Cimarron
DSS Information System Security Officer (ISSO)
Cimarron, Colorado Springs, Colorado, United States, 80509
DSS Information System Security Officer (ISSO)
Cimarron is seeking a DSS Information System Security Officer (ISSO) to support the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES) contract at Schriever Space Force Base in the Colorado Springs, CO area. Key Duties: Develop and maintain required security authorization package artifacts on MDA-designated systems for SAP program authorizations. Create and implement policies, procedures, and control evidence for selected security controls. Collaborate with hardware engineers, software engineers, and test teams to develop, test, and deploy cyber tools that support compliance initiatives on new platforms. Assess and coordinate mitigation of system security threats and risks using DoD-approved tools (e.g., ACAS, Prisma, Trelix). Lead efforts in security planning, assessment, risk analysis, risk management, certification, and awareness activities for MDSEA systems. Prepare documentation and data in support of U.S. Government Assessment and Authorization (A&A) efforts to obtain new Cyber Security Authorizations to Operate (ATO). Manage records for assigned enclaves and ensure baseline systems meet mission requirements for operation, function, and cyber posture. Review and analyze system logs to identify performance or behavior anomalies, determine trends, and recommend proactive corrective actions. Coordinate tasks and problem-solving efforts with team members, customers, stakeholders, and leadership to ensure solutions are developed with minimal mission impact. Evaluate security vulnerabilities in various software and hardware platforms and recommend appropriate mitigations. Maintain proficiency in cyber applications to effectively accomplish assigned tasks. Required Skills, Experience, and Education: Due to facility security requirements, only U.S. citizens are eligible for consideration. This position requires access to federal facilities. Candidates must possess a valid, unexpired Real ID-compliant drivers license or state-issued identification card at the time of hire. Active Top Secret clearance (or higher). Ability to obtain a SCI clearance. 8 or more years of general, full-time work experience. 4 or more years of directly related work experience. 1 or more years of experience working in a management or leadership position. Current DoD 8570 IAT Level II Certification (ex., Security+). Experience with the Joint Special Access Program Implementation Guide (JSIG). Experience in Risk Management Framework (RMF) accreditation and authorization (A&A) processes, including development of standard Body of Evidence (BoE) packages. Experience delivering technical briefings to executive-level personnel. Excellent verbal, written, interpersonal, and teamwork skills. Ability to prioritize and perform work in a highly complex environment. Desired Skills, Experience, and Education: Active TS/SCI clearance. Experience in defining cyber architecture, and then engineering and implementing that architecture. Familiarity with the System Development Life Cycle (SDLC). Familiarity with project management principles. Experience with agile system development and DevSecOps tools and processes. Ability to conduct research and develop white papers on security and other applicable topics. Knowledge of container scanning vulnerability tools (e.g., JFrog Xray, Prisma). Experience with cyber compliance tools such as ACAS, Trelix, Prisma, and Elastic. Active DoD 8570 IAT Level III or IAM Level II certification (e.g., CISSP, CISM, CCISO). Business Profile: Cimarron is a global solutions company with a strategic partnering approach to satisfying customer-driven requirements. We ensure customer success with a modern approach and experienced leadership. Driven by an entrepreneurial spirit, Cimarron is fueled by highly skilled employees, developing new innovative technologies, and delivering superior products and services. We believe in recognizing employees worth by offering competitive salaries and benefits, including health, dental, and vision insurance, 401(k) contributions, educational reimbursement, and much more. From company communication through Company-wide information meetings led by our President and CEO, to an Awards program designed to recognize our amazing employees and their accomplishments, you will not only feel like you are a part of a team, you will be a valued member of the Cimarron family. Cimarron is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or any other characteristic protected by federal, state, or local law.
Cimarron is seeking a DSS Information System Security Officer (ISSO) to support the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES) contract at Schriever Space Force Base in the Colorado Springs, CO area. Key Duties: Develop and maintain required security authorization package artifacts on MDA-designated systems for SAP program authorizations. Create and implement policies, procedures, and control evidence for selected security controls. Collaborate with hardware engineers, software engineers, and test teams to develop, test, and deploy cyber tools that support compliance initiatives on new platforms. Assess and coordinate mitigation of system security threats and risks using DoD-approved tools (e.g., ACAS, Prisma, Trelix). Lead efforts in security planning, assessment, risk analysis, risk management, certification, and awareness activities for MDSEA systems. Prepare documentation and data in support of U.S. Government Assessment and Authorization (A&A) efforts to obtain new Cyber Security Authorizations to Operate (ATO). Manage records for assigned enclaves and ensure baseline systems meet mission requirements for operation, function, and cyber posture. Review and analyze system logs to identify performance or behavior anomalies, determine trends, and recommend proactive corrective actions. Coordinate tasks and problem-solving efforts with team members, customers, stakeholders, and leadership to ensure solutions are developed with minimal mission impact. Evaluate security vulnerabilities in various software and hardware platforms and recommend appropriate mitigations. Maintain proficiency in cyber applications to effectively accomplish assigned tasks. Required Skills, Experience, and Education: Due to facility security requirements, only U.S. citizens are eligible for consideration. This position requires access to federal facilities. Candidates must possess a valid, unexpired Real ID-compliant drivers license or state-issued identification card at the time of hire. Active Top Secret clearance (or higher). Ability to obtain a SCI clearance. 8 or more years of general, full-time work experience. 4 or more years of directly related work experience. 1 or more years of experience working in a management or leadership position. Current DoD 8570 IAT Level II Certification (ex., Security+). Experience with the Joint Special Access Program Implementation Guide (JSIG). Experience in Risk Management Framework (RMF) accreditation and authorization (A&A) processes, including development of standard Body of Evidence (BoE) packages. Experience delivering technical briefings to executive-level personnel. Excellent verbal, written, interpersonal, and teamwork skills. Ability to prioritize and perform work in a highly complex environment. Desired Skills, Experience, and Education: Active TS/SCI clearance. Experience in defining cyber architecture, and then engineering and implementing that architecture. Familiarity with the System Development Life Cycle (SDLC). Familiarity with project management principles. Experience with agile system development and DevSecOps tools and processes. Ability to conduct research and develop white papers on security and other applicable topics. Knowledge of container scanning vulnerability tools (e.g., JFrog Xray, Prisma). Experience with cyber compliance tools such as ACAS, Trelix, Prisma, and Elastic. Active DoD 8570 IAT Level III or IAM Level II certification (e.g., CISSP, CISM, CCISO). Business Profile: Cimarron is a global solutions company with a strategic partnering approach to satisfying customer-driven requirements. We ensure customer success with a modern approach and experienced leadership. Driven by an entrepreneurial spirit, Cimarron is fueled by highly skilled employees, developing new innovative technologies, and delivering superior products and services. We believe in recognizing employees worth by offering competitive salaries and benefits, including health, dental, and vision insurance, 401(k) contributions, educational reimbursement, and much more. From company communication through Company-wide information meetings led by our President and CEO, to an Awards program designed to recognize our amazing employees and their accomplishments, you will not only feel like you are a part of a team, you will be a valued member of the Cimarron family. Cimarron is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or any other characteristic protected by federal, state, or local law.