Senior Information System Security Officer (ISSO)
Company: Battelle
Location: Charles City
Posted on: November 15, 2024
|
|
Job Description:
Battelle delivers when others can't. We conduct research and
development, manage national laboratories, design and manufacture
products and deliver critical services for our clients-whether they
are a multi-national corporation, a small start-up or a government
agency.
Like the look of this opportunity Make sure to apply fast, as a
high volume of applications is expected Scroll down to read the
complete job description.
We recognize and appreciate the value and contributions of
individuals with diverse backgrounds and experiences and welcome
all qualified individuals to apply.
Job Summary
FAST FORWARD TO YOUR NEXT MISSION Integrity, confidence, discipline
and commitment define your career in Battelle's National Security
Global Business. Battelle was built on a firm foundation of
honesty, integrity, and outstanding service and the work we do in
national security impacts lives around the world; whether we're
creating armor for military applications, testing a life-saving
vaccine, or developing a more efficient hydrogen fuel cell. At
Battelle, we reward the best work with more responsibility,
positions to grow and develop, and the opportunity to make a
positive impact on the world. Are YOU ready for your Next
Mission?
Battelle is a world leader in science and technology services and
research. The Cyber Business Line, Cyber Solutions Division, Cyber
Architecture & Advisory Services Practice specializes in providing
advanced Cybersecurity and Information Assurance (IA) solutions to
our government and commercial clients. The Cyber Architecture &
Advisory Services is seeking a Senior Information System Security
Officer (ISSO) to lead the Security Architecture and Security
Authorization Process (Certification & Accreditation) effort for
the Department of Homeland Security's Transportation Security
Administration (TSA), TSA Systems Integration Facility (TSIF). The
TSIF T&E Division tests and evaluates existing and new
technology for use in U.S.A. airports to improve airport
efficiency, safety, and security.
This quick fill position is located near TSA TSIF Ronald Reagan
National Airport, Arlington, VA. Compensation will be based on
qualifications and experience. A full benefits package will be
provided. The selected candidate will be expected to travel up to
5% of the time.
Responsibilities
Provide expert IA policy, risk and technical advisory services to
IT executives
Lead and participate in full lifecycle Security Authorization
Process (formerly known as certification and accreditation
(C&A)) activities for mission critical applications
Conduct interviews, document examination, write security
documentation
Manage full lifecycle Security Authorization Process deliverables:
Assessment and Authorization (A&A) packages, System Security
Plans (SSPs), Risk Assessment Reports (RARs), Security Controls
Traceability Matrices (SCTMs), Security Policies and Procedures,
vulnerability analysis, and risk management, and Plans of Action &
Milestones (POA&Ms) for all systems
Serve as Security Lead and representative for interagency meetings
reviewing TSA TSIF cutting edge technologies, Passenger and Cargo
Screening, Test and Evaluation Network
Develop and deliver security policy white papers and briefings
Provide research and analysis of latest information technology
security trends
Evaluate and analyze leading edge security technologies to be
implemented to improve the organization's security posture.
Work with research and development (R&D) organizations to
define requirements to design and develop leading-edge security
solutions.
Collaborate with fellow Cyber Security Practice Team Members both
locally and across the Cyber Security Practice in the
full-lifecycle development and delivery of security technology
solutions.
Actively contribute to the Battelle Cyber process improvement
initiatives
Actively participate in leading edge cyber security conferences,
working groups and training
Actively participate in Cyber Security Practice "Solving the
Toughest Security Problems" expert group
Key Qualifications
Must be a U.S. Citizen
Active DoD SECRET Clearance
Eligibility and willingness to obtain TSA Security Suitability
10+ years IT experience with at least 4+ years of that experience
in information assurance and IT security
Bachelors Degree (BS/BA)
Certified Information Systems Professional (CISSP)
Motivated self-starter who requires minimal supervision and
oversight
Strong organizational, and time management skills, and the ability
to meet tight deadlines
Strong Analytical and Writing skills with history of producing
quality technical documentation
Proven knowledge of NIST 800-53 Rev5 Operation, Technical, and
Managerial Controls, IT, IA and physical security concepts and
principles
Proven experience working in collaborative sessions demonstrating
strong verbal and written communication skills along with tactful
negotiation skills
Experience with Windows and Linux configuration STIG hardening
Experience with switch, router, and firewall configuration, Access
Control Lists, and security hardening
Experience with Active Directory configuration and security, and
GPO management
Expertise with Plans of Actions and Milestones (POA&M)
management
Subject Matter Expertise of the Risk Management Framework (RMF)
Preferred Qualifications
Current DHS or TSA Security Suitability
M.S. in Information Systems or related field
Consulting environment experience
Experience with DHS CSAM system
Expertise in identifying security requirements specific to an
information technology (IT) system in all phases of the system life
cycle.
