MAG Aerospace
Information Systems Security Officer
MAG Aerospace, Fort Bragg, North Carolina, United States
Information Systems Security Officer
–
MAG Aerospace
Position Summary MAG is currently looking for an Information Systems Security Officer (ISSO) to provide a variety of services leveraging the Risk Management Framework (RMF) accreditation. Services are associated with validation, approval, and sustainment of cybersecurity accreditation packages. In this role, you will perform and analyze a range of ISSO activities and assist with the development and implementation of security policies. This position is located in Ft. Bragg, NC, supporting the Special Operations community.
Essential Duties And Responsibilities
Gather and translate customer requirements, interact with stakeholders from many areas, and lead efforts to ensure customer products and recommendations will meet customer information security policies in an ever-changing technical environment
Categorize the IT and the information processed, stored, and transmitted by the system based on an impact analysis due to a loss of Confidentiality, Integrity, and Availability (CIA) impacts
Select an initial set of baseline security controls for the Information System (IS) based on the security categorization; overlay tailoring and supplement the security control baseline as needed based on an organizational assessment of risk and local conditions
Assess the security control using the appropriate methods and procedures to determine the extent to which the controls are implemented correctly, operate as intended, and produce the desired outcome
Authorize the IS based on the determination of the risk to the organizational operations, organizational assets, or individuals resulting from the operation of the IS and the decision that this risk is acceptable
Monitor the security of the IS on a continuous basis including assessing control effectiveness, documenting changes to the system, conducting security impact analyses of the associated changes, and reporting the security status of the system to appropriate organizational officials on a regular basis
Review, prepare and update RMF authorization packages
Conduct assessments of information security controls to measure the effectiveness of controls and identify any gaps
Manage remediation efforts and report on the status of control deficiencies
Provide security expertise to business units and key stakeholders
Provide timely status updates and reporting on assessments and assigned projects
Requirements Minimum Requirements
In compliance with DoD Cyber Workforce 8570.01
Experience in Information Assurance / Cybersecurity, including development, integration, and implementation of cybersecurity and program protection standards for networking, computers, and custom applications
Thorough knowledge of the Department of Defense 8510.01 Risk Management Framework (RMF) for DoD Information Technology, DoD Instruction 8500.1 Cybersecurity, DoD Directive 8140.01, Cyberspace Workforce Management, NIST 800 Special Publications, Federal Information Processing Standards (FIPS), and knowledge of current authorization practices, particularly within the DoD
Experience in creating and maintaining the security configuration baselines for Windows and Linux platforms, networking equipment, cloud technologies, and custom applications (i.e., Minimum Benchmarks: CIS, STIGS)
Familiar with DIA assessments and accreditation documentation within the XACTA management platform
Familiar with eMASS - USSOCOM ENTERPRISE MISSION ASSURANCE SUPPORT SERVICES platform
Provide subject matter expertise, advice and assistance in the planning, implementation, and accreditation of technology and solutions
Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Management Level (IAM Level II). IAT Level II is also considered.
Experience
5+ years
Education
BS in Computer Science or Information Technology (or equivalent experience)
Desired Requirements
Ability to read, review, and consolidate ACAS scans, DISA STIGS, and Websense results
Excellent interpersonal skills, including the ability to work on multi-functional teams
Display detailed knowledge and understanding of multiple technology infrastructures
Ability to serve as a principal advisor on all matters, technical and otherwise, involving the security of an IS
Exhibit individual initiative to influence events and achieve goals. Be proactive and a self-starter, going beyond specific job responsibilities to ensure goals and achieved or exceeded
Travel as necessary for customer projects, technology expositions, and corporate meetings
Other Qualifications
US Citizenship and Possess an Active TS/SCI Clearance
Physical requirements for the job include the ability to work in an office and lab environment
Special Note The position is contingent upon candidate’s ability to meet physical and medical requirements as needed by the position; including compliance with all applicable federal, state, and local jurisdictional requirements. Government or customer site-specific requirements may include, but are not limited to, proof of full COVID-19 vaccination status, except in circumstances where a candidate is legally entitled to an accommodation.
