Description The Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is devoted to defending CBP networks against cyber threats. Our mission involves monitoring, intrusion detection, and implementing protective security measures for CBP information systems-spanning local area networks, wide area networks, and cloud services. As a part of this critical effort, the CBP SOC is accountable for the overall security posture of CBP's information systems and is tasked with investigating and reporting any security incidents.
Primary Responsibilities The selected candidate will leverage their expertise as an Assessment and Authorization Analyst to evaluate new CBP Information Systems and confirm their adherence to established security standards. This includes employing NIST Risk Management Framework (RMF) or equivalent approaches to ascertain whether systems can safely operate within the CBP network.
The role involves key activities at various stages of the system lifecycle, particularly during system deployment or significant updates. Duties encompass the creation of critical security documentation-such as System Security Plans and Security Assessment Reports-and facilitating the process to secure final authorization to operate (ATO).
The successful candidate will provide assistance by gathering information and addressing inquiries across multiple IT domains, including but not limited to:
- Security management controls
- Access controls and user provisioning
- Separation of duties and configuration management
- Contingency planning and application security
- Data management system controls
Core Responsibilities - Conduct formal assessments to determine whether systems are authorized to operate.
- Evaluate the security posture of systems.
- Assess security controls against established standards and their effectiveness.
- Document assessment outcomes and suggest improvements for security measures.
- Advise on the authorization status for system operation based on assessment findings.
- Ensure security controls are implemented to mitigate risks effectively.
Basic Qualifications - A Bachelor's degree with 12-15 years of experience in Information Technology, Computer Science, or Cyber Security; or a Master's degree with 8-12 years of experience.
- Excellent writing, communication, and analytical skills.
- Comprehensive knowledge of Information Assurance, IT, and Information Management concepts and procedures.
- Experience in driving large and complex projects to successful completion in government environments.
- A minimum of 4-8 years as an ISSO supporting major federal information systems.
- Familiarity with relevant policies such as NIST SP 800-37, Rev 2, and DHS 4300A Policy.
- Must be a US Citizen.
Preferred Qualifications - Previous experience with CBP
- DoD 8570 IAT III certification
- CompTIA Certified Advanced Security Practitioner (CASP+)
- ISC2 Certified in Governance, Risk and Compliance Certification (CGRC)
- ISC2 Certified Information Systems Security Professional (CISSP)
- ISACA Certified Information Systems Auditor (CISA)
Original Posting: March 26, 2025
For U.S. Positions: This job requisition will be open for at least 3 days following the original posting date.
Pay Range: $126,100.00 - $227,950.00
This pay range is a guideline and individual offers will reflect relevant experience, current market data, and other factors.