Information Systems Security Officer (Government)

At&T Columbia , MD 21044

Posted 2 months ago

Seeking experienced Information System Security Officer to improve the availability and survivability of customer networks and protection of vital information from cyber adversaries. This position will involve Certification & Accreditation activities, cybersecurity threat awareness and reporting, participation in the development of cyber analysis growth and improvement opportunities, cyber analysis and extensive writing and briefing opportunities

Required Skills, Experience, and Education: The ideal candidate must have relevant networking experience (e.g.

TCP/IP stack, DNS, BGP, metadata, IDS/IPS) and be able to serve as a Subject Matter Expert in security event identification, threat analysis, and network vulnerability analysis and reporting. Candidates must have expertise in collecting and analyzing host-based (Windows, Linux, or Solaris) and network-based data, utilizing Computer Network Defense or forensic tools, gathering and interpreting information, performing Internet research, identifying mitigation strategies, and effectively communicating results. Should have demonstrated analytic ability to discover unknown, suspicious or exploitation activity and analyze exploitation opportunities and expertise to evaluate and recommend information security enhancements, product upgrades, and tools to ensure minimal exposures.

Prior experience with open source vulnerability tools such as nmap, autoscan, nessus, wireshark, snort, etc is desired. Security+, GCIA, CEH, CIH, or CISSP certification is required. Great communications skills, that include the ability to provide formal documentation of analysis and/or research results to include briefings, writing, and editing at a technical/professional level, are required.

Candidates should possess a bachelor's degree, as a minimum, in a related field such as math, science, computing, or engineering. A minimum of 5 years of relevant cybersecurity experience is required.

Required Clearance: TS/SCI; prefer DHS TS/SCI or Suitability

Desired: Desired candidates should be methodical and prolific writers with acute attention to detail.

Candidates should have a minimum of 3-5 years security incident handling expertise within a security operations center. Understanding of government Tiered security operations center roles and responsibilities and computer network defense playbooks or incident response plans related to security operations are desired. Candidate should have relevant networking experience (e.g.

TCP/IP stack, DNS, BGP, metadata, IDS/IPS) and be able to coordinate with other security teams in areas such as security event identification, known threat validation and analysis, and network vulnerability analysis and reporting. Security+, GCIA, CEH, CIH, or CISSP certification is desired. Security operations experience with HP Arcsight, Splunk, and Splunk Enterprise Security in the role of incident responder is desired.

Incident handling with 8-10 years security operations center expertise supporting customer-facing elements and internal security information management systems. Prior experience with open source vulnerability tools such as nmap, autoscan, nessus, Wireshark, snort, etc. is desired. Relevant cybersecurity experience with Department of Homeland Security, Department of Defense, or Federal Bureau of Investigation desired.

AT&T is an Affirmative Action/Equal Opportunity Employer and we are committed to hiring a diverse and talented workforce. EOE/AA/M/F/D/V

Job ID 1843192 Date posted 11/02/2018



See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Systems Security Officer (Isso)

Leidos

Posted 4 weeks ago

VIEW JOBS 10/16/2018 12:00:00 AM 2019-01-14T00:00 Job Description: The Information System Security Officer (ISSO) will provide configuration management (CM) for information system security software, hardware, and firmware. Manages changes to system and assesses the security impact of those changes. Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs). Supports security authorization activities in compliance with NSA/CSS Information System Certification and Accreditation Process (NISCAP), DoD Information Assurance Certification and Accreditation Process (DIACAP). Job duties include: * Assist in the evaluation of security solutions to ensure they meet security requirements for processing classified information * Assist with the CM for information system security software, hardware, and firmware * Assist with preparation and maintenance of documentation * Maintain records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc. to include system upgrades * Evaluate security solutions to ensure they meet security requirements for processing classified information * Propose, coordinate, implement, and enforce information systems security policies, standards, and methodologies * Maintain operational security posture for an information system or program * Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational IA posture for a system, program, or enclave * Develop and maintain documentation for C&A in accordance with ODNI and DoD policies * Develop and update the system security plan and other IA documentation * Provide CM for security-relevant information system software, hardware, and firmware * Assist with the management of security aspects of the information system and perform day-today security operations of the system * Plan and coordinate the IT security programs and policies * Administer the user identification and authentication mechanism of the Information System (IS) REQUIRED SKILLS/EDUCATION: * Typically requires BS degree and 12+ years of prior relevant experience or Masters with 10 - 13 years of prior relevant experience. May possess a Doctorate in technical domain * Current 8570 certification for IAM Level 1 or higher certification * Knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools. * Understanding of the Risk Management Framework (RMF), NIST, and ICD standards * Experience developing technical documentation for SSPs and successfully leading systems through achieving approvals for testing and operation (e.g. Interim Authority to Test (IATT) and Authority to Operate (ATO)). Experience with Computer/system security engineering * Microsoft Windows and UNIX experience * Must be able to work in a constantly changing regulatory environment with short, mid, and long term timelines for remediating any non-compliance * Must be able to work well within a team environment and able to adapt quickly to change * Good writing and verbal presentation skills * Active TS/SCI with Polygraph Clearance DESIRED SKILLS: * Experience with virtual machines * Information Assurance, Cyber Security, and Certification & Accreditation experience * Security hardening scripting/automation experience Leidos is a Fortune 500® information technology, engineering, and science solutions and services leader working to solve the world's toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company's 31,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $10.17 billion for the fiscal year ended December 29, 2017. (NYSE: LDOS) All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Leidos Columbia MD

Information Systems Security Officer (Government)

At&T