Battelle delivers when others can’t. We conduct research and development, manage national laboratories, design and manufacture products and deliver critical services for our clients—whether they are a multi-national corporation, a small start-up or a government agency.We recognize and appreciate the value and contributions of individuals with diverse backgrounds and experiences and welcome all qualified individuals to apply.Job SummaryFAST FORWARD TO YOUR NEXT MISSION Integrity, confidence, discipline and commitment define your career in Battelle’s National Security Global Business. Battelle was built on a firm foundation of honesty, integrity, and outstanding service and the work we do in national security impacts lives around the world; whether we’re creating armor for military applications, testing a life-saving vaccine, or developing a more efficient hydrogen fuel cell. At Battelle, we reward the best work with more responsibility, positions to grow and develop, and the opportunity to make a positive impact on the world. Are YOU ready for your Next Mission?Battelle is a world leader in science and technology services and research. The Cyber Business Line, Cyber Solutions Division, Cyber Architecture & Advisory Services Practice specializes in providing advanced Cybersecurity and Information Assurance (IA) solutions to our government and commercial clients. The Cyber Architecture & Advisory Services is seeking a Senior Information System Security Officer (ISSO) to lead the Security Architecture and Security Authorization Process (Certification & Accreditation) effort for the Department of Homeland Security’s Transportation Security Administration (TSA), TSA Systems Integration Facility (TSIF). The TSIF T&E Division tests and evaluates existing and new technology for use in U.S.A. airports to improve airport efficiency, safety, and security.This quick fill position is located near TSA TSIF Ronald Reagan National Airport, Arlington, VA. Compensation will be based on qualifications and experience. A full benefits package will be provided. The selected candidate will be expected to travel up to 5% of the time.Responsibilities
Provide expert IA policy, risk and technical advisory services to IT executives
Lead and participate in full lifecycle Security Authorization Process (formerly known as certification and accreditation (C&A)) activities for mission critical applications
Conduct interviews, document examination, write security documentation
Manage full lifecycle Security Authorization Process deliverables: Assessment and Authorization (A&A) packages, System Security Plans (SSPs), Risk Assessment Reports (RARs), Security Controls Traceability Matrices (SCTMs), Security Policies and Procedures, vulnerability analysis, and risk management, and Plans of Action & Milestones (POA&Ms) for all systems
Serve as Security Lead and representative for interagency meetings reviewing TSA TSIF cutting edge technologies, Passenger and Cargo Screening, Test and Evaluation Network
Develop and deliver security policy white papers and briefings
Provide research and analysis of latest information technology security trends
Evaluate and analyze leading edge security technologies to be implemented to improve the organization’s security posture.
Work with research and development (R&D) organizations to define requirements to design and develop leading-edge security solutions.
Collaborate with fellow Cyber Security Practice Team Members both locally and across the Cyber Security Practice in the full-lifecycle development and delivery of security technology solutions.
Actively contribute to the Battelle Cyber process improvement initiatives
Actively participate in leading edge cyber security conferences, working groups and training
Actively participate in Cyber Security Practice “Solving the Toughest Security Problems” expert group
Key Qualifications
Must be a U.S. Citizen
Active DoD SECRET Clearance
Eligibility and willingness to obtain TSA Security Suitability
10+ years IT experience with at least 4+ years of that experience in information assurance and IT security
Bachelors Degree (BS/BA)
Certified Information Systems Professional (CISSP)
Motivated self-starter who requires minimal supervision and oversight
Strong organizational, and time management skills, and the ability to meet tight deadlines
Strong Analytical and Writing skills with history of producing quality technical documentation
Proven knowledge of NIST 800-53 Rev5 Operation, Technical, and Managerial Controls, IT, IA and physical security concepts and principles
Proven experience working in collaborative sessions demonstrating strong verbal and written communication skills along with tactful negotiation skills
Experience with Windows and Linux configuration STIG hardening
Experience with switch, router, and firewall configuration, Access Control Lists, and security hardening
Experience with Active Directory configuration and security, and GPO management
Expertise with Plans of Actions and Milestones (POA&M) management
Subject Matter Expertise of the Risk Management Framework (RMF)
Preferred Qualifications
Current DHS or TSA Security Suitability
M.S. in Information Systems or related field
Consulting environment experience
Experience with DHS CSAM system
Expertise in identifying security requirements specific to an information technology (IT) system in all phases of the system life cycle.
