What are the responsibilities and job description for the Information System Security Officer (ISSO) position at Battelle?
Battelle delivers when others can’t. We conduct research and development, manage national laboratories, design and manufacture products and deliver critical services for our clients—whether they are a multi-national corporation, a small start-up or a government agency.
We recognize and appreciate the value and contributions of individuals with diverse backgrounds and experiences and welcome all qualified individuals to apply.
Job Summary
We are currently seeking an Information System Security Officer (ISSO). This position is located onsite in Arlington, VA and will support the Department of Homeland Security (DHS).
Battelle’s Critical Infrastructure Business Line group is seeking an Information System Security Officer (ISSO) to lead a security architecture and security authorization process (certification & accreditation) effort for the Department of Homeland Security and support the IT systems specific to Test & Evaluation (T&E). This position supports the Team Lead during the software development cycles to enhance test and evaluation capabilities and contribute to Battelle’s infrastructure, information assurance, IT security, and T&E process improvement initiatives.
Responsibilities
We care about your well-being, not just on the job. Battelle offers comprehensive and competitive benefits to help you live your best life.
For brilliant minds in science, technology, engineering and business operations, Battelle is the place to do the greatest good by solving humanity’s most pressing challenges and creating a safer, healthier and more secure world.
You will have the opportunity to thrive in a culture that inspires you to:
Battelle may require employees, based on job duties, work location, and/or its clients’ requirements to follow certain safety protocols and to be vaccinated against a variety of viruses, bacteria, and diseases as a condition of employment and continued employment and to provide documentation that they are fully vaccinated. If applicable, Battelle will provide reasonable accommodations based on a qualified disability or medical condition through the Americans with Disabilities Act or the Rehabilitation Act or for a sincerely held religious belief under Title VII of the Civil Rights Act of 1964 (and related state laws).
Battelle is an equal opportunity employer. We provide employment and opportunities for advancement, compensation, training, and growth according to individual merit, without regard to race, color, religion, sex (including pregnancy), national origin, sexual orientation, gender identity or expression, marital status, age, genetic information, disability, veteran-status veteran or military status, or any other characteristic protected under applicable Federal, state, or local law. Our goal is for each staff member to have the opportunity to grow to the limits of their abilities and to achieve personal and organizational objectives. We will support positive programs for equal treatment of all staff and full utilization of all qualified employees at all levels within Battelle.
The above statements are intended to describe the nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, activities and skills required of staff members. No statement herein is intended to imply any authorities to commit Battelle unless special written permission is granted by Battelle's Legal Department.
For more information about our other openings, please visit www.battelle.org/careers
We recognize and appreciate the value and contributions of individuals with diverse backgrounds and experiences and welcome all qualified individuals to apply.
Job Summary
We are currently seeking an Information System Security Officer (ISSO). This position is located onsite in Arlington, VA and will support the Department of Homeland Security (DHS).
Battelle’s Critical Infrastructure Business Line group is seeking an Information System Security Officer (ISSO) to lead a security architecture and security authorization process (certification & accreditation) effort for the Department of Homeland Security and support the IT systems specific to Test & Evaluation (T&E). This position supports the Team Lead during the software development cycles to enhance test and evaluation capabilities and contribute to Battelle’s infrastructure, information assurance, IT security, and T&E process improvement initiatives.
Responsibilities
- Support the Team Lead during the software development cycles to enhance test and evaluation capabilities.
- Contribute to Battelle’s infrastructure, information assurance, IT security, and T&E process improvement initiatives.
- Engage in advanced IA, IT security, and cybersecurity conferences, working groups, and training sessions, while partnering with research and development (R&D) organizations to establish requirements for creating and developing state-of-the-art security solutions. Assess and examine cutting-edge security technologies in development to enhance the organization’s security posture.
- Provide expert Cybersecurity and IA policy, risk and technical advisory services to IT executives
- Lead and participate in full lifecycle Security Authorization Processes (formerly known as certification and accreditation (C&A)) activities for mission critical applications
- Serve as the principal security advisor for APM TED designated information systems, ensuring compliance with security policies and procedures.
- Develop, maintain, and manage comprehensive system security authorization documentation, including POA&Ms, in accordance with DHS and TSA policies.
- Support Ongoing Authorization (OA) and Security Control Assessment (SCA) activities, ensuring timely completion and adherence to established schedules.
- Provide change management support using tools like Remedy and SharePoint and manage public key infrastructure (PKI) certificates for FISMA systems.
- Advise system owners on daily security compliance and ensure implementation of security controls throughout the IT system lifecycle.
- Complete Security Authorization (SA) documentation and support SA activities per NIST 800.37 standards, ensuring deliverables meet DHS performance metrics.
- Report IT security events/incidents, to the Security Operation Center (SOC) through email and phone, promptly as per DHS 4300 policy.
- Respond to Information System Vulnerability Management (ISVM) notifications and ensure compliance with the ISVM by the date prescribed by DHS.
- Conduct vulnerability analysis using tools like NESSUS and AppDetective, and support audits, privileged account audits, and review audit logs.
- Ensure timely submission of Continuous Monitoring scan data and completion of privacy documentation (PTA, PIAs, e-Authentication) in coordination with the TSA Privacy Office.
