Jobs via Dice
Why choose between doing meaningful work and having a fulfilling life? At MITRE, you can have both. MITRE is a not‑for‑profit corporation chartered to work for the public interest, with no commercial conflicts to influence what we do. Our R&D centers serve the government in fields such as cybersecurity, healthcare, aviation, defense, and enterprise transformation, creating lasting impact in a safer, healthier, and more secure nation and world. MITRE offers competitive benefits, exceptional professional development, and a culture of innovation that embraces adaptability, collaboration, technical excellence, and partnership.
Department Summary The Cybersecurity Risk Management Department (R311) within the Global Security Services Division (R300) is seeking a Senior Information Systems Security Officer focused on classified environments. The candidate will support multiple sponsors by providing Information Assurance and Cybersecurity services specifically for classified systems, integrating security into large engineering projects and acquisition initiatives.
Roles & Responsibilities The selected candidate will protect information systems, networks, and computers from security threats, ensuring cyber security is baked into the design of operational environments. Responsibilities include performing security authorization activities, maintaining operational security posture, conducting vulnerability and risk assessments, providing configuration management expertise, coordinating with engineers, mentoring junior ISSOs, and consulting with other MITRE departments on cybersecurity concerns.
Lead the design and implementation of cybersecurity measures for classified systems, ensuring security is embedded throughout the system lifecycle.
Manage the Risk Management Framework (RMF) process, including creating and maintaining System Security Plans (SSPs), Risk Assessment Reports, and other security documentation.
Serve as the Information Systems Security Manager (ISSM) or Information Systems Security Officer (ISSO), maintaining operational security posture and ensuring compliance with policies, standards, and procedures.
Conduct vulnerability assessments, risk analysis, and continuous monitoring to strengthen the cybersecurity posture of classified environments.
Collaborate with system administrators, engineers, and stakeholders to mitigate risks and implement best practices.
Mentor and develop junior cybersecurity staff, fostering a culture of excellence and innovation.
Provide subject matter expertise to internal and external partners, supporting the security of advanced technologies.
Respond to cybersecurity assessments, improve risk ratings, and develop strategic plans for compliance.
Basic Qualifications
Minimum of 5 years of related experience with a B.S. in Computer Science; or 3 years with a Master’s degree; or a Ph.D.; or equivalent combination of education and work experience.
Active Top Secret clearance.
Experience implementing RMF, NIST SP 800‑53, STIGs, and SCAP Compliance Checker.
Hands‑on experience with tools such as eMASS and XACTA.
Knowledge of classified infrastructure and the A&A process.
Ability to communicate complex technical concepts clearly to both technical and non‑technical audiences.
Must meet DoD 8570.01M IAM Level III requirements.
5‑day on‑site requirement.
Preferred Qualifications
Experience leading cybersecurity initiatives in classified environments.
Knowledge of emerging IT and cybersecurity technologies.
Proven ability to advise senior leadership on risk levels, security posture, and policy changes.
Strong analytical and problem‑solving skills, with the ability to develop innovative solutions.
Experience mentoring junior staff and fostering a collaborative team environment.
Familiarity with insider threat programs and strategies for mitigating insider risks.
Expertise in conducting cybersecurity inspections, audits, and self‑assessments.
Clearance Requirements Top Secret (required at time of hire).
Work Location Type Onsite – required 5 days per week.
Commitment to Non‑Discrimination All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.
#J-18808-Ljbffr
Department Summary The Cybersecurity Risk Management Department (R311) within the Global Security Services Division (R300) is seeking a Senior Information Systems Security Officer focused on classified environments. The candidate will support multiple sponsors by providing Information Assurance and Cybersecurity services specifically for classified systems, integrating security into large engineering projects and acquisition initiatives.
Roles & Responsibilities The selected candidate will protect information systems, networks, and computers from security threats, ensuring cyber security is baked into the design of operational environments. Responsibilities include performing security authorization activities, maintaining operational security posture, conducting vulnerability and risk assessments, providing configuration management expertise, coordinating with engineers, mentoring junior ISSOs, and consulting with other MITRE departments on cybersecurity concerns.
Lead the design and implementation of cybersecurity measures for classified systems, ensuring security is embedded throughout the system lifecycle.
Manage the Risk Management Framework (RMF) process, including creating and maintaining System Security Plans (SSPs), Risk Assessment Reports, and other security documentation.
Serve as the Information Systems Security Manager (ISSM) or Information Systems Security Officer (ISSO), maintaining operational security posture and ensuring compliance with policies, standards, and procedures.
Conduct vulnerability assessments, risk analysis, and continuous monitoring to strengthen the cybersecurity posture of classified environments.
Collaborate with system administrators, engineers, and stakeholders to mitigate risks and implement best practices.
Mentor and develop junior cybersecurity staff, fostering a culture of excellence and innovation.
Provide subject matter expertise to internal and external partners, supporting the security of advanced technologies.
Respond to cybersecurity assessments, improve risk ratings, and develop strategic plans for compliance.
Basic Qualifications
Minimum of 5 years of related experience with a B.S. in Computer Science; or 3 years with a Master’s degree; or a Ph.D.; or equivalent combination of education and work experience.
Active Top Secret clearance.
Experience implementing RMF, NIST SP 800‑53, STIGs, and SCAP Compliance Checker.
Hands‑on experience with tools such as eMASS and XACTA.
Knowledge of classified infrastructure and the A&A process.
Ability to communicate complex technical concepts clearly to both technical and non‑technical audiences.
Must meet DoD 8570.01M IAM Level III requirements.
5‑day on‑site requirement.
Preferred Qualifications
Experience leading cybersecurity initiatives in classified environments.
Knowledge of emerging IT and cybersecurity technologies.
Proven ability to advise senior leadership on risk levels, security posture, and policy changes.
Strong analytical and problem‑solving skills, with the ability to develop innovative solutions.
Experience mentoring junior staff and fostering a collaborative team environment.
Familiarity with insider threat programs and strategies for mitigating insider risks.
Expertise in conducting cybersecurity inspections, audits, and self‑assessments.
Clearance Requirements Top Secret (required at time of hire).
Work Location Type Onsite – required 5 days per week.
Commitment to Non‑Discrimination All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.
#J-18808-Ljbffr