Senior Information Systems Security Officer

About The Position

Requirements

• Bachelor’s degree in an IT-related or similar relevant field is required or equivalent combination of education, training, and experience
• Twelve (12) years of related work experience - at least 7 years of experience as an ISSO supporting IC or DoD programs and contracts of similar scope, type, and complexity
• DoD 8570 compliance with IAM Level II or IAT Level III (i.e., CASP, CISSP, or Associate)
• An active TS/SCI with polygraph
• ITAR Requirement: This position requires access to information that is subject to compliance with the International Traffic Arms Regulations (“ITAR”) and/or the Export Administration Regulations (“EAR”). In order to comply with the requirements of the ITAR and/or the EAR, applicants must qualify as a U.S. person under the ITAR and the EAR, or a person to be approved for an export license by the governing agency whose technology comes under its jurisdiction. Please understand that any job offer that requires approval of an export license will be conditional on AeroVironment’s determination that it will be able to obtain an export license in a time frame consistent with AeroVironment’s business requirements. A “U.S. person” according to the ITAR definition is a U.S. citizen, U.S. lawful permanent resident (green card holder), or protected individual such as a refugee or asylee. See 22 CFR § 120.15. Some positions will require current U.S. Citizenship due to contract requirements.

Responsibilities

• Assist security authorization activities in compliance with Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF).
• Assists with the management of security aspects of the information system and performs day-to-day security operations of the system.
• Evaluate security solutions to ensure they meet security requirements for processing classified information.
• Maintain operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed.
• Manage changes to system and assesses the security impact of those changes.
• Perform vulnerability/risk assessment analysis to support certification and accreditation.
• Provide configuration management (CM) for information system security software, hardware, and firmware.
• Prepare and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).

Benefits

• AV offers an excellent benefits package including medical, dental vision, 401K with company matching, a 9/80 work schedule and a paid holiday shutdown.
• For more information about our company benefit offerings please visit: http://www.avinc.com/myavbenefits.
• We also encourage you to review our company website at http://www.avinc.com to learn more about us.