Information Security Officer / ISSO - CFT L3

About The Position

Requirements

• Extensive knowledge of FISMA and FISMA/2014 NIST guidance, including Special Publications (SP) series and Federal Information Processing Standards (FIPS).
• Extensive experience in preparing and maintaining system security documentation to include, but are not limited to, System Security Plan (SSP), Risk Assessment Report (RAR), Contingency Plan (CP), CP Test Report, and Plan of Action and Milestones (POA&M) reports.
• Expertise in PKI certificate management and the administration of network security groups across multiple environments.
• Proficient knowledge of Check Point firewall technology with the ability to create, modify, and manage firewall rule sets while maintaining security posture and ensuring network protection is not compromised.
• Experience with Splunk for log management and analysis.
• Possess working knowledge of Epicor ERP software to support enterprise resource planning operations.
• CISSP certification for advanced information security management capabilities.
• 15 years of system administration, systems engineering, ISSO, or software development experience.
• BS degree or equivalent experience, in computer sciences, engineering or mathematics.
• US Citizenship is required.
• Ability to obtain Public Trust clearance.

Responsibilities

• Support the Special Management Attention (SMA) flight projects by maintaining the Space Testing Complex (STC), the System Security Plan (SSP) and Authority to Operate (ATO) and providing the infrastructure necessary to support each flight project such as firewall rules, switches, security cameras, etc.
• Support the NASA mandate to move the STC Operational Technology (OT) systems into the IT system boundary by integrating OT into the STC Configuration Management (CM) process. This includes helping the test disciplines migrate to ethernet based devices for speed and reliability; updating the SSP using NIST overlays to include specific ICS control guidelines; and ensuring that security postures and systems are updated to include OT.
• Support STC in maintaining its ATO by performing the required Continuous Monitoring (CM) processes mandated by the approved CMP, which is part of the overall STC approved SSP. The CM processes include maintenance, license management for software (SW) used by code 527 I&T staff and 527 I&T support personnel, updates to hardware (HW) / SW, and related devices, reporting and security controls testing. Updates may include technology refresh to STC IT equipment / SW that is reaching end of life, and new technology that may improve the functionality / security of the STC.
• Maintain the SSP and all associated documentation as required by the most recent revision of NIST SP-800-53.
• Maintain various systems such as the data system servers, data support systems, test facility systems, backup systems, archival systems, STC specific network infrastructure, etc.
• Manage Windows updates and patch management for both the NDC network and the STC isolated network ensuring security compliance while minimizing disruption to operational project work.

Benefits

• Medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, EAP, parental leave, paid time off, holidays and more.