Senior Specialist, Cyber Intel (ISSO)
About The Position
L3Harris is seeking an Information System Security Officer (ISSO) to support the Space Superiority & Imaging division’s customers and programs. The ISSO will perform information system security activities under the guidance and oversight of the Information System Security Manager (ISSM) on assigned information systems. The ISSO will be knowledgeable in information technology and information assurance standards and regulations. Responsibilities include, but are not limited to, performing security control assessments and continuous monitoring, conducting configuration and vulnerability scanning and remediation, authoring and maintaining documentation and artifacts (body of evidence) in support of the Assessment and Authorization (A&A) of information systems following the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF), remediating security control deficiencies, assessing and approving change requests for assigned information systems, performing user training and user account management oversight, and investigating and responding to security incidents and violations.
Requirements
- Active Top Secret security clearance with SCI eligibility
- DoD 8570 IAM III certification or within six months of hire.
- Bachelor’s Degree and minimum 6 years of prior relevant experience, or Graduate Degree and a minimum of 4 years of prior related experience. In lieu of a degree, minimum of 10 years of prior related experience
Nice To Haves
- DoD 8570 IAM III certification
- Experience as an ISSO/ISSM supporting classified systems under the JSIG, ICD 503, and/or 32 CFR Part 117 Section 18
- Experience hardening information systems and/or performing configuration/vulnerability assessments against the DISA STIG standards
- Experience auditing information system and user activity using SIEM tools like Splunk, and/or Log Insight
- Experience scanning information systems using Nessus and/or ACAS
- Experience with A&A databases like SNOW and/or eMASS
- Experience performing RMF A&A activities and system accreditation
- Experience developing policies and procedures to implement security controls and customer requirements.
- Experience developing Plans of Action & Milestones (POA&M) to document and mitigate security control deficiencies
Responsibilities
- Perform Continuous Monitoring of assigned information systems to include user activity monitoring (auditing) using SIEM tools or the native audit reduction capability of the operating system
- Conduct security control assessments
- Initiate, review, and remediate vulnerability and compliance scans using industry approved scanning tools (Nessus, ACAS)
- Review and assess the configuration settings of assigned information systems against the DISA STIG configuration standards
- Developing and updating documentation in support of obtaining or maintaining an Authority to Operate (ATO) for assigned information systems
- Attend Change Control Boards (CCB) to review and approved information system change requests
- Conduct and monitor security awareness training for information system users
- Respond to, and investigate, security incidents and violations
Benefits
- health and disability insurance
- 401(k) match
- flexible spending accounts
- EAP
- education assistance
- parental leave
- paid time off
- company-paid holidays
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
5,001-10,000 employees
