DDC IT Services

  • Information System Security Officer (ISSO)

    Job Locations US-OH-Dayton
    Posted Date 3 weeks ago(8/3/2018 4:04 PM)
  • Advertised Job Title

    Information System Security Officer (ISSO)


    DDC IT Services, LLC (DDC-ITS) is SBA 8(a) SDB certified a company dedicated to solving IT business problems for three major markets: Federal, Commercial and Tribal. DDC-ITS is 100% owned by the Navajo Nation and has been in business since 2011. Our focus is on the ever-changing world of Cyber Security with respect to staffing for building and securing networks and enterprise applications. Another focus is to provide businesses with the Hardware & Software to meet their needs. We both sell and implement complete business solutions.


    DDC IT Services will accommodate individuals with disabilities that need assistance applying for open positions.


    DDC IT Services is an equal opportunity/affirmative action employer subject to the Navajo Preference in Employment Act.


    Job purpose:

    The contractor shall ensure the confidentiality, integrity, and availability of systems, networks, and data through the planning, analysis, development, implementation, maintenance, and enhancement of information systems security programs, policies, procedures, and tools.

    Contractor shall ensure personnel performing cybersecurity activities obtain, and remain current with, technical and/or management certifications to ensure compliance as directed by DoD 8140 and outlined in DoD 8570.01-M, Appendix 3, Table 2, and AFMAN 33-285, as well as maintain a current SECRET security clearance.

    Duties and Responsiblities:

    Functions required to be performed by ISSO include:

    Assist the Information System Security Officer (ISSM) in implementing the six-step Risk Management Framework accreditation process for the AF EIS SharePoint environment.

    Provide guidance, troubleshoot, provide support services for all Cybersecurity needs of the AFNet EIS/AFMC EIS platforms to include, but not limited to:

    • Implementation of mandatory baseline security controls per DoD and AF policy
    • Implement and enforce all DoD and AF IS cybersecurity policies and procedures, as defined by cybersecurity-related documentation.
    • Certification and Accreditation
      • Risk Management Framework (RMF) for DoD Information Technology (DoD IT)
    • Ensure that all DoD IS cybersecurity-related documentation is current and accessible to properly authorized individuals.
    • Contingency Planning & Exercises
    • Coordination of Operational IA Issues
    • Mitigation of vulnerabilities derived from security scans
    • Security incident management
    • Time Compliance Network Order (TCNO) compliance
    • Federal Information Security Management Act (FISMA) Compliance
    • Attendance of AF EIS meetings sponsored by the PMO
    • IA System Decommissioning Support
    • IA Related Test & Evaluation
    • Vulnerability Management
    • Implement Software Assurance (i.e. source code scans and penetration testing) for open source or custom code applications hosted on AFNet EIS/AFMC EIS platforms
    • Continuous Monitoring of defined controls as part of the RMF continuous monitoring strategy


    • Bachelor degree and two years’ experience.  Risk Management Experience a plus.
    • Information Assurance Technical (IAT) Level III certified in accordance DoD 8570.
    • Secret or higher security clearance
    • SIPRNet access to view AFNetOps directives as part of ongoing vulnerability management, patching, and compliance reporting

    All qualified applicants will be U.S. Citizens with a Secret Clearance

    Education Requirements

    - Bachelor’s Degree

    Clearance Required

    Secret Clearance


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed