BAE Systems Information Systems Security Officer in McLean, Virginia
BAE Systems has an exciting opportunity for an Information System Security Officer (ISSO) on a large, multi-year program providing IT Services to the intelligence community. The ISSO is responsible for applying Information System (IS) security principles, practices, and procedures under the Risk Management Framework (RMF) to maintain compliance with U.S. Government security policy and associated standards.
The ISSO will support establishment, assessment, and authorization of a standalone development/test environment LAN. The ISSO will oversee continuous monitoring and maintain the ongoing security posture of the system. Additionally, the ISSO will work closely with Developers and Information System Security Engineers (ISSE) to support security control considerations in product/services development process. The ISSO will be the primary liaison between the program, the Cognizant Security Authority (CSA), and the BAE Systems industrial security program. The ISSO will be responsible for interpreting policies, developing program-specific procedures as needed, and supporting implementation of an operations security program.
*Occasional local and domestic travelmaybe required for work or training purposes less than 10%.
Create and maintain information security related documentation
Implement, test, maintain/update, and monitor security controls
Achieve and maintain Authorization to Operate (ATO) classified information systems
Coordinate with Cognizant Security Authority (CSA) representative
Oversee Continuous Monitoring program
Serve as a member of the Configuration Control Board (CCB)
Provide security related training and guidance to program management and staff
Brief program leadership
Maintain eligibility for personal security clearance
Perform other duties as assigned/required
Required Education, Experience, & Skills
The successful candidate must have previous experience with; classified information system security management, network and/or system administration, network and/or system engineering, and the RMF process. A successful candidate will have experience in the assessment/authorization and continuous monitoring of classified information systems. The candidate must also hold a Security Management or Information Technology related certification, such as CISSP.
Current TOP SECRET clearance with Poly
Clear and accurate written communication
A DoD 8570.01M - IAM Level II certification or an IAM level 1 and certification in another category, e.g., IAT Level 1.
Understanding of NIST 800 series, CNSSI 1253, and related publications
Ability to perform risk assessment and risk management for classified information systems
Experience in drafting RMF and other security documentation
Experience in implementing and monitoring technical, administrative, and operational security controls
Ability to maintain organized and complete records
Ability to prioritize competing demands and complete tasks on schedule
Working knowledge of MS Office products, Word, Excel, PowerPoint, and Visio.
Preferred Education, Experience, & Skills
In addition to the required skills, a qualified candidate for this position will demonstrate a combination of training and hands-on experience in most of the operational and technical skills listed below:
Good interpersonal and communication skills
Previous experience working in the intelligence community
Familiarity with the Xacta application
Security Technical Implementation Guides (STIGs)
Information Assurance Vulnerability Alerts (IAVAs)
Security Content Automation Protocol (SCAP) Compliance Checker (SCC)
Cloud Security concepts
MS Windows Server Group Policy Objects
MS Windows Server - Active Directory
MS Windows Server System Administration
Reviewing MS Windows security event logs
Use of scanning tools and interpreting results
Security incident management
Working with hardware and software vendors
Information Systems Security Officer
EEO Career Site Equal Opportunity Employer. Minorities . females . veterans . individuals with disabilities . sexual orientation . gender identity . gender expression