Information Systems Security Officer (ISSO)
SUMMARY: The Systems Administrator (Sys Admin) / Information Systems Security Officer (ISSO) is responsible for conducting Systems Security activities throughout the RMF Authorization process ensuring the highest quality of Cybersecurity/Information Assurance (IA) compliance. The Sys Admin/ISSO closely collaborates with the FSO, ISSM and program managers to ensure cybersecurity controls are effectively implemented. The Sys Admin/ISSO is a vital contributor within SNC s highly dynamic and fast-paced environment. PRIMARY RESPONSIBILITIES INCLUDE: Administrator for Windows 7/10 workstations operating in peer-to-peer networks as well as Windows Server 2016 domain-based networks Troubleshoot and/or replace basic system components such as computer device power supply, hard drive, CDROM drive, motherboard, network interface card, keyboard, mouse, common access card reader, telephones/fax devices and other components, including peripherals Provide system administrative support as required such as; Account creation, modification and deletion, granting/revoking network access, managing file permissions. Create, modify, diagnose and resolve account requests/problems with PKI authentication Provide at-the-desk diagnosis/resolution of end-user requests/problems in a customer service oriented, team environment Provide support for applications such as the following: MS Office, Internet Explorer, MS Visual Studio, and various other Windows applications Experience with network operating systems like Cisco and Dell Perform Domain level administration in a Windows Server 2016 environment Troubleshooting, configuration, and repair for server, network, infrastructure, file shares, and other infrastructure issues Updating to new systems, as well as support on current systems by tuning performance, allocating storage space, and implementing critical system patches Maintain and Configure VMware vSphere ESXi environment Optimize operations for multiple standalone and networked workstations, ensuring availability, reliability, and integrity of computer systems for continued mission accomplishment Provide solutions and resolve complex software, hardware and network malfunctions to minimize interruption to the customers and minimizes mission delays Identify applicable DISA STIGs, and track and report compliance with ACAS and SCC scanner Perform auditing, malware detection, and vulnerability scanning of all Information Systems (IS) Team with SNC, customer, partner, and Authorization Officials (AO) to prepare systems for Assessment & Authorization (A&A) in accordance with established NISPOM, RMF for DOD IT & NIST guidelines Create and Maintain A&A/RMF documentation: Security Plan, Plan of Action & Milestones (POA&M), Software/Hardware Inventory, Network diagrams, INFOSEC Policies and Procedures, Risk Assessment Report, Security Assessment Plan and Report; Contingency Plan, Incident Response Plan, and Configuration Management Conduct security control assessments; review the adequacy of the security controls and their ability to protect the system and its information; tailor the security controls to ensure compliance Read, interpret, and implement Cybersecurity/IA regulations and requirements; develop and maintain managerial, operational, and technical Cybersecurity/IA skillset ADDITIONAL RESPONSIBILITIES INCLUDE: Follow SNC policies, procedures and work instructions for all technical activities Punctuality to work each day and prepared to work scheduled work hours Flexible work hours if needed Occasional remote site travel a must Other duties as assigned EDUCATION/EXPERIENCE/SKILLS REQUIRED: BS in related field *Relevant work experience as a Network Analyst/Administrator/Engineer, Systems Analyst/Administrator/Engineer, IT Analyst/Administrator, Software Engineer etc may substitute for required education. 3+ years of related experience DoD 8570/8140 compliant: Security+ and/or other equivalent certification (desired) *Required within 6 months of hire. Cisco, Microsoft, Linux, or other technical certifications a plus Experience in supporting Information Technology (IT) within a classified environment Knowledge of technical standards relating to systems security; experience administering UNIX, Linux, and Windows operating systems, experience with large-scale server systems, thin client architecture, system virtualization and other related peripherals Experience with A&A requirements as outlined in the NISPOM, RMF for DOD & NIST RMF Understanding of US Government Cybersecurity policies Ability to balance cybersecurity requirements with SNC s mission, goals, and culture Strong communication skills, strong critical thinking and problem solving skills; self-motivated with ability to effectively prioritize multiple projects; ability to work with people in a team environment and deal effectively with changing project priorities Ability to manage time, make sound decisions, take independent action, analyze problems and provide focused solutions High degree of attention to detail IMPORTANT NOTICES: This position requires a current/active (in-scope) Secret US Security Clearance. US Citizenship status is required as this position needs an active US Security Clearance for employment. Non-US citizens may not be eligible to obtain a security clearance. The Defense Industrial Security Clearance Office (DISCO), an agency of the Department of Defense, handles and adjudicates the security clearance process. Security clearance factors include, but are not limited to, allegiance to the US, foreign influence, foreign preference, criminal conduct, security violations and drug involvement. To conform to US Government export regulations, applicant must be a US citizen, lawful permanent resident of the US, protected individual as defined by 8 USC 1324b(a)(3), or eligible to obtain the required authorizations from the US Department of State. #CJ Sierra Nevada Corporation is an Equal Opportunity Employer Minority / Female / Disability / Veteran, or any other protected status pursuant to applicable local, state or federal law, ordinance or regulation.