Job Details

ID #5982315
Estado Alabama
Ciudad Huntsville / decatur
Tipo de trabajo Contract
Salario USD TBD TBD
Fuente Solidus Technical Solutions
Showed 2020-11-21
Fecha 2020-11-20
Fecha tope 2021-01-19
Categoría Seguridad
Crear un currículum vítae

Information System Security Officer

Alabama, Huntsville / decatur, 35801 Huntsville / decatur USA

Vacancy caducado!

Solidus is looking for an Information System Security Officer to join a team that supports the Department of Defense (DoD) designing and developing various testbed systems and components to assist data collection for ballistic missile defense tests.

The Information Systems Security Officer (ISSO) will provide information systems security support to several independent research programs. The successful candidate will work independently, and also as a team member, must be a quick learner, self-motivated, reliable, and able to balance multiple tasks simultaneously. The candidate must have strong interpersonal skills and be able to manage stress in a professional manner. They also must be knowledgeable in computer security principles and policies, to include the Risk Management Framework (RMF)/NIST 800-53, Security Technical Implementation Guides (STIGs), National Industrial Security Program Operating Manual (NISPOM), Defense Security Service (DSS), Assessment and Authorization Manual (DAAPM), Joint SAP Implementation Guide (JSIG), Intelligence Community Directive (ICD) 503, and DoD Manual 5205.07 Volumes 1-4.

Responsibilities: - Work with the ISSM on compliance activities including RMF. - Accreditation of several complex information systems. - Assist in the security configuration and management of collateral classified systems and networks in a variety of traditional and virtual environments including Linux, Unix, Sun, Mac, and Windows. - Confirm that plans of actions and milestones (POA&M) or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc. - Promote awareness of security issues among management and ensure sound security principles are reflected in the organization's vision and goals. - Track audit findings and recommendations to ensure that appropriate mitigation actions are taken. - Utilizing previous RMF experience, recommend resource allocations required to securely operate and maintain an organization's cyber security requirements. - Act as primary author on the development and maintenance of System Security Plans (SSP) and associated artifacts such as the Plan of Action & Milestones (POA&M), Risk Assessment Report, and Continuous Monitoring Strategy. - Ensure systems are operated, maintained, and disposed of in accordance with organization security policies and procedures. - Collect, analyze, and store system audit records. - Conduct network, system, and application vulnerability scanning, configuration assessment, and remediation. - Prepare for and participate in periodic organization compliance assessments. - Ensure account management documentation is complete and updated. - Maintain configuration management documentation (change tracking, maintenance logs, etc.). - Serve as a member of the Configuration Control Board (CCB) as needed.

Required skills: - ship and ability to obtain a Secret Clearance. TS Preferred. - BS degree in Information Security, Computer Science, Cybersecurity, Information Technology, Computer Information Systems, or related discipline is required or an Associates and at least 1 certification. - A minimum of 5 years of IT security experience in DoD Information Security. - Technical experience, skills, and course work completed towards an Undergraduate Degree, or industry IT certifications may be considered in lieu of education or DoD security experience requirements. - Possess a DoD 8570.01-M IAM I baseline certification (e.g. CompTIA Security+), or be able to obtain one within 6 months of hire. - Demonstrated understanding of the following security frameworks is required: NIST 800-53 / Risk Management Framework (RMF) Joint SAP Implementation Guide (JSIG) Intelligence Community Directive (ICD) 503 National Industrial Security Program Operating Manual (NISPOM) Chapter 8 DoD Manual 5205.07 Volumes 1-4 - Demonstrated experience with vulnerability scanning and auditing tools and processes. - Excellent written and verbal communication skills.

Preferred skills: - Experience and familiarity with multiple operating systems such as Windows Server 2012, 2016 and 2019, Windows 7 and 10, Red Hat Enterprise Linux, Ubuntu, Mac, etc. - Experience with virtualization and Cloud technologies - Ability to integrate information security requirements into the acquisition process; using applicable baseline security controls as one of the sources for security requirements; ensuring a robust software quality control process; and establishing multiple sources (e.g., delivery routes, for critical system elements). - Technical experience securing networks and systems utilizing DISA STIGs and/or SRGs is highly desired.

Travel: occasional, likely once every 4 months; national and international travel for periods up to two weeks is expected.

Req ID: 3862

Applicants selected must meet eligibility requirements for access to classified information. U.S. Citizenship may be required. Solidus is an Equal Opportunity Employer and participates in E-Verify. NOTICE OF AFFIRMATIVE ACTION PLAN FOR INDIVIDUALS WITH DISABILITIES, DISABLED VETERANS AND OTHER PROTECTED VETERANS. It is the policy of this Company to seek and employ qualified individuals at all locations and facilities, and to provide equal employment opportunities for all applicants and employees in recruiting, hiring, placement, training, compensation, insurance, benefits, promotion, transfer, and termination. To achieve this, we are dedicated to taking affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, and other protected veterans. The objective in adopting the Affirmative Action Programs is to place qualified individuals with disabilities, disabled veterans and other protected veterans in all job classifications. These Affirmative Action Programs are available for inspection by any applicant or employee by contacting the Company's EEO Coordinator, in the Human Resources office, Monday through Friday, 8am to 5pm.

Vacancy caducado!

Suscribir Reportar trabajo

Puestos de trabajo relacionados