Information Systems Security Officer

About The Position

Requirements

• Bachelor’s Degree in Computer Science, Information Systems, Information Assurance, Cyber Security, or related field of study.
• 5+ years experience in Information Security, System/Network Administration, and/or other related IT role is required; background working in a USG defense contractor or national security environment is preferred.
• Active USG Secret or higher security clearance which requires U.S. citizenship.
• Must meet IAT - Level 2 DoD 8570.1-M compliant Professional Certification (Security+, CISSP, etc) or be able to gain certification within 6 months of start of employment.
• Candidate must meet background pre-screening requirements for Collateral and Special Access Programs.
• Experience performing information security duties on collateral DoD or DCSA accredited systems in a closed-area space; prefer experience working in a SAP space.
• Close familiarity of the NIST SP 800-53 and JSIG as well as be practiced in writing and maintaining SOPs compliant with RMF controls.
• Familiarity with using eMASS to maintain SSPs, control documentation, POA&Ms, and Assessment & Authorization (A&A) documentation.
• Expert knowledge in operating systems security features and settings, account and user interface management, group policy management, ports, protocols, and services management, performing system security audits, problem fixes, and other IS tasks to meet RMF.
• Adept at Windows & Linux-based operating systems as well as be able to monitor a system using tools such as ManageEngine, PowerStrux, Splunk, or eyes-on examination of Event/Audit logs.
• Ability to bring your skills with you and hit the ground running to complete all RMF and/or JSIG requirements to stand up and maintain an Accredited Information System.

Nice To Haves

• background working in a USG defense contractor or national security environment is preferred.
• prefer experience working in a SAP space.

Responsibilities

• Work in close coordination with the ISSM, classified systems administrator, and other Bell Global Security team members to maintain Risk Management Framework (RMF) and Authority to Operate (ATO) requirements.
• Responsible for day-to-day security operations for DoD cognizant systems through Continuous Monitoring activities as defined by RMF as well as ensure systems are operated and maintained in compliance with the SSP and other security policies/procedures and perform corrective actions.
• Support the development of Assessment & Authorization artifacts such as SOPs, SCTMs, Control Implementation and Testing, POA&Ms, RAR, and other documentation, and maintaining these in eMASS.
• Update the SSP, manage changes to the system, and asses the security impact of those changes as well as address issues, questions, or concerns as they come up, while reporting to and getting support from the rest of the IA team.
• Audit our accredited systems, conduct vulnerability scanning, and monitor for suspicious activity; investigate anomalies and perform remediation while providing reports to the ISSM.
• Enforce media protection and file transfer procedures as well as perform change management, risk assessments, risk mitigations, self-inspections, and participate in CCB meetings.
• Enforce Information Assurance Training and Awareness cadence.
• Interface with the company and program leadership, DCSA, and our DoD customers to ensure company goals are met.
• Run the DISA SCAP/STIG tool to check OS security settings compliance and coordinate the remediation/mitigation of findings.
• Use of various hardening and compliance assessment tools and practices such as ACAS/Nessus, SCAP, CIS, and the NIST National Vulnerability Database to implement and enforce security policies.
• Keep abreast of current threats and vulnerabilities using security mailing lists and web sites such as CISA, SANS, and USCYBERCOM.

Benefits

• 9/80 work schedule
• 80 hours of Personal Time Off (PTO)
• 120 hours Vacation time
• 12-13 paid holidays per year
• 6 weeks parental leave
• Tuition reimbursement
• Competitive salary
• Comprehensive health insurance
• On-site clinic, pharmacy, physical therapy, and licensed counselor
• Access to more than 11 Employee Resource Groups