Expertise in CyberSecurity Asset Management
Expertise in evaluating system and application security threats and vulnerabilities
Experience with DHS MD 4300A Security Controls and Security Assessment Process
Experience with Nessus, WebInspect, AppDetective, and other vulnerability detection tools
Experience with DISA Security Technical Implementation Guides (STIGs), implementation SCAP Compliance Checker (SCC) and STIG Viewer.
Experience with Network security tools Wireshark and Burp Suite
Knowledge of Personally Identifiable Information (PII) data security standards.
Experience with Splunk SIEM
Experience with End Point Protection Tools
Experience with Unix/Linux, Visual Basic, PowerShell, and other scripting.
Knowledge of penetration testing principles, tools, and techniques.
Experience with Cloud Architectural Concepts & Design Requirements.
Experience with Cloud Data Security
Experience with Cloud Platform & Infrastructure Security
Experience with Cloud Application Security
Experience with Cloud Environment Operations
Experience with Legal, Compliance, and U.S. Government Policy for the Cloud Environment
Experience with Intelligence Community and/or FedRAMP Cloud hosting environments
Experience with reviewing Static Application Security (SAST) Reports
Military veteran with relevant IT and computer security experience will be considered a plus.
Benefits: Live an Extraordinary LifeWe care about your well-being, not just on the job. Battelle offers comprehensive and competitive benefits to help you live your best life.
Balance life through a compressed work schedule : Most of our team follows a flexible, compressed work schedule that allows for every other Friday off—giving you a dedicated day to accomplish things in your personal life without using vacation time.
Take time to recharge : You get paid time off to support work-life balance and keep motivated.
Prioritize wellness : Stay healthy with medical, dental, and vision coverage with wellness incentives and benefits plus a variety of optional supplemental benefits.
Better together : Coverage for partners, gender-affirming care and health support, and family formation support.
Build your financial future : Build financial stability with an industry-leading 401(k) retirement savings plan. For most employees, we put in 5 percent whether you contribute or not, and match your contributions on top of that.
Advance your education : Tuition assistance is available to pursue higher education.
Flexible work arrangements : You have options for where you work and when you work.
A Work Environment Where You SucceedFor brilliant minds in science, technology, engineering and business operations, Battelle is the place to do the greatest good by solving humanity’s most pressing challenges and creating a safer, healthier and more secure world.You will have the opportunity to thrive in a culture that inspires you to:
Apply your talent to challenging and meaningful projects
Receive select funding to pursue ideas in scientific and technological discovery
Collaborate with world-class experts in an inclusive environment
Nurture and develop the next generation of scientific leaders
Give back to and improve our communities
Vaccinations & Safety ProtocolsBattelle may require employees, based on job duties, work location, and/or its clients’ requirements to follow certain safety protocols and to be vaccinated against a variety of viruses, bacteria, and diseases as a condition of employment and continued employment and to provide documentation that they are fully vaccinated. If applicable, Battelle will provide reasonable accommodations based on a qualified disability or medical condition through the Americans with Disabilities Act or the Rehabilitation Act or for a sincerely held religious belief under Title VII of the Civil Rights Act of 1964 (and related state laws).Battelle is an equal opportunity employer. We provide employment and opportunities for advancement, compensation, training, and growth according to individual merit, without regard to race, color, religion, sex (including pregnancy), national origin, sexual orientation, gender identity or expression, marital status, age, genetic information, disability, veteran-status veteran or military status, or any other characteristic protected under applicable Federal, state, or local law. Our goal is for each staff member to have the opportunity to grow to the limits of their abilities and to achieve personal and organizational objectives. We will support positive programs for equal treatment of all staff and full utilization of all qualified employees at all levels within Battelle.The above statements are intended to describe the nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, activities and skills required of staff members. No statement herein is intended to imply any authorities to commit Battelle unless special written permission is granted by Battelle's Legal Department.For more information about our other openings, please visit www.battelle.org/careers