Information System Security Officer (Isso)

Overview

The Information System Security Officer (ISSO) position is responsible for supporting the implementation, assessment, and monitoring of security requirements across multiple Electric Boat (EB) Information Systems (IS) supporting the U.S. Navy. This position reports directly to the Chief of Cybersecurity. The successful candidate must possess sufficient understanding, knowledge, and experience to ensure EB ISs are operated and maintained in compliance with all policies and procedures required by the DFARS 252.204-7012, and National Institute of Standards and Technology [NIST] Special Publications [SP] 800-171 (NIST SP 800-171). This position requires a balance of technical knowledge and experience, with strong documentation and reporting skills. Responsibilities include:

• Developing and maintaining security plan documents (hardware and software baselines, diagrams, user lists)

• Reviewing, processing, and tracking configuration management requests and risk assessments

• Processing user agreement forms; ensuring users complete necessary training and meet requirements for access

• Developing and maintaining system specific policies and procedures

• Working with system/network administrators to verify Operating System (OS) and network device configurations, and ensure compliance with other technical requirements and configurations

• Monitoring and analyzing user and system activity

• Monitoring compliance with vulnerability management requirements

• Supporting incident response activities

• Identifying and reporting areas of non-compliance, and compliance gaps

• Working closely with the Information System Security Manager (ISSM), as well as other system stakeholders

• Providing guidance and support on security requirements and implementation

• Supporting internal and external inspections and assessments

• Supporting system assessment, authorization, and continuous monitoring efforts

Qualifications

Requirements:

• U.S. Citizenship

• Ability to obtain and maintain a DoD SECRET clearance

• Minimum of A.S. Degree (or higher) in Cybersecurity, Information Technology (IT) or Equivalent, or related certifications OR a minimum of a high school degree and 1+ years working experience as an IT Administrator or related experience

• Working knowledge of computer networking concepts

• Proficient with Windows and/or Linux OSs

• Internal candidates must be from organizations outside of operations (Casciano/Gabriel)

Preferred Qualifications:

• 5+ years working experience as an ISSO, IT Administrator or related experience, and related A.S. Degree (or higher)

• Professional Cybersecurity certifications (e.g. Security+, Network+, CISSP)

• Working knowledge of the DFARS 252.204-7012 and NIST SP 800-171 or NIST SP 800-53 Controls

• Experience monitoring and analyzing user and system activity

• Experience with monitoring security relevant applications (e.g. audit collection, vulnerability management, Security Information Event Monitoring (SIEM))

Skills

• Strong interpersonal, communication, organizational, and time management skills

• Ability to work independently, and collaboratively as part of a multi-functional team in a fast paced and challenging environment

• Strong documentation development and management skills