- Execute responsibilities as outlined in Security Authorization and Ongoing Authorization SOPs, attending monthly ISSO security training and implementing recommended actions.
- Bachelor’s degree in Information Systems or related field, with 5 years of experience in information assurance and IT security in addition to being a Certified Information Systems Professional (CISSP) or Master’s degree in related field with 2 years of experience or PhD.
- Expertise in managing Plans of Actions and Milestones (POA&M).
- In-depth knowledge of NIST 800-53 Rev5 controls and IT, IA, and physical security principles.
- Subject Matter Expert in the Risk Management Framework (RMF).
- Experience in Windows and Linux STIG hardening, and configuration of switches, routers, firewalls, and ACLs.
- Proficient in Active Directory security and GPO management.
- Practice the development and delivery of full life-cycle security technology solutions.
- Self-motivated with minimal supervision; strong organizational and time management skills.
- Strong written and verbal communication skills, with effective negotiation skills in a collaborative setting, along with excellent analytical, writing, and technical documentation skills.
- Travel required, up to 10%.
- Eligibility and willingness to obtain and maintain a Secret Clearance and TSA Suitability.
- Must be U.S. Citizen.
- Master’s degree in Information Systems or related field with 7 years of experience in information assurance and IT security in addition to being a Certified Information Systems Professional (CISSP).
- Experience in consulting environments and with DHS CSAM system.
- Expertise in identifying IT security requirements throughout the system life cycle.
- Proficiency in cybersecurity asset management and evaluating security threats and vulnerabilities.
- Familiarity with DHS MD 4300A security controls and assessment process.
- Experience with vulnerability detection tools such as Nessus, WebInspect, and AppDetective.
- Proficient in DISA STIGs, SCAP Compliance Checker, STIG Viewer, Wireshark, and Burp Suite.
- Knowledge of PII data security standards and experience with Splunk SIEM and end point protection tools.
- Understanding of penetration testing principles, tools, and techniques.
- Certified Cloud Security Professional (CCSP) with experience in cloud architecture, data security, platform security, application security, and operations.
- Familiarity with legal, compliance, and U.S. government cloud policies, including Intelligence Community and FedRAMP environments.
- Experience reviewing Static Application Security Testing (SAST) reports.
- Active DHS or TSA Suitability.
- Active Secret Clearance.
We care about your well-being, not just on the job. Battelle offers comprehensive and competitive benefits to help you live your best life.
- Balance life through a compressed work schedule: Most of our team follows a flexible, compressed work schedule that allows for every other Friday off—giving you a dedicated day to accomplish things in your personal life without using vacation time.
- Enjoy enhanced work flexibility, including a hybrid arrangement: You have options for where and when you work. Our Together with Flexibility model allows you to work 60% in-office and 40% remote, with Monday and Tuesday as common in-office days, dependent on team and position needs.
- Take time to recharge: You get paid time off to support work-life balance and keep motivated.
- Prioritize wellness: Stay healthy with medical, dental, and vision coverage with wellness incentives and benefits plus a variety of optional supplemental benefits.
- Better together: Coverage for partners, gender-affirming care and health support, and family formation support.
- Build your financial future: Build financial stability with an industry-leading 401(k) retirement savings plan. For most employees, we put in 5 percent whether you contribute or not, and match your contributions on top of that.
- Advance your education: Tuition assistance is available to pursue higher education.
For brilliant minds in science, technology, engineering and business operations, Battelle is the place to do the greatest good by solving humanity’s most pressing challenges and creating a safer, healthier and more secure world.
You will have the opportunity to thrive in a culture that inspires you to:
- Apply your talent to challenging and meaningful projects
- Receive select funding to pursue ideas in scientific and technological discovery
- Collaborate with world-class experts in an inclusive environment
- Nurture and develop the next generation of scientific leaders
- Give back to and improve our communities
Battelle may require employees, based on job duties, work location, and/or its clients’ requirements to follow certain safety protocols and to be vaccinated against a variety of viruses, bacteria, and diseases as a condition of employment and continued employment and to provide documentation that they are fully vaccinated. If applicable, Battelle will provide reasonable accommodations based on a qualified disability or medical condition through the Americans with Disabilities Act or the Rehabilitation Act or for a sincerely held religious belief under Title VII of the Civil Rights Act of 1964 (and related state laws).
Battelle is an equal opportunity employer. We provide employment and opportunities for advancement, compensation, training, and growth according to individual merit, without regard to race, color, religion, sex (including pregnancy), national origin, sexual orientation, gender identity or expression, marital status, age, genetic information, disability, veteran-status veteran or military status, or any other characteristic protected under applicable Federal, state, or local law. Our goal is for each staff member to have the opportunity to grow to the limits of their abilities and to achieve personal and organizational objectives. We will support positive programs for equal treatment of all staff and full utilization of all qualified employees at all levels within Battelle.
The above statements are intended to describe the nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, activities and skills required of staff members. No statement herein is intended to imply any authorities to commit Battelle unless special written permission is granted by Battelle's Legal Department.
For more information about our other openings, please visit www.battelle.org/careers
