Information Systems Security Officer (ISSO)

Raytheon

Morrisville, NC
Industry
Qualifications
Benefits
Experience
Special Commitments
Apply
10,000+ Similar Jobs Thumbnail

This job is CONTINGENT upon funding, an open position, customer approval, completion of a favorable background investigation, and the ability to obtain and maintain a USPS sensitive clearance.

An experienced Information Systems Security Officer (ISSO) is needed to join the security team of a major nationwide organization, with thousands of sites, to continually improve its complex multi-protocol nationwide network.

This position would be located on site in Morrisville, NC.

  • Must have experience with Microsoft 365 and any secure large transfer technologies.

The ideal candidate for this job would have experience with

  • cloud expertise, and preferably the ability to teach
  • mobile experience, and cryptocurrency / block chain experience
  • SCADA, infrastructure protection, and / or engineering experience

Job responsibilities:

  • Serves as an Information Systems Security Officer (ISSO) and as a member of the leadership team of a major nationwide networked operation.
  • Provide guidance and support for system security by performing complete assessments of the system portfolio, determine priority of systems that need to be accredited per policy, and ensure prompt compliance.
  • Reviews system security packages and Accreditation status
  • Provides continuous security monitoring of assigned systems
  • Provide advice and insight into the overall management and evaluation of the system security posture.
  • Audit and enforce security policies and standards for the Federal Agency customer.
  • Assist in documentation and accreditation of systems governed by NIST standards and FISMA regulations.
  • Liaison with the CISO and other leaders
  • Contribute to policy implementation as it relates to COOP and DR
  • Ensure organization preparedness considers factors and goals in Federal Preparedness Circular 65 (FPC-65)
  • Ensure that Emergency Response Leadership is informed of relevant training and exercise activities and metrics
  • Coordinate across organization to ensure that all team members participate as needed
  • Work with Security Training and Exercise Leadership to ensure team members are prepared with appropriate action plans for DR/COOP
  • Provide customer with an end-to-end training and awareness capability including the development, deployment and analysis of security training across the organization
  • Ensure policy application and regulatory compliance leadership in accordance with Federal guidance, including FIPS Publication 200, NIST SP 800-18, SP 800-37, SP 800-53, SP 800-53A and SP 800-60
  • Supports continuous monitoring of Privacy concerns
  • Supports the following program areas, as required:
  • Risk Management
  • Security operations
  • Emergency Response
  • Disaster Recovery and Continuity of Operations
  • IT investigations, digital forensics, eDiscovery
  • Quality and Compliance
  • Threat Intelligence
  • Security Training and Exercise Management

Required Skills:

  • Must have one of the three skills sets below:
  • Cloud expertise, and the ability to teach
  • Mobile experience, and cryptocurrency/block chain experience
  • SCADA, infrastructure protection, and/or engineering experience
  • Must be eligible to obtain a sensitive clearance – Position of Public Trust – and may be required to obtain a higher security clearance.
  • Extensive experience with application of standards and guidelines, such as NIST SP 800-34
  • Experience with large organization networks
  • Experience with regulatory compliance, policy development, and policy enforcement
  • Direct experience performing security engineering, system integration, network engineering
  • Experience in the roles identified above
  • 4+ years of experience applying FISMA, PCI, or similar Information Assurance standards
  • Excellent communication and interpersonal skills
  • Years of direct experience managing Information Systems Security
  • 4+ years related experience for G08 level
  • 6+ years related experience for G09 level

Desired Skills:

  • Experience with cyber security development projects and programs for U.S. Government and/or commercial clients
  • Experience with process development and deployment
  • Excellent writing skills
  • Experience with three or more of the following:
  • Security COTS integration
  • Security Incident Event Management
  • Insider Threat Monitoring
  • Operating System Hardening
  • Vulnerability Assessment testing
  • Identification and Authentication schemes
  • Public Key Infrastructure and Identity Management
  • Cross Domain Solutions
  • Security engineering

Required Education:

Bachelor’s Degree in related field. In lieu of degree, two years of related work experience may be substituted for each year of degree level education.

Desired Certifications:

DODI 8570.1-M Compliance at IAT Level II; CISSP preferred 163358

Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

Read Full Description
Apply
Jobs at Raytheon
Similar Jobs

Discover Similar Jobs

Suggested Articles

Leaving Consulting: The Why, When, How and What For?
When You Should Leave a Job and Other Career Questions Answered
Astronauts Wanted
The Joy of B-Corps
What is a Unicorn Startup?
Managing a Software Career