Job Description Summary:
The Information System Security Officer 1 (ISSO) supports the continuous monitoring and authorization efforts of multiple classified information systems under the direction of the Information System Security Manager (ISSM). Performing a variety of technical, and non-technical Cyber Security functions.

Job Description:

Duties/Responsibilities
• Assist the ISSM in meeting their duties and responsibilities. The ISSO shall assume ISSM responsibilities in the absence of the ISSM.
• Ensure systems are operated, maintained, and disposed of in accordance with security policies and procedures as outlined in the security authorization package.
• Attend required technical and security training (e.g., operating system, networking, security management) relative to assigned duties.
• Ensure all users have the requisite security clearances, authorization, need-to-know, and are aware of their security responsibilities before granting access to the IS.
• Conduct periodic reviews of information systems to ensure compliance with the security authorization package.
• Coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM and AO/DAO prior to the change.
• Formally notify the ISSM and AO/DAO when changes occur that might affect system authorization.
• Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctly.
• Ensure all IS security-related documentation is current and accessible to properly authorized individuals.
• With supervision, Conduct Audits and Continuous Monitoring (ConMon) activities using available technical and non-technical processes, Reports Audit and ConMon findings, Conduct incident response steps as directed.
• With supervision, manage configuration baselines of both hardware and software, Identify system architecture flaws using industry standard tools (e.g. STIG, SCAP, Nessus) that will be flowed to the ISSM for review.
• Performs other duties as assigned.

Skills/Abilities
• Understanding of information security concepts (e.g. RMF, DIACAP)
• Awareness of audit technologies or capabilities (e.g. Splunk, event viewer)
• Understands Information Technology basics.
• Awareness of network type designations (e.g. WAN, LAN) and associated infrastructure (e.g. Servers, switches, firewalls).

Education
• Requires a bachelor's degree in Information Technology or a related field.
• Equivalent industry experience may be substituted.
• Ability to acquire an IAM I/IAT II Certification within 6 months of start date.

Experience:
• 1-3 years year relevant industry experience is required,
• Preferred experience with RMF (NIST SP 800-53, JSIG, DAAG, ICD 503), IR, Vulnerability Management, SCAP, STIG, and Security-Relevant Tools.

Additional Job Description:

Applicants selected for this position will be required to obtain and maintain a government security clearance.

Current in scope Top Secret security clearance is required.

Job Location - City:
Cambridge

Job Location - State:
Massachusetts

Job Location - Postal Code:
02139-3563

The US base salary range for this full-time position is
$75,000.00 - $156,000.00
Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target salaries for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Union ranges will be in compliance with the collective bargaining agreement's approved rates by location and role. Your recruiter can share more about the specific salary range for your preferred location during the hiring process. Please note that the compensation details listed in US role postings reflect the base salary only, and does not include bonuses or benefits.

Our work is very important to us, but so is our life outside of work. Draper supports many programs to improve work-life balance including workplace flexibility, employee clubs ranging from photography to yoga, health and finance workshops, off site social events and discounts to local museums and cultural activities. If this specific job opportunity and the chance to work at a nationally renowned R&D innovation company appeals to you, apply now www.draper.com/careers.