Information Systems Security Officer


Job Description
Job Description:
BAE Systems has an exciting opportunity for an Information System Security Officer (ISSO) on a large, multi-year program providing IT Services to the intelligence community. The ISSO is responsible for applying Information System (IS) security principles, practices, and procedures under the Risk Management Framework (RMF) to maintain compliance with U.S. Government security policy and associated standards.

The ISSO will support establishment, assessment, and authorization of a standalone development/test environment LAN. The ISSO will oversee continuous monitoring and maintain the ongoing security posture of the system. Additionally, the ISSO will work closely with Developers and Information System Security Engineers (ISSE) to support security control considerations in product/services development process. The ISSO will be the primary liaison between the program, the Cognizant Security Authority (CSA), and the BAE Systems industrial security program. The ISSO will be responsible for interpreting policies, developing program-specific procedures as needed, and supporting implementation of an operations security program.
*Occasional local and domestic travel may be required for work or training purposes - less than 10%.
CBLT
  • Create and maintain information security related documentation
  • Implement, test, maintain/update, and monitor security controls
  • Achieve and maintain Authorization to Operate (ATO) classified information systems
  • Coordinate with Cognizant Security Authority (CSA) representative
  • Oversee Continuous Monitoring program
  • Serve as a member of the Configuration Control Board (CCB)
  • Provide security related training and guidance to program management and staff
  • Brief program leadership
  • Maintain eligibility for personal security clearance
  • Perform other duties as assigned/required


Required Education, Experience, & Skills
The successful candidate must have previous experience with; classified information system security management, network and/or system administration, network and/or system engineering, and the RMF process. A successful candidate will have experience in the assessment/authorization and continuous monitoring of classified information systems. The candidate must also hold a Security Management or Information Technology related certification, such as CISSP.

Required Skills:
  • Current TOP SECRET clearance with Poly
  • Clear and accurate written communication
  • A DoD 8570.01M - IAM Level II certification or an IAM level 1 and certification in another category, e.g., IAT Level 1.
  • Understanding of NIST 800 series, CNSSI 1253, and related publications
  • Ability to perform risk assessment and risk management for classified information systems
  • Experience in drafting RMF and other security documentation
  • Experience in implementing and monitoring technical, administrative, and operational security controls
  • Ability to maintain organized and complete records
  • Ability to prioritize competing demands and complete tasks on schedule
  • Working knowledge of MS Office products, Word, Excel, PowerPoint, and Visio.



Preferred Education, Experience, & Skills
In addition to the required skills, a qualified candidate for this position will demonstrate a combination of training and hands-on experience in most of the operational and technical skills listed below:
  • Good interpersonal and communication skills
  • Previous experience working in the intelligence community
  • Familiarity with the Xacta application
  • Security Technical Implementation Guides (STIGs)
  • Information Assurance Vulnerability Alerts (IAVAs)
  • Security Content Automation Protocol (SCAP) Compliance Checker (SCC)
  • Cloud Security concepts
  • MS Windows Server - Group Policy Objects
  • MS Windows Server - Active Directory
  • MS Windows Server - System Administration
  • Reviewing MS Windows security event logs
  • Use of scanning tools and interpreting results
  • Security incident management
  • Working with hardware and software vendors


About BAE Systems Intelligence & Security
BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts - defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team-making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference.

Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do-from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels.

At BAE Systems, we celebrate the array of skills, experiences, and perspectives our employees bring to the table. For us, differences are a source of strength. We're laser-focused on high performance, and we work hard every day to nurture an inclusive culture where all employees can innovate and thrive. Here, you will not only build your career, but you will also enjoy work-life balance, uncover new experiences, and collaborate with passionate colleagues.