Information Systems Security Officer (ISSO)- SRI International- Menlo Park CA

Information Systems Security Officer (ISSO)- SRI International- Menlo Park CA
URL: http://sri.jobs/menlo-park-ca/information-systems-security-officer-isso/...
Responsibilities:

  • Develop/maintain C&A packages for classified information systems.
  • Prepare/analyze test results for development into a POA&M.
  • Provide information security support and technical security guidance in all phases of the system life cycle.
  • Perform software patch installation, antivirus updates, and conducting security self-reviews.
  • Ensure configuration management (CM) for security-relevant software, hardware, and firmware is maintained and documented.
  • Evaluate and obtain DAA authorization for new software, hardware, and firmware use before implementation on the system.
  • Identify security vulnerabilities and provide guidance on mitigating risks.
  • Initiate, with the ISSM approval, protective or corrective measures when a security incident or vulnerability is discovered.
  • Ensure that system recovery processes are monitored to ensure that security features and procedures are properly restored.
  • Perform system administration tasks to include desktop support, and network administration functions.
  • Ensure that all users have the requisite security clearances, authorization, and need-to-know, and are aware of their security responsibilities before creating new user accounts.

Requirements:

  • Bachelor's degree or equivalent preferred.  Combination of related industrial security experience will be considered. 
  • Possession of CISSP, and completion of appropriate USG-sponsored (DOD, DNI, etc.) ISSO/ISSM training courses desired.
  • Minimum of 6 years of C&A experience directly related to the NISPOM, DCID 6/3 and JFAN 6/3 accreditation processes and 3 years in system administration/desktop support.
  • Knowledge of RMF and ICD 503 practices desired.
  • Working knowledge of COMSEC equipment to include handling keying material and troubleshooting encryption devices.
  • U.S. Citizenship and able to obtain and maintain a Top Secret security clearance and pass DCID/JAFAN 6/4 eligibility.
  • Experience in the use of both Linux and Windows Operating systems, in physical and virtual environments.
  • Technical knowledge of computer and network hardware and software systems.
  • Specialized knowledge in areas such as security training and awareness, computer forensic investigations, systems security administration, data recovery and network security control, design and implementation, as well as facility and physical security requirements.

Interested: Forward your confidential resume to david@pilatiandassociates.com