance, oversight, and expertise, but they may or may not develop security documents or actually implement any security controls. While ISSOs will not actually perform all functions, they will have to coordinate, facilitate, or otherwise ensure certain activities are being performed. As a result, it is important for ISSOs to build relationships with the SO, technical staff, and other stakeholders.

Duties / Responsibilities :

Essentials

The goal of information security is to help the business process owner accomplish the mission in a secure manner. To be successful, ISSOs need to know and understand the following :

• Coordinates with the ISO to ensure the appropriate operations security posture is maintained for the Information system
• Servers as principal advisor on all matters involving the security of an Information System
• Manage day-to-day security operations of the system
• Monitors information system and environment
• Manages and controls changes to the system
• Handles incidents
• Assists in the development of the : Security policies and procedures, Development and ongoing maintenance of the System Security Plan,

Security Impact Analysis, Mission, and business functions of the Information System,

Requirements

Education / Certificates :

Clearance :

Location :