Job Description:
Aerojet-Rocketdyne, an L3Harris Technologies Company, is looking for an Information Systems Security Officer (ISSO) for Department of Defense networks and IT systems. The selected individual will perform technical security control assessments and baseline validations to identify vulnerabilities and control deficiencies as part of a continuous monitoring program. Will conduct System Administration (Linux/Windows) and Cybersecurity sustainment activities (hardware/software change management, account management, auditing, media protection, file transfers, etc.). In addition, will perform system self-inspections, audit log reviews, secure baselines, and continuous monitoring tasks. Executes DoD compliant cybersecurity policies and procedures for primary customer base.
Essential Functions:
- Perform technical security control assessments and baseline validations to identify vulnerabilities and control deficiencies as part of a continuous monitoring program
- System Administration (Linux/Windows) and Cybersecurity sustainment activities (hardware/software change management, account management, auditing, media protection, file transfers, etc.)
- Perform system self-inspections, audit log reviews, secure baselines, and continuous monitoring
- Interface with internal and external customers, program managers, engineers, etc
- Prepare and conduct general/privileged cybersecurity training and awareness
- Conduct actions related to cyber incident response, investigation, and resolution
- Develop, maintain, and execute DoD compliant cybersecurity policies and procedures for primary customer base
- Ability to obtain a US Security Clearance
Qualifications:
- Bachelor’s Degree and minimum 6 years of prior cybersecurity or cyber intelligence experience. Graduate Degree and a minimum of 4 years of prior cybersecurity or cyber intelligence experience. In lieu of a degree, minimum of 10 years of prior cybersecurity or cyber intelligence experience
Preferred Additional Skills:
- Active US Secret security clearance is preferred
- 1+ year of experience working with assessment & authorization processes to include risk management framework (RMF), DIACAP, NISPOM
- Prior ISSO experience
- DoD 8570.1 compliant certification (e.g. Security +, CISSP, etc.)or ability to attain within 6 months
- Communications security (COMSEC) experience
- Knowledge of NISPOM Chapter 8 and DAAPM requirements
- Active US government security clearance or ability to attain
- System administrator experience with operating systems: Microsoft Windows, Linux
- Experience with various information system security assessment/hardening tools - SCAP Compliance Checker, ACAS, Nessus
- Working knowledge of WAN/LAN, to include Cisco-based routers, switches, and firewalls
- Experience with NIST 800-53 implementation
- Prior Enterprise Mission Assurance Support Service (eMASS)
- Self-starter with ability to work independently
- Customer service orientation