Information System Security Officer (ISSO)
Kratos Defense and Security Solutions · White Sands, NM · 5 days ago
Information TechnologyFull-time
About the role
The WSMR ISSO will support an Army Project Office providing ISSO support to an Army Test Team. The ISSO will be a key member of a team performing Hardware and Software Cybersecurity analysis along with key functions supporting the Risk Management Framework (RMF) Assessment and Authorization (A&A) process for data processing, test, and tactical systems.
Responsibilities
- Provide accurate technical evaluations of the equipment, software applications, full systems, or network and documenting the security posture, capabilities, and vulnerabilities against applicable NIST controls.
- Selecting and assessing security controls, timely completion of accreditation packages, formulating and implementing mitigations and maintaining the security posture of systems.
- Identify, assess, make risk mitigation recommendations, and document system security threats/risks throughout a system’s lifecycle; validate system security requirements; formulate and maintain documentation and system certification and accreditation activities (planning, testing, assessing and coordinating).
- Documenting preliminary or residual security risks for system operation and manage and approve Authorization Packages.
- Monitoring and evaluating a system's compliance with Department of Defense (DoD) security, resilience, and dependability requirements including performing validation steps, comparing actual results with expected results, and analyzing the differences to identify impacts and risks at the software application, system, and network levels.
- Work with teams to provide solutions and to ensure continued functionality of systems within DoD RMF Framework.
Requirements
- Bachelor’s Degree (engineering or another technical discipline) with 3+ years of experience in Cybersecurity Domain or Non-Degree with 8+ years of experience in Cybersecurity Domain.
- Experience with implementing and evaluating DoD STIG requirements, NIST RMF, IAVMs and Cybersecurity assessment tools (ACAS, Nessus, SCC, STIG Viewer).
- Knowledge of the Risk Management Framework (RMF) process and NIST security controls.
- Knowledge of information system architecture and standards as they apply to cyber security.
- Knowledge of NIST SP 800-160, Systems Security Engineering.
- Minimum 8570 IAM I Certification (i.e. CAP, GSLC, Sec+ CE, etc.).
- US Citizen with Active Secret Clearance or eligibility to obtain (and maintain) a Secret Clearance.
Qualifications
- Basic Qualifications: Bachelor’s Degree (engineering or another technical discipline) with 3+ years of experience in Cybersecurity Domain or Non-Degree with 8+ years of experience in Cybersecurity Domain.
- Experience with implementing and evaluating DoD STIG requirements, NIST RMF, IAVMs and Cybersecurity assessment tools (ACAS, Nessus, SCC, STIG Viewer).
- Knowledge of the Risk Management Framework (RMF) process and NIST security controls.
- Knowledge of information system architecture and standards as they apply to cyber security.
- Knowledge of NIST SP 800-160, Systems Security Engineering.
- Minimum 8570 IAM I Certification (i.e. CAP, GSLC, Sec+ CE, etc.).
- US Citizen with Active Secret Clearance or eligibility to obtain (and maintain) a Secret Clearance.
Skills
- Ability to work with system developers to update, maintain, and track RMF and POA&M documentation.
- Ability to travel occasionally for work duties.
- Candidate must be a resident of White Sands, New Mexico or be willing to relocate to the White Sands, New Mexico area.
Benefits
- Medical, Dental & Vision Insurance Coverage.
- Life/ADD & Short/Long Term Disability Insurance.
- 401(k) Savings Plan.
- Employee Stock Purchase Plan (ESPP).
- Paid Time-Off (PTO).
- Holidays.
- Education Reimbursement.