Company Description

Founded in 2012, APTNEXUS is a premier provider of IT services, specializing in cybersecurity governance, risk, and compliance solutions for information and operational technologies. With a focus on IT and cybersecurity, APTNEXUS ensures its services seamlessly integrate into business processes, reducing organizational risk. Our expert teams have successfully completed projects for diverse clients including the IRS, US Trade and Development Agency, and Department of Education. This breadth of experience allows us to deliver custom solutions that enhance and protect business processes and supporting systems. We help clients innovate and optimize IT while eliminating cybersecurity risks.

Role Description

This is a full-time on-site role for an Information System Security Officer located in the Washington DC area. The Information System Security Officer will be responsible for overseeing and implementing cybersecurity measures, protecting information systems, ensuring network security, and managing physical security protocols. Daily tasks include monitoring security systems, conducting risk assessments, developing security policies, and responding to security breaches. The role requires collaboration with various departments to ensure compliance with security standards and regulations.

Minimum Qualifications

• Active Secret security clearance
• Experience as an Information Systems Security Officer or Manager
• Experience with using cybersecurity tools such as Splunk, CrowdStrike, and Qualys.
• Experience with hardening servers, workstations, routers, switches, and mobile devices in accordance with CIS or STIG guidance.
• Must have a solid understanding of NIST RMF, NIST CSF, and similar IT Compliance and Privacy regulations.
• Solid understanding of cloud security architecture within multiple cloud services (AWS, GCP, Azure)
• Level III Certification in at least one of the following, but not limited to:

CISSP (Certified Information Systems Security Professional)

CASP (CompTIA Advanced Security Practitioner)

CISM (Certified Information Security Manager)