The MITRE Corporation Information Systems Security Officers (ISSO) - 00048213 in McLean, Virginia
Information Systems Security Officers (ISSO) - 00048213
Why choose between doing meaningful work and having a fulfilling life? At MITRE, you can have both. That's because MITRE people are committed to tackling our nation's toughest challenges—and we're committed to the long-term well-being of our employees. MITRE is different from most technology companies. We are a not-for-profit corporation chartered to work for the public interest, with no commercial conflicts to influence what we do. The R&D centers we operate for the government create lasting impact in fields as diverse as cybersecurity, healthcare, aviation, defense, and enterprise transformation. We're making a difference every day—working for a safer, healthier, and more secure nation and world. Our workplace reflects our values. We offer competitive benefits, exceptional professional development opportunities, and a culture of innovation that embraces diversity, inclusion, flexibility, collaboration, and career growth. If this sounds like the choice you want to make, then choose MITRE—and make a difference with us.
Perform Information Systems Security Officer (ISSO) role and Information Systems Security Engineer (ISSE) functions and role. Provides support for a system or enclave's information assurance program through security authorization activities in compliance with Risk Management Framework (RMF). Maintains operational security posture to ensure information systems (IS) security policies, standards, and procedures are established and followed. Performs vulnerability/risk assessment analysis to support Assessment & Authorization (A&A). Provides configuration management (CM) for information system security software, hardware, and firmware. Manages changes to system and assesses the security impact of those changes. Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, A&A packages, and Security Controls Traceability Matrix (SCTM).
Internal Description (if different than External Description)
Perform Information Systems Security Engineer (ISSE) functions and role to bridge the gap between high level security policies/requirements and technical/operational implementation of requirements
Determine information security measures implementations for operational systems and systems under development.
Apply full range of Information Assurance (IA) policies, principals and techniques to maintain security integrity of information systems processing classified information
Maintain records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc. to include system upgrades.
Maintain operational security posture for an information system or program
Develop and maintain documentation for A&A in accordance with applicable policies, procedures, and operating instructions.
Develop and update the system security plan and other IA documentation
Provide CM for security-relevant information system software, hardware, and firmware
Assist with the management of security aspects of the information system and perform day-to-day security operations of the system.
Provide support for a program, organization, system, or enclave's information assurance program
- BS and 3 years related experience
- In accordance with DoD 8570.01M, the selected individual must meet the requirements of an IAT Level II as a condition of employment.
Experience with RMF, CNSSI 1253, NIST SP 800-53, and NISPOM
Experience with Security Technical Implementation Guides (STIGs)
Security Content Automation Protocol (SCAP) Compliance Checker (SCC)
Knowledge of Information Assurance Vulnerability Alerts (IAVAs)
Job Cyber Security
Primary Location United States-Virginia-McLean
This requisition requires a clearance of Top Secret/SCI
Travel Yes, 10 % of the Time
Job Posting Jul 16, 2018, 12:38:47 PM
Req ID: 00048213