Information Systems Security Officer (ISSO) - 00047808

The MITRE Corporation
Colorado Springs, CO
United States


Job Description
**Information Systems Security Officer \(ISSO\) \- 00047808**


Why choose between doing meaningful work and having a fulfilling life? At MITRE, you can have both\. That's because MITRE people are committed to tackling our nation's toughest challenges—and we're committed to the long\-term well\-being of our employees\. MITRE is different from most technology companies\. We are a not\-for\-profit corporation chartered to work for the public interest, with no commercial conflicts to influence what we do\. The R&D centers we operate for the government create lasting impact in fields as diverse as cybersecurity, healthcare, aviation, defense, and enterprise transformation\. We're making a difference every day—working for a safer, healthier, and more secure nation and world\. Our workplace reflects our values\. We offer competitive benefits, exceptional professional development opportunities, and a culture of innovation that embraces diversity, inclusion, flexibility, collaboration, and career growth\. If this sounds like the choice you want to make, then choose MITRE—and make a difference with us\.

Provides support for a system or enclave's information assurance program through security authorization activities in compliance with Risk Management Framework \(RMF\)\. Maintains operational security posture to ensure information systems \(IS\) security policies, standards, and procedures are established and followed\. Performs vulnerability/risk assessment analysis to support Assessment & Authorization \(A&A\)\. Provides configuration management \(CM\) for information system security software, hardware, and firmware\. Manages changes to system and assesses the security impact of those changes\. Prepares and reviews documentation to include System Security Plans \(SSPs\), Risk Assessment Reports, A&A packages, and Security Controls Traceability Matrix \(SCTM\)\.

Key Functions

+ Apply full range of Information Assurance \(IA\) policies, principals and techniques to maintain security integrity of information systems processing classified information\.

+ Maintain records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc\. to include system upgrades\.

+ Maintain operational security posture for an information system or program\.

+ Develop and maintain documentation for A&A in accordance with applicable policies, procedures, and operating instructions\.

+ Develop and update the system security plan and other IA documentation\.

+ Provide CM for security\-relevant information system software, hardware, and firmware\.

+ Assist with the management of security aspects of the information system and perform day\-to\-day security operations of the system\.

+ Provide support for a program, organization, system, or enclave's information assurance program\.


Required Qualifications

+ In accordance with DoD 8570\.01M, the selected individual must meet the requirements of an IAT Level II as a condition of employment\.

Preferred Qualifications

+ Experience with RMF, CNSSI 1253, NIST SP 800\-53, and NISPOM\.

+ Experience with Security Technical Implementation Guides \(STIGs\) and Security Content Automation Protocol \(SCAP\) Compliance Checker \(SCC\)\.

+ Knowledge of Information Assurance Vulnerability Alerts \(IAVAs\)\.

+ Knowledge and experience with Virtualization, Cross Domain Solutions, and Linux\.

Minimum Education/Experience

BS and 3 years related experience

**Job** IT Operations

**Primary Location** United States\-Colorado\-Colorado Springs

**This requisition requires a clearance of** Top Secret/SCI

**Travel** Yes, 10 % of the Time

**Job Posting** Jul 15, 2018, 11:00:00 PM

**Req ID:** 00047808