SeKON is looking for an Information Systems Security Officer (ISSO) to join our talented and innovative team supporting the Defense Healthcare Management Systems Modernization (DHMSM) and its program offices. This role is 100% remote.

With over 25 years of experience, SeKON specializes in providing large-scale health IT programs in support of federal government customers including the Centers for Disease Control (CDC), Centers for Medicare and Medicaid (CMS), Defense Health Agency (DHA), and National Institutes of Health (NIH). Our vision is "To be the premier management and technology consulting firm providing solutions that improve quality of life and work".

The mission lifecycle of DHMSM is to competitively acquire, test, deliver, and successfully transition to a state-of-the-market electronic health record (EHR) system. In partnership with the Defense Health Agency (DHA), Services, and industry, DHMSM is developing a deployment and sustainment strategy to optimize the delivery of a modernized EHR with minimal disruption to the military health care community.

REQUIREMENTS:

• Must have an active Department of Defense (DoD) clearance
• Must have a DoD 8570 certification (Security+ minimum)
• 5+ years of specialized Information Assurance for Department of Defense IT systems
• Undergraduate degree in cyber security, IT, Computer Science, or a related field
• NIST, DISA, and DoD Security Standards and Risk Management Framework (RMF) processes
• Working and documenting Risk Management Framework processing with end results achieving an Authority to Operate (ATO)
• Cyber security management using the Enterprise Mission Assurance Support Service (eMASS) repository
• Network security, continuous monitoring, system auditing, and security policy development
• Compliance scanning tools (ACAS, Fortify); running scans, evaluating results, and determining remediation steps
• Writing POAMs, including detailed justifications for program-required non-compliant items
• Thorough understand of and experience with the Federal Information Security Management Act (FISMA)
• Vulnerability remediation activities, scanning and analysis and STIG/ Manual Checklist auditing
• Ability to work multiple projects concurrently within deadlines while ensuring that complex information is conveyed in a clear, accurate, and concise manner under normal and in crisis situations
• Skill in the use of various types of office automation to includes Microsoft Suite (PowerPoint, Word, Excel, Visio, Project and Access)
• Superior verbal and written communication and customer service skills including presenting to senior government officials
• Ability to work collaboratively and proactively with customers and program office members in a multi-vendor environment
• Serve in a variety of ad hoc roles to include participating in and contributing to proposal efforts and hiring processes

• Additional 8570 certifications such as CISSP, CISM, CAP
• Experience in DoD Healthcare IT and/or electronic health record (EHR) systems
• Experience IBM 'Jazz' tool suite
• Cerner Millennium EHR
• Interoperability other defense agencies including VA (VISTA) and Defense Information Systems Agency (DISA)

• Industry best practices such as ISO, CMMI, Lean Six Sigma, and agile scrum
• System Development Lifecycle (SDLC) Requirements, use cases, release management, testing, risk management, change management, and configuration management experience
• Service Oriented Architecture (SOA), Web Applications, Security Architecture, Relational databases
• Installing, managing, maintaining, administering, and troubleshooting applications, and documenting technical guides
• Software Development and Documentation Standards (SDDS)
• Department of Defense (DoD) Acquisition lifecycle-working in major acquisition
• Program/system(s) adherence with DoDI and DoDD