Date Posted:
2021-12-31-08:00
Country:
United States of America
Location:
VA156: 8111 Gatehouse Rd, FallsChurch 8111 Gatehouse Road , Falls Church, VA, 22042 USA
This job is CONTINGENT upon funding, an open position, customer approval, completion of a favorable background investigation, and the ability to obtain and maintain a USPS sensitive clearance.
This position is temporary telecommute until customer requires onsite support.
Relocation assistance is not provided for this position.
An experienced Information Systems Security Officer (ISSO) is needed to join the cyber security team of a major nationwide organization, with thousands of sites, to continually improve its complex multi-protocol nationwide network.
Location: Falls Church, Virginia (Merrifield)
Job Responsibilities:
- Serves as an Information Systems Security Officer (ISSO) and as a member of the leadership team of a major nationwide networked operation
- Provide guidance and support for system security by performing complete assessments of the system portfolio, determine priority of systems that need to be accredited per policy, and ensure prompt compliance
- Reviews system security packages and authorization status
- Provides continuous security monitoring of assigned systems
- Provide advice and insight into the overall management and evaluation of the system security posture.
- Audit and enforce security policies and standards for the Federal Agency customer
- Assist in documentation and accreditation of systems governed by NIST standards and FISMA regulations
- Liaison with the CISO and other leaders
- Contribute to policy implementation as it relates to Disaster Recovery and Contingency planning
- Ensure that Emergency Response Leadership is informed of relevant training and exercise activities and metrics
- Coordinate across organization to ensure that all team members participate as needed
- Provide customer with an end-to-end training and awareness capability including the development, deployment and analysis of security training across the organization
- Ensure policy application and regulatory compliance leadership in accordance with Federal guidance, including FIPS Publication 200, NIST SP 800-18, SP 800-37, SP 800-53, SP 800-53A and SP 800-60
- Supports the following program areas, as required:
- Risk Management
- Assessment and Authorization (A&A)
- Vulnerability Management
- Security operations
- Access Control
- Emergency Response
- Disaster Recovery and Continuity of Operations
- IT investigations, digital forensics, eDiscovery
- Quality and Compliance
- Threat Intelligence
- Security Training and Exercise Management
Required Skills:
- Must be eligible to obtain a sensitive clearance – Position of Public Trust – and may be required to obtain a higher security clearance.
- 5+ years related work experience
- Experience with large organization networks
- Experience with regulatory compliance, policy development, and policy enforcement
- Developing a detailed project schedule, including Assessment & Authorization (A&A) task and milestones, task dependencies, and personnel resources
- Direct experience performing security engineering, system integration, network engineering
- Experience with developing and managing POA&M’s
- Technical experience with reviewing vulnerability scans and providing mitigation techniques
- Experience with conducting audit log reviews
- Experience with NIST Special Publications and guidance
- Strong problem solving and analysis skills, self-motivated, and able to work and communicate in a team environment
- Excellent communication (written and verbal) skills
Desired Skills:
- Experience with cyber security development projects and programs for U.S. Government and/or commercial clients
- Experience with process development and deployment
- Experience with three or more of the following:
- Security COTS integration
- Security Incident Event Management
- Operating System Hardening
- Vulnerability Assessment testing
- Identification and Authentication schemes
- Public Key Infrastructure and Identity Management
- Cross Domain Solutions
- DevSecOps and Code Review
- Cloud security
Required Education:
Bachelor’s Degree in related field. In lieu of degree, two years of related work experience may be substituted for each year of degree level education.
Desired Certifications (one or more desired):
DOD 8570.1-M Compliance at IAT Level II; CISSP (preferred)
Raytheon Technologies is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.
Privacy Policy and Terms:
Click on this link to read the Policy and Terms