Expertise in CyberSecurity Asset Management
Expertise in evaluating system and application security threats and
vulnerabilities
Experience with DHS MD 4300A Security Controls and Security
Assessment Process
Experience with Nessus, WebInspect, AppDetective, and other
vulnerability detection tools
Experience with DISA Security Technical Implementation Guides
(STIGs), implementation SCAP Compliance Checker (SCC) and STIG
Viewer.
Experience with Network security tools Wireshark and Burp Suite
Knowledge of Personally Identifiable Information (PII) data
security standards.
Experience with Splunk SIEM
Experience with End Point Protection Tools
Experience with Unix/Linux, Visual Basic, PowerShell, and other
scripting.
Knowledge of penetration testing principles, tools, and
techniques.
Experience with Cloud Architectural Concepts & Design
Requirements.
Experience with Cloud Data Security
Experience with Cloud Platform & Infrastructure Security
Experience with Cloud Application Security
Experience with Cloud Environment Operations
Experience with Legal, Compliance, and U.S. Government Policy for
the Cloud Environment
Experience with Intelligence Community and/or FedRAMP Cloud hosting
environments
Experience with reviewing Static Application Security (SAST)
Reports
Military veteran with relevant IT and computer security experience
will be considered a plus.
Benefits: Live an Extraordinary Life
We care about your well-being, not just on the job. Battelle offers
comprehensive and competitive benefits to help you live your best
life.
Balance life through a compressed work schedule: Most of our team
follows a flexible, compressed work schedule that allows for every
other Friday off-giving you a dedicated day to accomplish things in
your personal life without using vacation time.
Take time to recharge: You get paid time off to support work-life
balance and keep motivated.
Prioritize wellness: Stay healthy with medical, dental, and vision
coverage with wellness incentives and benefits plus a variety of
optional supplemental benefits.
Better together: Coverage for partners, gender-affirming care and
health support, and family formation support.
Build your financial future: Build financial stability with an
industry-leading 401(k) retirement savings plan. For most
employees, we put in 5 percent whether you contribute or not, and
match your contributions on top of that.
Advance your education: Tuition assistance is available to pursue
higher education.
Flexible work arrangements: You have options for where you work and
when you work.
A Work Environment Where You Succeed
For brilliant minds in science, technology, engineering and
business operations, Battelle is the place to do the greatest good
by solving humanity's most pressing challenges and creating a
safer, healthier and more secure world.
You will have the opportunity to thrive in a culture that inspires
you to:
Apply your talent to challenging and meaningful projects
Receive select funding to pursue ideas in scientific and
technological discovery
Collaborate with world-class experts in an inclusive
environment
Nurture and develop the next generation of scientific leaders
Give back to and improve our communities
Vaccinations & Safety Protocols
Battelle may require employees, based on job duties, work location,
and/or its clients' requirements to follow certain safety protocols
and to be vaccinated against a variety of viruses, bacteria, and
diseases as a condition of employment and continued employment and
to provide documentation that they are fully vaccinated. If
applicable, Battelle will provide reasonable accommodations based
on a qualified disability or medical condition through the
Americans with Disabilities Act or the Rehabilitation Act or for a
sincerely held religious belief under Title VII of the Civil Rights
Act of 1964 (and related state laws).
Battelle is an equal opportunity employer. We provide employment
and opportunities for advancement, compensation, training, and
growth according to individual merit, without regard to race,
color, religion, sex (including pregnancy), national origin, sexual
orientation, gender identity or expression, marital status, age,
genetic information, disability, veteran-status veteran or military
status, or any other characteristic protected under applicable
Federal, state, or local law. Our goal is for each staff member to
have the opportunity to grow to the limits of their abilities and
to achieve personal and organizational objectives. We will support
positive programs for equal treatment of all staff and full
utilization of all qualified employees at all levels within
Battelle.
The above statements are intended to describe the nature and level
of work being performed by people assigned to this job. They are
not intended to be an exhaustive list of all responsibilities,
activities and skills required of staff members. No statement
herein is intended to imply any authorities to commit Battelle
unless special written permission is granted by Battelle's Legal
Department.
For more information about our other openings, please visit
www.battelle.org/careers
Keywords: Battelle, Charlottesville , Senior Information System Security Officer (ISSO), IT / Software / Systems , Charles City, Virginia
Click
here to apply!
|