Job Title: Specialist, Information System Security Officer
Job Code: 39530
Job Location: Waco, TX
Schedule: 9/80; Every other Friday off
Job Description: - Responsible for the development, deployment and execution of controls and defenses to ensure the security of company technology, information systems, and system deliverables.
- Supports secure systems operations and maintenance.
- Assesses and mitigates system security threats and risks throughout the program life cycle.
- Performs system certification and accreditation planning, testing, and validation activities in coordination with government customers.
- Executes first level responses and addresses reported or detected incidents.
- Interprets, analyzes, and reports all events and anomalies in accordance with directives, to include initiating, responding, and reporting discovered events.
- Safeguards information against unauthorized use, infiltration, exfiltration, modification, destruction or disclosure of national security information.
- Notify the ISSM of changes affecting the ATO. Coordinate any changes to hardware, software, or firmware with the ISSM prior to any change.
Essential Functions: - Building Aircraft disk pack sets, along with keeping them maintained and updated, as necessary to support our test team, and the Air Force as required.
- Willing to Travel 25% of the time to support offsite test events
- Frequently supports night, and/or weekends to augment SCIF manning for planned site power outages and/or network outages that will affect our security posture.
- Responsible for analyzing and/or administering security controls for information systems as part of the systems' Continuous Monitoring Plan
- Follow approved procedures for clearing, sanitizing and destroying hardware and media.
- Implements, enforces, communicates and develops security policies or plans for data, software applications, hardware, and telecommunications
- Provides details for developing Information System Security (ISS) Risk Management Framework (RMF) documentation (SSP, SAR, RAR, SAP, SCTM, POA&M, etc.) to support the Assessment & Authorization (A&A) of assigned systems
- Performs periodic hardware/software inventories to maintain strict control over assigned assets
- Identifies system security controls shortcomings and annotates POA&M entries for deficient items, playing a vital role with remediating control deficiencies
Qualifications: - Bachelor's Degree and minimum 4 years of prior relevant experience. Graduate Degree and a minimum of 2 years of prior related experience. In lieu of a degree, minimum of 8 years of prior related experience
- Minimum Security+ certification required
- An active DoD Top Secret with SCI eligibility security clearance is required. Security clearances may only be granted to U.S. citizens. In addition, applicants who accept a conditional offer of employment may be subject to government security investigation(s) and must meet eligibility requirements for access to classified information.
Preferred Additional Skills:- Experience with various information system security assessment/hardening tools - SCAP Compliance Checker, ACAS, Nessus
- Prior Xacta 360 /Xacta.io training, knowledge, and relevant experience
- Working knowledge of WAN/LANs, to include routers, switches, and firewalls
- Self-starter who works well with others in support of achieving team goals
