INFORMATION SYSTEMS SECURITY ANALYST (ISSE)

LOCATION: Hybrid; Dayton, OH

ELIGIBILITY: US Citizen

CLEARANCE: Successful Background Check Required. Ability to obtain Secret Clearance.

POSITION: Security Engineer-I

DESCRIPTION:

The ideal Information System Security Engineer (ISSE) candidate is a dynamic, highly motivated and well-organized Security Engineer with experience administering security policies and procedures on secure information systems.

RESPONSIBILITIES:

The ISSE requires flexibility, independent judgment and discretion in order to handle the identification, analysis and resolution of security-related matters. Candidate will work with senior members of the team to perform system or network designs that encompass multiple enclaves, to include those with differing data protection/ classification requirements. The candidate should have a firm understanding of computer systems and their cybersecurity implications. Candidate will use vulnerability management systems, automated security scanning tools, and system accreditation record systems.

Candidate must be able to grasp new concepts, facilitate information exchanges for data gathering, and collaborate with diverse audiences. Must follow established processes where applicable and establish and execute defensible processes where none are prescribed.

Candidate will provide security planning, assessment, risk analysis, and risk management support. Will also recommend system-level solutions to resolve security requirements and guide the development team in meeting the security posture requirements. Will also support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures. Must apply existing knowledge of IA policy, procedures, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments.

Functional Responsibilities include:

• Assist with the overall Security Program, reporting to the Senior ISSO and/or ISSM.
• Assist with information systems self-inspections.
• Prepare for and support inspections by customer base.
• Manage and maintain secure servers and workstations.
• Administer Windows operating systems/servers.
• Identify, recommend and implement updates and improvements to information systems.
• Update and maintain STIGs, CONOPS, POAMs to maintain approved information systems.
• Provide inputs to Plan of Action & Milestones (POAMs) as needed.
• Continuous monitoring, testing and validation of system controls.
• Identify information system vulnerabilities and implement corrective actions.
• Install and maintain operating system and software packages as well as required updates and patch management.
• Install and maintain system hardware.
• Administer backups, audits, virus scanning to information systems.
• Assist with weekly audits and maintenance.
• Provide inputs to information systems authorization packages as required.
• Log reports of media, changes to system, or other required logs.
• Implement and update security settings per STIG requirements.
• Validate security configurations with SCC and STIG Viewer.
• Provide inputs to RMF documentation.
• Research, document, and make recommendations to update and streamline security policies, processes, procedures and inspections.
• Assist Facility Security Officer as needed.
• Assist with preparing for and participating in DCSA and other customer security reviews.
• Provide insight to support Cybersecurity Maturity Model Certification (CMMC).
• Perform other related duties as assigned.

REQUIREMENTS:

• Security Clearance: A current Secret level government clearance or the ability to obtain one is required, and therefore all candidates must be a U.S. citizen.

REQUIRED SKILLS:

• Associate’s Degree in a technical discipline (i.e. Computer Science, Information Systems, Computer Engineering, etc.) or needs a total of 2 years of experience in lieu of degree.
• Certification required as outlined in DoD Directive 8570.01-M for Information Assurance Technician Certifications - compliance with IAT Level I, or obtain certification within 6 months of start date.
• A working knowledge of TCP/IP suite of protocols and services, computer architectures, and network topologies, distributed architectures and cloud-based systems for big data applications is required.
• Must have the ability to review and edit authorization documentation for completeness and accuracy in accordance with federal and DoD policy.
• Experience assessing use case and operational risk of integrated open source, and GOTS/COTS software components.
• The ability to work independently and as part of a team is needed. Must be able to interact well with others to complete work.
• Proactive personality with strong oral and written communication skills is required.
• Strong attention to detail is required.
• Strong organizational and administrative skills is required.
• Ability to multitask, managing multiple areas of responsibility/simultaneous projects running in parallel is required.
• Ability to work both independently and in a team environment is required.

DESIRED SKILLS:

• Experience as an ISSE with large multi-tiered programs
• Security or other foundational cybersecurity certification is highly desired.
• Experience implementing DoD system accreditation processes (e.g. NIST-RMF, FedRAMP).
• Experience with DISA STIGs and SRGs, vulnerability management systems, mitigation and compliance processes, and reviewing results from automated security scanning tools.
• Experience with NISPOM requirements.
• Working knowledge of NIST/CMMC policies.
• Experience with maintaining appropriate facility security databases including, but not limited to, NISS, DISS, eMASS, e-QIP, SWFT.
• Experience with Enterprise Mission Assurance Support Service (eMASS) and/or PEGA Workflow
• Knowledge of COMSEC operations and accountability.
• Familiar with Aircraft cybersecurity testing and Airworthiness safety programs