Information System Security Officer
Company: CAE Inc
Location: Arlington
Posted on: November 22, 2021
|
|
|
Job Description:
Role and ResponsibilitiesJob Title: Information System Security
OfficerJob ID: AS20211006-62595Job Location: Arlington
TexasSummaryThis position is for an Information System Security
Officer (ISSO) at the CAE USA facility in Arlington Texas. The ISSO
is responsible for the Cybersecurity program under the supervision
of the Information System Security Manager (ISSM) as stipulated by
various USG requirements including (but not limited to): The
National Industrial Security Program Operating Manual (NISPOM),
Joint SAP Implementation Guide (JSIG), ICDs/DCIDs and other related
documentation e.g. Baseline Technical Security Configuration
Standards, DCSA Authorization and Assessment Process Manual
(DAAPM), NIST & STIG Guidelines as well as customer/contract
specific Cybersecurity regulations. The ISSO is responsible for the
implementation and maintenance of Information System Security
policies, strategies, procedures and settings within the MT
classified environment.Components of the Cyber program include
Assessment and Authorization (A) activities (documentation
preparation, system configuration/validation, certification
testing, etc.), security sustainment activities (hardware change
management, software change management, account management, media
protection, user interface, file transfers, etc.), conducting
internal self-inspections, audit reviews and delivering information
systems security education and awareness training. This includes
the review and monitoring of System Security Plans, Information
System Profiles, network System Security Plans, Standard Operating
Procedures, POA and related addendums/attachments. This position
will also be responsible for conducting and or assisting with
investigations related to any information systems security
violation involving classified information. This position
interfaces with other MT Cyber team members, other security
disciplines (e.g. Industrial Security and Special Programs
Security, etc.), System Administrators, program personnel and USG
security representatives.Essential Duties and
ResponsibilitiesAssist program personnel at offsite locations to
ensure they meet USG certification requirements and are properly
trained to execute the cybersecurity program effectively and
maintain security complianceQualifications and Education
RequirementsIn-depth knowledge and experience with technical
configuration standards relating to information system security;
experience configuring Windows operating systems, experience with
server systems, thin client architecture, system virtualization and
other related peripheralsExtensive knowledge and experience with
certification/authorization requirements as outlined in the NISPOM,
RMF, ICD 503/DCID, JSIG, NIST RMF & STIG and other USG
IS/Security-related policiesKnowledge and experience with
configuration/certification and auditing/analysis of Windows,
Linux, Unix systemsExperience supporting various system
configurations (Stand Alone, Local Area Networks, Wide Area
Networks, Government, and Contractor connections)Experience with
Interconnected Security Agreements (ISA), Network Security Plans
(NSP), Memorandum of Agreement/Understanding (MOA/U) - Experience
in implementing Windows Active Directory Services, Group Policy, or
Linux LDAP Services.Applied experience with Windows PowerShell and
Linux Shell Scripting.Candidate must provide evidence of DoD 8570
compliant: CISSP, CISA, CISM, Sec + and/or other equivalent
Security Certification or obtain requisite certification within 6
months of hire dateExperience with security information and event
management (SIEM) and data loss prevention (DLP)
solutions.Experience with audit reviews such as: physical security,
network and application, password administration, file access
privileges, etc.Excellent communications skills, oral and
writtenDemonstrated strong critical thinking and problem solving
skillsSelf-motivated and possesses good written, verbal, listening
and presentation skills, particularly in documenting evaluation
resultsConfident personality with the ability to effectively
prioritize multiple projectsAbility to work with people in a team
environment and deal effectively with changing project
prioritiesCandidate must have demonstrated professional customer
service skillsAbility to balance information security requirements
with MT's mission, goals and culture is criticalPreferred SkillsTop
Secret/SCIAssociates Degree or greater in a STEM, Computer Science,
Information Technology and or Security related (e.g., Criminal
Justice) discipleSecurity Responsibilities Must comply with all
company security and data protection / usage policies and
procedures. Personally responsible for proper marking and handling
of all information and materials, in any form. Shall not divulge
any information, or afford access, to other employees not having a
need-to-know. Shall not divulge information outside company without
management approval. All government and proprietary information
will be accessed and stored electronically on company provided
resources. Other DutiesPlease note this job description is not
designed to cover or contain a comprehensive listing of activities,
duties or responsibilities that are required of the employee for
their job. Duties, responsibilities, and activities may change at
any time with or without notice.CAE USA Inc. is an EOE/AA employer
and gives consideration for employment to all qualified applicants
without regard to race, color, religion, sex, sexual orientation,
gender identity, national origin, disability or protected veteran
status. If you'd like more information about your EEO rights as an
applicant under the law, please click here EEO is the Law poster
.PAY TRANSPARENCY NONDISCRIMINATION PROVISION The contractor will
not discharge or in any other manner discriminate against employees
or applicants because they have inquired about, discussed, or
disclosed their own pay or the pay of another employee or
applicant. However, employees who have access to the compensation
information of other employees or applicants as a part of their
essential job functions cannot disclose the pay of other employees
or applicants to individuals who do not otherwise have access to
compensation information, unless the disclosure is (a) in response
to a formal complaint or charge, (b) in furtherance of an
investigation, proceeding, hearing, or action, including an
investigation conducted by the employer, or (c) consistent with the
contractor's legal duty to furnish information.#LI-MR1Position
TypeRegularCAE thanks all applicants for their interest. However,
only those whose background and experience match the requirements
of the role will be contacted.Equal Employment OpportunityAt CAE,
everyone is welcome to contribute to our success. With no
exception.As captured in our overarching value "One CAE", we're
proud to work as one passionate, boundaryless and inclusive team.At
CAE, all employees are welcome regardless of race, nationality,
colour, religion, sex, gender identity or expression, sexual
orientation, disability or age.The masculine form may be used in
this job description solely for ease of reading, but refers to men,
women and the gender diverse.
Keywords: CAE Inc, Arlington , Information System Security Officer, IT / Software / Systems , Arlington, Virginia
|
Click
here to apply!
|
