Information Systems Security Officer - Colorado Springs, CO
Colorado Springs, CO, United States
Job Description
ATTENTION MILITARY AFFILIATED JOB SEEKERS - Our organization works with partner companies to source qualified talent for their open roles. The following position is available to Veterans, Transitioning Military, National Guard and Reserve Members, Military Spouses, Wounded Warriors, and their Caregivers. If you have the required skill set, education requirements, and experience, please click the submit button and follow the next steps. Unless specifically stated otherwise, this role is "On-Site" at the location detailed in the job post.
General Dynamics Mission Systems has an immediate opening for an Information Assurance Security Professional. This position provides an opportunity to further advance the cutting-edge technology that supports some of our nation's core defense/intelligence services and systems. General Dynamics Mission Systems employees work closely with esteemed customers to develop solutions that allow them to carry out high-stakes national security missions.
The candidate will be designated as an Information Systems Security Officer (ISSO) supporting multiple Special Access Programs administering the Information Assurance (IA) Cyber duties for government customers. Components of the IA program include Assessment and Authorization (A&A) activities (i.e., documentation preparation, system configuration/validation, certification testing), security sustainment activities (i.e., hardware change management, software change management, account management, media protection, user interface, file transfers), conducting self-inspections, audit trail review, and delivering information systems security education and awareness. The candidate must be a self-starter capable of multitasking and efficiently managing their time in a dynamic environment while requiring minimal levels of supervision. Additionally, the candidate will possess effective written, speaking, analytical, organizational, and customer service skills that will assist them in identifying solutions to complex compliance and security problems. The ISSO will coordinate duties with the System Administrators and/or Information Technology (IT) staff to ensure all configuration requirements are implemented and functional. The ISSO will conduct technical and nontechnical reviews and audits as prescribed by the Information Systems Security Manager.
REPRESENTATIVE DUTIES AND TASKS:
As a member of the Information Assurance Security team the ISSO supports system security categorization efforts, security requirements selection/analysis, security control assessments and performs continuous monitoring.
Executes or supports the execution of A&A activities, including development of required security documentation, including items such as System Security Plans, Security Assessment Reports, SCTM's and POA&M's in compliance with IA policy
Perform weekly system audit reviews, media reviews, hardware/software configuration management
Executes security testing and evaluation to ensure correct implementation of security controls
Supports the assessment and mitigation of vulnerabilities throughout a systems life cycle
Conduct IA security education training for all system users on appropriate risk mitigation strategies
Perform incident response and cleanup actions when necessary per company or customer directions
Ensure systems are operated, maintained, and disposed of in accordance with internal security policies and procedures outlined in the System Security Plan (SSP).
Assume ISSM responsibilities as assigned by the Region Manager and/or in the absence of the ISSM
KNOWLEDGE SKILLS AND ABILITIES:
Proficient understanding of cyber security specifications such as Risk Management Framework (RMF), JSIG (Joint SAP Implementation Guide), ICD-503, NIST SP 800-53
Experience implementing government security requirements to include technical computer/network system auditing
Trained and proficient in Assured File Transfer (AFT) processes and tools
Experience with various security assessment/hardening tools - STIGs, SCAP, ACAS, Nessus, etc.
Systems administration experience is highly desirable
Very strong writing, speaking, analytical, and customer service skills
Ability to participate in or lead security work groups
Must be a self-starter capable of multitasking and efficiently managing your time in a dynamic environment while requiring minimal levels of supervision
Maintains contact with external customer security professionals
PREFERRED DEGREE TYPES AND EXPERIENCE:
Demonstrated comprehensive knowledge of the NISPOM, JSIG, ICD-503, NIST SP 800-53 and CNSSI 1253
DoD 8570 IAM-I level professional certification (i.e. Security + CE, CAP, GSLC) or ability to obtain within six (6) months of hire
Target salary range: USD $112,829.60/Yr. - USD $125,170.40/Yr. This estimate represents the typical salary range for this position based on experience and other factors (geographic location, etc.). Actual pay may vary. This job posting will remain open until the position is filled.
Additional Qualifications/Responsibilities
BASIC QUALIFICATIONS
Requires a Bachelor's degree in Engineering, or a related Science or Mathematics field. Also requires 5+ years of job-related experience, or a Master's degree plus 3 years of job-related experience.
CLEARANCE REQUIREMENTS: Department of Defense Secret security clearance is required at time of hire. Candidates must be able to obtain a TS/SCI clearance within a reasonable amount of time from date of hire. Applicants selected will be subject to a U.S. Government security investigation and must meet eligibility requirements for access to classified information. Due to the nature of work performed within our facilities, U.S. citizenship is required.