MAG Aerospace

Information System Security Officer (ISSO)

MAG Aerospace$90K — $120K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 5+ years of experience in Information Assurance / Cybersecurity
  • Thorough knowledge of DoD RMF, Cyber Security standards, and current authorization practices
  • Proficient in creating and maintaining security baselines for Windows, Linux, networking, and cloud technologies
  • Ability to provide subject matter expertise in technology planning and implementation
  • Must possess US Citizenship and an active DoD Top Secret Clearance w/SCI
  • BS in Computer Science or Information Technology (or equivalent experience)
  • Certifications as per DoD Directive 8570.01-M for IAM Level II required

Responsibilities

  • Gather and translate customer requirements and lead security policy compliance efforts
  • Categorize IT assets based on impact analysis regarding Confidentiality, Integrity, and Availability
  • Select and tailor initial baseline security controls based on risk assessment
  • Assess security controls and evaluate their effectiveness
  • Authorize the information system based on risk acceptance
  • Monitor IS security continuously, conducting impact analyses and reporting security status
  • Review and update RMF authorization packages
  • Conduct assessments of security controls to identify gaps

Benefits

  • Work with the Special Operations community in a dynamic environment
  • Opportunity for continuous learning and professional growth
  • Engage with multi-functional teams and stakeholders
  • Potential travel for customer projects and corporate meetings
  • Contribute to crucial cybersecurity efforts in the defense sector
Full Job Description
Position Summary

The MAG Team is seeking to hire an experienced Information Systems Security Officer to support the Special Operations community based out of Ft. Liberty (formerly Ft. Bragg), NC! In this role, you will provide a variety of services leveraging the Risk Management Framework (RMF) accreditation. Services are associated with validation, approval, and sustainment of cybersecurity accreditation packages. Additionally, you will performs and analyze a range of Information Security Systems Officer activities and assist with the development and implementation of security policies.

 

Essential Duties and Responsibilities

Duties include, but are not limited to:

  • Gather and translate customer requirements, interact with stakeholders from many areas, and lead efforts to ensure customer products and recommendations will meet customer information security policies in an ever-changing technical environment
  • Categorize the IT and the information processed, store, and transmitted by the system based on an impact analysis due to a loss of Confidentiality, Integrity, and Availability (CIA) impacts 
  • Select an initial set of baseline security controls for the Information System (IS) based on the security categorization; overlay tailoring and supplementing the security control baseline as needed based on an organizational assessment of risk and local conditions 
  • Assess the security control using the appropriate methods and procedures to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome 
  • Authorize the IS based on the determination of the risk to the organizational operations, organizational assets, or to individuals resulting from the operation of the IS and the decision that this risk is acceptable 
  • Monitor the security of the IS on a continuous basis including assessing control effectiveness, documenting changes to the system, conducting security impact analyses of the associated changes, and reporting the security status of the system to appropriate organizational officials on a regular basis
  • Review, prepare and update RMF authorization packages 
  • Conduct assessments of information security controls to measure the effectiveness of controls and identify any gaps 
  • Manage remediation efforts and report on the status of control deficiencies 
  • Provide security expertise to business units and key stakeholders 
  • Provide timely status updates/reporting on assessments and assigned projects 
Requirements

Minimum Requirements

 

Knowledge and Skills 

 

  • In compliance with DoD Cyber Workforce 8570.01  
  • Experience in Information Assurance / Cybersecurity, including development, integration, and implementation of cyber security and program protection standards for networking, computers, and custom applications
  • Thorough knowledge of the Department of Defense 8510.01 Risk Management Framework (RMF) for DoD Information Technology, DoD Instruction 8500.1 Cyber Security, DoD Directive 8140.01, Cyberspace Workforce Management, NIST 800 Special Publications, Federal Information Processing Standards (FIPS), and knowledge of current authorization practices, particularly within the DoD
  • Experience in creating and maintaining the security configuration baselines for Windows and Linux platforms, networking equipment, cloud technologies, and custom applications (i.e., Minimum Benchmarks: CIS, STIGS)
  • Provide subject matter expertise, advice and assistance in the planning, implementation, and accreditation of technology and solutions 
  • Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Management Level IAM Level II 

   

The minimum years of related experience required: 5+

  

Education 

  • The minimum level of education required is: BS in Computer Science or Information Technology (or equivalent experience)

 

Other Qualifications 

  •  US Citizenship and Active DoD Top Secret Clearance w/SCI

 

Desired Requirements 

  

  • Familiar with DIA assessments and accreditation documentation within the XACTA management platform 
  • Familiar with eMASS - USSOCOM ENTERPRISE MISSION ASSURANCE SUPPORT SERVICES platform
  • Meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Management Level (IAM Level III)
  • Ability to read, review, and consolidate ACAS scans, DISA STIGS, and Websense results
  • Excellent interpersonal skills, including the ability to work on multi-functional teams 
  • Display detailed knowledge and understanding of multiple technology infrastructures
  • Ability to serve as a principal advisor on all matters, technical and otherwise, involving the security of an IS 
  • Exhibit individual initiative to influence events and achieve goals. Be proactive and a self-starter, going beyond specific job responsibilities to ensure goals and achieved or exceeded 
  • Travel as necessary for customer projects, technology expositions, and corporate meetings

About MAG Aerospace

MAG Aerospace is a leading provider of intelligence, surveillance, and reconnaissance (ISR) solutions to government and commercial customers. The company offers a wide range of services, including manned and unmanned aerial surveillance, training and support, and technical services. MAG Aerospace has a global presence, with operations in the United States, Europe, Africa, and the Middle East. The company is committed to providing innovative and reliable solutions to its customers while also promoting safety and ethical behavior. MAG Aerospace has received numerous awards and recognitions for its outstanding performance and contributions to the industry.
Learn more about MAG Aerospace
Size
3,000 employees
Industry
Founded
2010
NASDAQ

Similar Jobs

More Jobs at MAG Aerospace

More Information Technology Jobs

Find similar Information System Security Officer (ISSO) jobs: