Information Systems Security Officer
Quantico, VA, USA | BAE Systems
Functions:Consulting - IT
Job Description:60 people have viewed this job
This is an ideal position for a current hands on ISSO / ISSE that enjoys supporting a unique program as a key person supporting a mission support network as a network security engineer and security analyst. The work involves supporting an Active Directory environment with physical and virtual servers, storage arrays, and Windows and Linux laptops/desktops. The daily routine includes checking and analyzing security and intrusion logs, updating Systems Security Plan and related documentation, updating IT security policies and procedures. Conduct an internal C&A/A&A for a unique isolated network. Identify potential threats, suspicious/anomalous activity, malware, etc. Candidate must have the ability to recommend IA hardening without losing agility.
The environment is fast moving supporting elite level professionals.
This position involves:
Application of current IA technologies to the architecture, design, development, evaluation, and integration of systems and networks to maintain system security.
Working closely with Government customers to ensure that the IA requirements are defined and implemented in a way that allows for the accreditation of the IA architecture.
Working with systems developers or commercial product vendors in the design and evaluation of state-of-the-art secure systems, networks, and database products and the use of methods such as encryption technology, vulnerability analysis, and security management.
Responsible for the integration of multiple methods into a cohesive system security perimeter and environment as well as execution of the policies and procedures necessary to monitor and maintain such an environment.
Typical Education & Experience
Typically a Bachelor's Degree and 6 years work experience or equivalent experience
Required Skills and Education
Current, Active Clearance
Can do attitude; strong verbal and written communications skills. Comfortable working in a fast paced environment
Experience conducting and supporting C&A/A&A
Experience and ability to implement equivalent of STIGS, ACLs, white lists, black lists
Experience and ability to complete security documentation with a concise clear writing style
Experience using Visio to create systems and network diagrams
Experience with desktop, laptop, server operating systems and applications and hardening
Experience hardening network components
Experience with Nessus and mitigating scanning reports
Experience implementing STIGs or equivalent
Experience administering Windows and Linux and VM environments
Preferred Skills and Education
CISSP, Security or related Security Certifications
RMF or other Risk Framework
NIST 800-53 and related publications