Colorado Technology Jobs

Colorado Jobs

Job Information

Sierra Nevada Corporation Information Systems Security Officer (ISSO) III in Centennial, Colorado

The Information Systems Security Officer (ISSO) is responsible forconducting Systems Security Engineering activities throughout the acquisitionlifecycle ensuring the highest quality of Cybersecurity/InformationAssurance (IA) solutions for SNC and supported customers. The ISSO'sprimary focus is ensuring the confidentiality, integrity, and availabilityof systems. The ISSO closely collaborates with the system owners,administrators, engineers, and program managers to ensure cybersecuritycontrols are effectively implemented throughout the system lifecycle. The ISSOis a vital contributor within SNC's highly dynamic and fast-paced environment.PRIMARY RESPONSIBILITIES INCLUDE:Support the ISSM and Cybersecurity/IA efforts by establishing or validatingthe system boundary in describing the IS, its functions, information typesoperating environments, and security requirementsTeam with SNC, customer, partner, and Authorization Officials (AO)to prepare systems for Assessment and Authorization (AandA) in accordancewith established NISPOM, RMF for DOD IT, ICD 503, JSIG and NIST guidelinesCreate and Maintain RMF AandA artifacts: Security Plan, Plan of Action andMilestones (POAandM), Software/Hardware Inventory, Networkdiagrams, INFOSEC Policies and Procedures, Risk Assessment Report,Security Assessment Plan and Report; Contingency Plan, Incident ResponsePlan, and Configuration ManagementEmploy best practices when implementing security requirements within systemsincluding software engineering methodologies, system/security engineeringprinciples, secure design, secure architecture, and secure coding techniquesConduct security control assessments; review the adequacy of the securitycontrols and their ability to protect the system and its information; tailorthe security controls to ensure complianceCoordinate the system security related activities with ISO's, ISSM's and CCP'sRepresent IA in the configuration management process; provide guidance inany acquisition/development activities that impact system securityPlan and conduct annual and/or ad hoc vulnerability scanning and securitycontrol assessments at customer sites to ensure compliance with AuthorizingOfficial requirements (Continuous monitoring)Read, interpret, and implement Cybersecurity/IA regulations andrequirements; develop and maintain managerial, operational, andtechnical Cybersecurity/IA skillsetCollaborate with security managers (both corporate and local), otherSSE's and SSM's to define, improve, implement and maintain informationsecurity policies, strategies, and proceduresInterface with company and customer staff at all levelsPeriodic travel to SNC, customer and partner facilities (CONUS) insupport of programPunctuality to work each day and prepared to work scheduled work hours orlonger as neededOther duties as assignedEDUCATION/EXPERIENCE/SKILLS REQUIRED:Requires a BS in related field *Relevant work experience as a NetworkAnalyst/Administrator/Engineer, SystemsAnalyst/Administrator/Engineer, IT Analyst/Administrator, SoftwareEngineer etc may substitute for required education.DoD 8570/8140 compliant: CAP and/or other equivalent certification(desired) *Required within 6 months of hire. Cisco, Microsoft,Linux, or other technical certifications a plusExperience in supporting Information Technology (IT) within a classifiedenvironmentExtensive experience with the following tools: Splunk or ELK, ACAS /Nessus, HBSS, eMASS or Xacta (desired)Knowledge of technical standards relating to systems security; experienceadministering Linux, and Windows operating systems, experience withlarge-scale server systems, thin client architecture, systemvirtualization and other related peripheralsExperience with AandA requirements as outlined in the JSIG and NIST RMFComplete/thorough understanding of US Government Cybersecurity policiesAbility to balance cybersecurity requirements with SNC's mission, goals,and cultureStrong communication skills, strong critical thinking and problem solvingskills; self-mo

DirectEmployers