Company Policy MAG Aerospace (MAG) is an Equal Opportunity/Affirmative Action Employer and is committed to Diversity and Inclusion. We encourage diverse candidates to apply to our positions. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. Click below for the “Know Your Rights
#J-18808-Ljbffr
–
MAG Aerospace
Position Summary MAG is currently looking for an Information Systems Security Officer (ISSO) to provide a variety of services leveraging the Risk Management Framework (RMF) accreditation. Services are associated with validation, approval, and sustainment of cybersecurity accreditation packages. In this role, you will perform and analyze a range of ISSO activities and assist with the development and implementation of security policies. This position is located in Ft. Bragg, NC, supporting the Special Operations community.
Essential Duties And Responsibilities
Gather and translate customer requirements, interact with stakeholders from many areas, and lead efforts to ensure customer products and recommendations will meet customer information security policies in an ever-changing technical environment
Categorize the IT and the information processed, stored, and transmitted by the system based on an impact analysis due to a loss of Confidentiality, Integrity, and Availability (CIA) impacts
Select an initial set of baseline security controls for the Information System (IS) based on the security categorization; overlay tailoring and supplement the security control baseline as needed based on an organizational assessment of risk and local conditions
Assess the security control using the appropriate methods and procedures to determine the extent to which the controls are implemented correctly, operate as intended, and produce the desired outcome
Authorize the IS based on the determination of the risk to the organizational operations, organizational assets, or individuals resulting from the operation of the IS and the decision that this risk is acceptable
Monitor the security of the IS on a continuous basis including assessing control effectiveness, documenting changes to the system, conducting security impact analyses of the associated changes, and reporting the security status of the system to appropriate organizational officials on a regular basis
Review, prepare and update RMF authorization packages
Conduct assessments of information security controls to measure the effectiveness of controls and identify any gaps
Manage remediation efforts and report on the status of control deficiencies
Provide security expertise to business units and key stakeholders
Provide timely status updates and reporting on assessments and assigned projects
Requirements Minimum Requirements
In compliance with DoD Cyber Workforce 8570.01
Experience in Information Assurance / Cybersecurity, including development, integration, and implementation of cybersecurity and program protection standards for networking, computers, and custom applications
Thorough knowledge of the Department of Defense 8510.01 Risk Management Framework (RMF) for DoD Information Technology, DoD Instruction 8500.1 Cybersecurity, DoD Directive 8140.01, Cyberspace Workforce Management, NIST 800 Special Publications, Federal Information Processing Standards (FIPS), and knowledge of current authorization practices, particularly within the DoD
Experience in creating and maintaining the security configuration baselines for Windows and Linux platforms, networking equipment, cloud technologies, and custom applications (i.e., Minimum Benchmarks: CIS, STIGS)
Familiar with DIA assessments and accreditation documentation within the XACTA management platform
Familiar with eMASS - USSOCOM ENTERPRISE MISSION ASSURANCE SUPPORT SERVICES platform
Provide subject matter expertise, advice and assistance in the planning, implementation, and accreditation of technology and solutions
Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Management Level (IAM Level II). IAT Level II is also considered.
Experience
5+ years
Education
BS in Computer Science or Information Technology (or equivalent experience)
Desired Requirements
Ability to read, review, and consolidate ACAS scans, DISA STIGS, and Websense results
Excellent interpersonal skills, including the ability to work on multi-functional teams
Display detailed knowledge and understanding of multiple technology infrastructures
Ability to serve as a principal advisor on all matters, technical and otherwise, involving the security of an IS
Exhibit individual initiative to influence events and achieve goals. Be proactive and a self-starter, going beyond specific job responsibilities to ensure goals and achieved or exceeded
Travel as necessary for customer projects, technology expositions, and corporate meetings
Other Qualifications
US Citizenship and Possess an Active TS/SCI Clearance
Physical requirements for the job include the ability to work in an office and lab environment
Special Note The position is contingent upon candidate’s ability to meet physical and medical requirements as needed by the position; including compliance with all applicable federal, state, and local jurisdictional requirements. Government or customer site-specific requirements may include, but are not limited to, proof of full COVID-19 vaccination status, except in circumstances where a candidate is legally entitled to an accommodation.
Company Policy MAG Aerospace (MAG) is an Equal Opportunity/Affirmative Action Employer and is committed to Diversity and Inclusion. We encourage diverse candidates to apply to our positions. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. Click below for the “Know Your Rights
#J-18808-Ljbffr