Information Systems Security Auditor (ISSA)

Job description

Overview The Information Systems Security Auditor (ISSA) works closely with the Information Systems Security Manager (ISSM) to support the daily operations of the information security program. Assists in maintaining the security posture of information systems, which includes physical and environmental protection, personnel security, incident handling, and security training and awareness. The ISSA plays an active role in monitoring a system and its environment of operation to include developing and updating the system security plan (SSP), managing and controlling changes to the system, and assessing the security impact of those changes. Responsibilities: Serves as Information Systems Security Auditor under the guidance of the ISSM. Implements and enforces information security policies and procedures. Participates in inspections and incident response. Executes elements of IDA information systems security, education, training, and awareness programs. Performs other duties as assigned. - Implements and maintains a formal information systems security program. - Assists with developing, reviewing, maintaining and overseeing information systems security plans (SSPs) and Assessment/Authori...