Information System Security Officer

About The Position

Requirements

• 7+ years of experience in cybersecurity or information technology with focus on cybersecurity implementations
• Experience with eMASS, XACTA, or RMF tools
• Experience with both Vulnerability and Compliance scanning tools, such as ACAS, Nessus Professional, SCC, or Evaluate-STIG
• Experience with security procedures while working in a SCIF or SAPF environment, system security logs, and associated Security Information and Event Management (SIEM) tools, such as Splunk or ELK stack
• Experience with both Linux and Windows-based operating systems
• Knowledge of the DoD 8500.1-M, DoDM 5205.07, Volume 1, Joint SAP Implementation Guide (JSIG), National Institute of Standards and Technology (NIST) Special Publication 800-53, and Intelligence Community Directive (ICD) Number 503
• Ability to complete tasks, drive projects to closure, and assimilate and correlate project information in a fast-paced environment with minimum guidance
• TS/SCI clearance
• HS diploma or GED
• 722 advanced Information Systems Security Manager, 462 advanced Control Systems Security Specialist, or 541 advanced Vulnerability Assessment Analyst Certification

Nice To Haves

• Experience with cloud security
• Ability to operate independently and take initiative
• Ability to interpret and apply cybersecurity policy down to security control implementation on weapon systems
• Possession of excellent interpersonal and communication skills to collaboratively build teams
• Bachelor's degree

Responsibilities

• Participate in the development or modification of organizational cybersecurity program plans, policies, processes, procedures, and requirements.
• Support cybersecurity planning, assessment, risk analysis, and risk management for systems across multiple security domains.
• Recommend organizational and system level solutions to resolve cybersecurity requirements while maintaining system availability.
• Write authorization and accreditation (A&A) documentation and supporting artifacts.
• Interact with technical team members from multiple disciplines, including performing vulnerability and compliance scanning, remediations, and system audits.
• Perform technical hardware & software reviews and advise leadership of changes affecting organization’s cybersecurity posture.
• Perform technical security assessments of complex systems.
• Establish and maintain cybersecurity control baselines for all unit systems.
• Generate RMF control narratives.

Benefits

• health, life, disability, financial, and retirement benefits
• paid leave
• professional development
• tuition assistance
• work-life programs
• dependent care
• recognition awards program