Raytheon Intelligence and Information Services (IIS) – Cyber Security & Special Missions (CSM) has an immediate opening for Information System Security Officer (ISSO) to support the customer team. The ideal candidate for this job will be an experienced information security practitioner who is goal-oriented and strives to exceed expectations.
Location: Arlington VA
Job Description -
The ISSO will be responsible for system security planning, system/application compliance testing, project management, tracking and remediating findings, and maintaining and continuous improvement of documentation for communications web applications and the incident response team’s equipment. The ISSO must be an expert at developing strategic-level plans and have strong knowledge and experience in cybersecurity information technology and security applications.
Provide certification and accreditation (C&A) capabilities to the HIRT, NCATS, and other NCCIC lab environments, deployable field kits, and associated elements. This will enhance support through continuous monitoring and updating the systems security packages, to include:
a) Manage and track security project tasks, including but not limited to security controls development and implementation, security testing and remediation, compliance tracking, and documentation for management and auditing activities; tracking of lab and field kit assets.
b) Assist in the completion of the accreditation process, as applicable, and help maintain the lab’s accredited status as required by DHS Office of Cybersecurity & Communications (CS&C) Information System Security Manager (ISSM) Office for Authorization to Operate (ATO) This includes, but is not limited to the following:
a. Inputting security artifacts into the CS&C Xacta risk management and compliance system.
b. Assist in completion of Privacy Threshold Analysis (PTA) and Privacy Impact Assessment (PIA).
c. Assist in selecting, implementing, and auditing security controls, contingency plan, configuration management, etc. based on guidance documents such as NIST SP800-53rev4, NIST Federal Information Processing Standard (FIPS) Publication 199, DHS 4300A Sensitive Systems Handbook, etc.
d. Perform security assessment and risk analysis including log auditing and vulnerability scanning.
e. Maintain and assist in remediating tasks in Plan of Action and Milestones (POA&M).
c) Participate in meetings with stakeholders including but not limited to DHS OCIO personnel. NPPD Compliance officers, NPPD and CS&C Privacy officers, Public Affairs stakeholders, and CSC partner organizations who submit requirements and change requests.
d) Provide regular (weekly or more frequent) project management reports
e) Support the operations and maintenance (O&M) of lab environments and field kit assets.
f) Support regular updates to the lab and field kit technology by applying experience and demonstrated expertise in applying Agile engineering methodologies in a Federal environment.
g) Support the growth, expansion, and continuous modernization of the lab environment(s) and associated technologies.
Ability to, or knowledge of:
• Serve as an Information System Security Officer (ISSO); and
• Several of the following areas is required: Understanding of business security practices and procedures; current security tools available; hardware/software security implementation; different communication protocols; encryption techniques/ tools; familiarity with commercial products, and current lab infrastructure technology; and
• CND policies, procedures, and regulations; and
• Defense-in-depth principles and network security architecture; and
• Boundary protection and enclaving; and
• Authentication and access management technologies.
The position requires a Bachelor’s degree in a related discipline with a minimum of six (6) years directly related experience. Equivalent years of directly related experience may be considered in lieu of educational requirements.
REQUIRED Clearance: TS/SCI
This position requires a U.S. Person who is eligible to obtain any required Export Authorization. 130767
Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.