Information System Security Officer

About The Position

Requirements

• Bachelor's degree (B.S.) from four-year college or university in a related field, such as: computer science, information systems, engineering, or other technical disciplines involving information systems and 5-10 years of relevant experience.
• Strong interpersonal skills.
• Strong oral and written communication abilities with all levels of management, employees, and customers, ability to communicate and explain information efficiently.
• Ability to translate security situations and postures into business objectives and outcomes
• Ability to add, subtract, multiply, and divide in all units of measure, using whole numbers, common fractions, and decimals.
• Ability to compute rate, ratio, and percent.
• Develops solutions to a variety of complex problems.
• May refer to established precedents and policies.
• Demonstrates judgment and discretion in working with sensitive information and confidential matters.
• Ability to learn and adapt to new technologies
• Full knowledge and thorough understanding of: Automated vulnerability scanning tools, forensic tools, Windows and other operating systems Information security architecture, systems design, integration of systems and networking Microsoft Office Suite (i.e., Outlook, Word, Access, Excel, PowerPoint, Project, Visio, etc.) Knowledgeable in information systems security in order to assure enforcement of company and government regulations.
• Experience with the DCSA Assessment & Authorization Process.
• US Citizenship with ability to attain/maintain government security clearance.
• Ability to travel (domestically/internationally) approximately _5__%

Nice To Haves

• Within 6 months of hire, you must obtain and maintain a cybersecurity certification Security + or equivalent.

Responsibilities

• Oversee the system compliance, and auditing of the information systems.
• Review and revise IS system plans documentation based on analysis of the existing equipment configuration.
• Document any changes or special security requirements.
• Oversee and manage the implementation of cybersecurity products that might include a SIEM tool, vulnerability scanner, endpoint security, DLP, and others.
• Provide day-to-day technical support to classified IS including adherence to policies, procedures, and best practices.
• Assist with the design, develop, and implement annual IS security training for the end-users. Similar but specialized training will also be given to the Data Transfer Agents DTAs and SAs annually.
• Assist in the development of drafting procedures for the protection of the information system.
• Assists in spill containment and cleanup.
• Develop procedures to assist with manufacturing processes with Cybersecurity requirements in mind.
• Partners and works with Government agencies, including the Department of Defense (DoD) and other relevant agencies, on information security matters
• Participates in investigations relating to any IS security violations and provides “lessons learned” information to the IS community to prevent reoccurrence.
• Communicates security risks and solutions to business partners and IT staff as needed
• Assists the Information Systems Security Manager (ISSM) and implements information systems security tasks, as required for safeguarding, handling, and controlling of classified materials, documents and equipment.
• Knowledgeable in information systems security in order to assure enforcement of company and government regulations.
• Attends cybersecurity events and participates in other external cybersecurity activities to maintain current in the field
• Knowledge of National Industrial Security Program Operating Manual (NISPOM), DCSA Assessment and Authorization Process Manual (DAAPM), and Risk Management Framework is required.
• Responds to emergencies and remediates information security incidents.
• Follows all import/export requirements, consulting with facility import/export personnel as required.