Sr Specialist, Cyber Intelligence
L3Harris Technologies · San Diego, CA · 3 wk ago
On-siteInformation Technology$106k–$198k/yrFull-time
About the role
L3Harris is seeking a highly experienced Senior Information System Security Officer (ISSO) to support cybersecurity, compliance, and operational oversight of classified information systems across multiple programs and facilities.
Responsibilities
- Administer and maintain cybersecurity compliance for classified information systems operating under the Risk Management Framework (RMF).
- Lead Assessment and Authorization (A&A) activities including development and maintenance of System Security Plans (SSPs), authorization packages, security assessments, continuous monitoring activities, and Plan of Action and Milestones (POA&M) management.
- Perform security control implementation reviews, vulnerability assessments, risk evaluations, and compliance validation activities in accordance with applicable government requirements.
- Develop, review, and maintain cybersecurity documentation including hardware and software inventories, network diagrams, security procedures, configuration management documentation, and system accreditation artifacts.
- Independently manage assigned programs and information systems while ensuring compliance with contractual, customer, and regulatory requirements.
- Cook up coordination directly with government customers, Defense Counterintelligence and Security Agency (DCSA) representatives, Security Control Assessors (SCAs), Authorizing Officials (AOs), program management, engineering teams, and facility security personnel.
- Support security inspections, customer assessments, accreditation reviews, vulnerability remediation efforts, and compliance audits.
- Evaluate proposed system changes, architecture modifications, software installations, and engineering activities for security impact and compliance implications.
- Conduct account management reviews, audit log reviews, media accountability activities, and continuous monitoring activities.
- Mentor junior Information System Security Officers (ISSOs) and provide guidance regarding cybersecurity requirements, authorization processes, and regulatory compliance obligations.
- Serve as a delegated representative when required.
- Travel up to 10% in support of customer meetings, inspections, audits, and program activities.
Requirements
- Bachelor’s Degree and minimum 6 years of prior relevant experience. Graduate Degree and a minimum of 4 years of prior related experience. In lieu of a degree, minimum of 10 years of prior related experience.
- Minimum of 10 years of experience supporting cybersecurity, information assurance, or information system security activities within Department of Defense (DoD), Intelligence Community (IC), or other classified computing environments.
- Active Top Secret security clearance with Sensitive Compartmented Information (TS/SCI) eligibility on Day One.
- Current CompTIA Security+ certification, or equivalent Department of Defense (DoD) 8140 compliant baseline certification, at the time of hire.
Preferred Qualifications
- Extensive experience implementing and maintaining information systems operating under the Risk Management Framework (RMF).
- Extensive experience leading system authorization activities, including development and maintenance of authorization packages, security documentation, continuous monitoring activities, and Plan of Action and Milestones (POA&M) management.
- Experience serving as the primary cybersecurity representative for one or more classified information systems, programs, or facilities.
- Experience providing cybersecurity guidance and compliance oversight to program management, engineering, and technical teams.
- Experience interpreting and applying National Institute of Standards and Technology (NIST), Department of Defense (DoD), Defense Counterintelligence and Security Agency (DCSA), and customer cybersecurity requirements within operational environments.
- Experience supporting security inspections, audits, assessments, and accreditation activities involving government customers and regulatory organizations.
- Demonstrates ability to independently manage multiple classified systems, competing priorities, and regulatory requirements with minimal supervision.
- Demonstrates ability to organize, prioritize, and execute complex cybersecurity compliance efforts across multiple programs while maintaining high levels of accuracy and attention to detail.
- Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) certification.
- Strong working knowledge of the Joint Special Access Program (SAP) Implementation Guide (JSIG).
- Experience utilizing Enterprise Mission Assurance Support Service (eMASS) to develop, manage, and maintain Assessment and Authorization (A&A) packages and continuous monitoring activities.
- Experience interacting directly with Defense Counterintelligence and Security Agency (DCSA) Information System Security Professionals (ISSPs), Security Control Assessors (SCAs), Authorizing Officials (AOs), government cybersecurity representatives, and customer security organizations.
- Experience leading complex authorization efforts involving multiple interconnected systems, enclaves, or classified networks.
- Experience mentoring Information System Security Officers (ISSOs) and providing technical leadership across cybersecurity teams.
- Experience supporting enterprise cybersecurity programs spanning multiple classified systems, facilities, or contracts.
- Knowledge of National Institute of Standards and Technology (NIST) Special Publication 800-53 Revision 5 security controls, Security Technical Implementation Guides (STIGs), Security Content Automation Protocol (SCAP) compliance validation, and vulnerability management processes.
- Experience with Microsoft Windows, Red Hat Enterprise Linux (RHEL), Active Directory, virtualization technologies, enterprise logging solutions, and endpoint security platforms.