Spry Methods, Inc

Security Analyst/Assessor/ISSO/Engineer

Security Engineer in Washington, DC

Posted 2018-05-21

Spry is a certified Small Business (SB) headquartered in McLean, VA. Spry provides Enterprise, C4IT, Management, and Cyber Solutions to the federal government and commercial entities. Founded in 2001, Spry Methods was built on the foundation of combining industry knowledge with unmatched responsiveness to produce results for our customers. Our goal is to build a business dedicated to the maximization of value for all stakeholders starting with our employees, our customers, and our community. We recognize that talented and dedicated employees are our most valued assets and the foundation of our success. Guided by these principles, we have established an impressive track record of proven past performance serving our customers within the Commercial, Federal Civilian, DoD, and Intelligence Communities. A CMMI Level 3 certified and ISO 9001:2008 registered company, Spry is committed to quality and continuous improvement.

Spry Methods is seeking an Information Systems Security Officer (ISSO) to provide support for the FBI in Washington, DC.

Job Responsibilities and/or Success Factors
Provide security guidance and expertise for classified and unclassified systems
Develop security management documentation for variety of applications and tools that are used in FBI's mission
Manage system policies, procedures, guidelines, and all security related tasks
Conduct vulnerability scans, assessments, and patch management
Ensure configuration management is in line with FBI requirements
Develop and manage System Security Plans (SSP) and all FBI security documentation
Required skills and experience include
Candidates must have an active Top Secret security clearance and be willing to undergo a CI Poly
Ability to obtain Certified Information Security Auditor (CISA) or a Certified Information System Security Professional (CISSP) within 6 months of hire
At least 5 years of information security and security management support
Ensuring that Stakeholders adhere to Federal Information Assurance policies and procedures to acquire and maintain an Information System's Authority to Operate (ATO) under The Federal Information Security Management Act (FISMA) of 2002 following NIST 800-53 guidelines and NIST 800-53a security controls assessment practices
Guide systems engineering design and development toward a "baked-in" security design using Information Assurance best practices as well as FBI-specific policies and guidelines
Expert knowledge and hands-on experience with FISMA Systems, NIST 800-series guidelines, Intelligence Community Directive 503 (ICD 503), Committee on National Security Systems (CNSS) Instructions, FIPS, C&A requirements and processes, Continuous Monitoring Framework experience and its tools, Plan of Action & Milestones (POA&M) policies, and vulnerability/patch management
Proficient with vulnerability and scanning tools and well-versed in interpreting risk posture resulting from assessment reports. Experience in project management and tracking, and the Microsoft suite of office products
Guide engineering development for the security design using IA enabled products
Maintain up to date documents such as procedures, work instructions, plans and manuals
Very knowledgeable of FISMA, NIST, previous C&A experience, continuous monitoring experience, vulnerability management, scanning, risk management, project management, proficient with Microsoft products - Word, Excel, PowerPoint
Preferred skills
Certified Information System Security Professional (CISSP)
Relevant background in security management, NIST understanding, and FISMA requirements

Ready to be seen?

Apply now to have the opportunity to be considered for similar jobs at leading companies in the Seen network for FREE.

Company summary

Spry provides enterprise, C4IT, management, and cyber solutions to the federal government and commercial entities.


Flexible work schedules; professional development; education assistance program.

Tech Stack

.NET, C#, C++, SQL Server, JavaScript, jQuery, HTML/CSS, SOAP, REST, JSON

Be seen in a new Security Engineer job

Skip the search

Zero stress and one profile that can connect you directly to 1000s of companies.

Best-fit jobs—for you

We’ll take it from there. After you tell us what you’re looking for, we’ll show you off to matches.

Free Career Coaching

Boost your interview skills, map your tech career and seal the deal with 1:1 career coaching.

You get tech. We get you.

Join now and be seen.