Information Systems Security Officer

Oak Ridge National Laboratory•Oak Ridge, TN

9d•Onsite

About The Position

We are currently seeking qualified applicants with Information Systems Security Officer (ISSO) experience to support the Field Intelligence Operations Division’s classified operations in the areas of Classified Intelligence Information Technology (IT)/Information Assurance (IA), Classified R&D Computing, and physical and personnel security in the Field Intelligence Operations Division (FIOD) - where cutting-edge research and technology meets national defense. Under the Department of Energy (DOE), Office of Intelligence and Counterintelligence (IN) authorities, the FIOD serves as the ORNL focal point for all intelligence community matters and supports national security science by providing secure IT, communications, facilities, and analysis. The ISSO will assist the Information Systems Security Manager (ISSM) in the certification and accreditation (C&A) of systems/networks and implementation of cyber security requirements and procedures across the National Security Sciences Directorate at Oak Ridge National Laboratory (ORNL). The National Security Sciences Directorate conducts research and development to solve some of the nation's most difficult security challenges and adversaries. The directorate houses S&T leadership in cybersecurity and cyber-physical resiliency, data analytics, geospatial science and technology, nuclear nonproliferation, and high-performance computing for sensitive national security missions. The FIOD is housed within NSSD and provides the operational security, information assurance, and information technology support needed for ORNL to maintain Sensitive Compartmented Information Facilities, clearances, and systems.

Requirements

BA in information technology or technical equivalent and a minimum of five years of experience in cyber security and the C&A process. An overall combination of equivalent education and experience may be considered.
Current TS clearance with SCI eligibility
Working knowledge of: Risk Management Framework (RMF) process & requirements.
Working knowledge of: NIST and CNSSI requirements
Must be organized, self-motivated, and be able to work with minimal guidance.
Excellent written and verbal communication skills with an ability to interface with numerous cognizant security agencies, customers, and senior managers.
Previous experience in developing, testing, and collecting artifacts for RMF packages and BoEs of multiple systems.
Experience in authorized data transfers across multiple systems and different classifications.

Nice To Haves

Relevant ISSO / ISSE experience within the DoD or Intelligence Community.
CISSP, SEC+, or other relevant certifications
Previous experience supporting SCI environments.
Deep understanding of incident response procedures and enterprise security tool implementation
Knowledge of the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) and configuration standards.
Working knowledge of Industry Standard tools for purposes of audit reduction, vulnerability scanning, and malware analysis is preferred. Relevant tools include but are not limited to: Splunk, Tenable Nessus, Host Based Security System (HBSS) components, Security Content Automation Protocol (SCAP) Checker, and STIG viewer.
Experience with Security Directives, Policies, Publications, and Regulations.

Responsibilities

Provide day-to-day cybersecurity support for classified/Sensitive Compartmented Information (SCI) systems.
Ensure compliance with DOE-IN, DoD, and NIST requirements across multiple facilities.
Develop, review, and maintain System Security Plans (SSPs) and related RMF artifacts (hardware/software lists, diagrams, PPSM, categorization forms, continuous monitoring plans, contingency plans).
Support design and implementation of security controls, ensuring alignment with DISA STIGs and NIST 800-53.
Assist with security architecture reviews, risk assessments, vulnerability analyses, and mitigation strategies.
Provide technical input for STIG feasibility and implementation, including possible automation of compliance checks.
Manage Splunk and SolarWinds environments for log collection, correlation, and monitoring.
Create and maintain dashboards, alerts, and reports to support real-time detection and response.
Investigate security incidents, document findings, and implement corrective measures.
Perform regular audit log reviews, authorized data transfers, and media control in accordance with policy.
Develop and maintain system documentation to support system authorization and accreditation.
Track system changes, security impact assessments, and coordinate with ISSM on approvals.
Conduct and support continuous monitoring activities, including vulnerability management and reporting.
Conduct annual account reviews, self-inspections, and compliance testing.
Train users and system administrators on security procedures and policy.
Support ISSM in implementing local policies, reporting metrics, and preparing for inspections
Continuously update and enhance documentation best practices and local security procedures, train users on these procedures, and consistently apply appropriate ES&H standards.
Maintain a strong commitment to the implementation and perpetuation of values and ethics.