Information Systems Security Officer (ISSO)
Woburn, Massachusetts, United States
Applications have closed
STR has an exciting opportunity for an ISSO that will be responsible for information system cybersecurity posture and support. In this dynamic position you will interface and collaborate with other Cybersecurity professionals, Security professionals, System Administrators, and engineering community, on compliance and configuration change management.
Responsibilities:
- Support the Information Systems Security Manager (ISSM) in maintaining Authority to Operate (ATO) approvals for several classified systems adhering to the Risk Management Framework (RMF)
- Assist the ISSM in monitoring/resolving Plan of Action and Milestones (POA&M) items and by performing periodic self-inspections, tests, and reviews of information systems to ensure that workstations/servers are operating as authorized/accredited
- Assist with the preparation and maintenance of security Assessment and Authorization (A&A) documentation such as: System Security Plan (SSP), Risk Assessment Report (RAR), Security Controls Traceability Matrix (SCTM), etc.
- Maintain day-to-day security posture and continuous monitoring of assigned information systems
- Ensure audit records and event logs are collected, reviewed, and documented
- Work with program personnel to include System Administrators to ensure audit functions are operating properly
- Perform security sustainment activities including (but not limited to): hardware change management, software change management, account management, media protection, user interface, file transfers, etc.
- Perform other tasks as assigned by manager/supervisor
Requirements:
- Active SECRET security clearance with ability to obtain a Top Secret clearance
- DoD 8570 IAM Level I certification (Security +CE) or the ability to obtain within 6 months upon being hired
- Two (2) to three (3) years of experience as an ISSO implementing and maintaining the following information system requirements: NISPOM Chapter 8, DCSA Assessment and Authorization Process Manual (DAAPM), Joint Special Access Program Implementation Guide (JSIG), and/or RMF
- Working knowledge of system functions, security policies, technical safeguards, and operational security measures
- Experience with Windows/Linux or similar operating environments
- Excellent communications skills
- Detail oriented and self-motivated
- Ability to effectively manage time and prioritize multiple projects
- Ability to work with people in a team environment and deal effectively with changing project priorities
- Strong customer service skills
All STR employees may be subject to COVID-19 vaccination requirement in response to Executive Order 14042 and accompanying Task Force Guidance, unless a medical or religious accommodation is formally approved by STR.
STR is a rapidly growing technology company with locations north of Boston, MA, Arlington, VA and near Dayton, OH. We specialize in advanced research and development for defense, intelligence, and national security, trying to understand how to protect our society: from stopping malicious botnet attacks, to understanding cyber vulnerabilities, providing next generation sensors, radar, sonar, communications, and electronic warfare to developing artificial intelligence algorithms and analytics to make sense of the complexity that is exploding around us.
STR is committed to creating a collaborative learning environment that supports deep technical understanding and recognizes the contributions and achievements of all team members. Our work is challenging, but you go home at night knowing that you pushed the forefront of technology and made the world a little safer. We recognize that the world is changing, that it is becoming more connected than ever before, making things change faster than before, and reshaping society in the process. We all want to understand this changing world and leave it better for our work.
STR is not just any company. Our people, culture, and attitude along with their unique set of skills, experiences, and perspectives put us on a trajectory to change the world. We can't do it alone, though - we need fellow trailblazers. If you are one, join our team and help to keep our society safe! Visit us at www.str.us for more info.
STR is an equal opportunity employer. We are fully dedicated to hiring the most qualified candidate regardless of race, color, religion, sex (including gender identity, sexual orientation, and pregnancy), marital status, national origin, age, veteran status, disability, genetic information, or any other characteristic protected by federal, state, or local laws.
If you need a reasonable accommodation for any portion of the employment process, email us at appassist@str.us and provide your contact info.
Pursuant to applicable federal law and regulations, positions at STR require employees to obtain national security clearances and satisfy the requirements for compliance with export control and other applicable laws.
Tags: Analytics Artificial Intelligence Clearance Compliance DAAPM DoD DoDD 8570 IAM Linux Monitoring NISPOM Risk assessment Risk Assessment Report Risk management SCTM Security assessment Security Clearance SRTM System Security Plan Top Secret Top Secret Clearance Vulnerabilities Windows
Perks/benefits: Career development Medical leave
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs