Senior Information System Security Officer

Position Summary

As an Information System Security Officer (ISSO), you will be challenged to stay current with the latest technological developments in information security. You will be exposed to advanced technologies and will play a major role in identifying potential threats and intrusions on Information Technology (IT) systems by our adversaries. Together we'll address evolving threats to national security, thus keeping our nation and our warfighter safe.

Successful candidates for this role will coordinate with the Corporate Risk Management Framework Support Center, other Information System Security Officers (ISSOs), & ISSMs across the company, to obtain and maintain certifications and accreditations under the new Defense Counterintelligence Security Agency (DCSA) and Intelligence Community (IC) Risk Management Framework.  If you are interested in information system security, competitive pay, management, and the opportunity to obtain industry professional certifications on the job, please apply now!

Basic Qualifications and Required Skills

• Associate’s degree, ideally in Information System Security, Computer Science, Cybersecurity, Information Technology, and/or a Computer Technical Certificate (I.E. MSCE Server 2016, CCNA, GIAC certificate) or equivalent related experience
• Must have Security + or have the ability to obtain it within 6 months of hire
• Must have an active Secret clearance, with the ability to obtain and maintain TS/SCI U.S. Government security clearance 
• 3-5+ years of security experience in either the defense industry or Information Systems Security, or a combination of both
• Strong knowledge of information systems security components and best practices including; firewalls, intrusion detection systems, anti-virus software, data encryption, and other industry-standard techniques and practices
• Analytical ability to understand and interpret Department of Defense (DoD) and company security policies and procedures
• Substantial communication & interpersonal skills to advise customers of DoD and company industrial security policies and procedures
• A team-based mentality 
• Exceptional attention to detail
• Be a self-starter, able to work under pressure and with limited supervision, and work well with others in a large and diverse environment.
• Ability to successfully prioritize and manage to completion multiple complex tasks and deliverables and demonstrate the highest degree of integrity and accountability in all actions

Preferred Skills and Experience

• A+, Network+, MSCE Server 2016, CISSP, CISA, CISM, CEH, and/or Security+ Certifications are a plus
• Completion of the DCSA CDSE/STEPP ISSM Training Curriculum (RMF courses)
• A strong knowledge and understanding of NIST Special Publication 800-53, ISO27001, DoD 8510.01, NISPOM, & ICDs
• Experience managing Windows 10/Server 2016 DCSA accredited information systems
• Experience managing VMware, ESXi 
• Experience managing Linux is a plus
• Experience with the SCAP Compliance Checker and the DISA STIG Viewer 
• Previous COMSEC experience is a plus 
• Previous FOCI experience is a plus
• Successful Command Cyber Readiness Inspection (CCRI) experience
• Supporting the technical maintenance and configuration of a SIPRNet to maintain compliance

Job Duties and Responsibilities

• Develop, implement, and administer security procedures for classified computer systems based on the Defense Counterintelligence Security Agency (DCSA) and other U.S. Government agency security requirements 
• Apply current computer science technologies to the development, evaluation, and integration of computer systems and networks to maintain system security for classified information systems
• Serve as primary advisor to the Site Information System Security Manager (ISSM) on all classified information systems security matters and liaison to the local Defense Security Service (DSS) Information Systems Security Professional (ISSP) on all matters pertaining to classified information systems
• Implement local policies, processes, procedures and compliance with all National Industrial Security Program (NISP), Defense Information System Agency (DISA), and Defense Security Service Assessments and Authorization Process Manual (DAAPM) requirements
• Develop and maintain all DoD requirements, including the DAAPM & Risk Management Framework (RMF) standards to ensure compliance with the National Industrial Security Program Operating Manual (NISPOM)
• Review and approve requests for access to cleared computer systems in the development and implementation of policies and System Security Plans supporting Corporate Security & Government agency requirements
• Conduct periodic self-inspections on local processes and practices to ensure compliance; accurately reports security posture to management & ensure corrective actions are taken
• Identify and document unique local threats and vulnerabilities to classified information systems security
• Conduct and coordinate investigations into security violations related to cleared information systems; ensures corrective actions are implemented
• Perform independently, or with a group, on site, group or enterprise-level security projects designed to enhance the security posture of DRS
• DISA STIG/SCAP implementation and management of security configurations utilizing Corporate ISSM toolkit
• Support, communicate, reinforce and defend the mission, values and culture of the organization
• Other duties as assigned

Physical Requirements

• Lifting: 25 lbs 0-25%, Walking: 0-50%, Climbing, Bending, Sitting, Standing, Kneeling: 0-10%
• Travel: 0-10%