Cyber Security Information System Security Officer (ISSO) IRES - SSFB

Challenging Today.
Reinventing Tomorrow.
We're invested in you and your success.
Everything we do is more than just a project.
It's our challenge as human beings, too.
That's why we bring a thoughtful and collaborative approach to every one of our partnerships.
At Jacobs, we challenge the status quo and redefine how to solve the world's greatest challenges, transforming big ideas into intelligent solutions for a more connected, sustainable world.
Design your career with a company that inspires and empowers you to deliver your best work so you can evolve, grow and succeed – today and into tomorrow Your Impact: Description of Duties: The Cyber Security Information System Security Officer (ISSO) supports the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES) contract.
The candidate will: · Engineer systems to function with the required security features in place.
· Conduct periodic manual and automated scans and inspections to ensure compliance with the Exercises and Risk Management Framework (RMF) accreditations issued by the MDA Authorizing Official.
· Support to Information Assurance Vulnerability Management (IAVM) reporting requirements and ensuring security patches are installed, as appropriate.
· Manage System Security Plan documentation in eMASS and update the eMASS Plan of Actions and Milestones (POA&M) IAW RMF continuous monitoring requirements.
· Periodically conduct a complete review of each systems' RMF Control Compliance Indicators (CCI) and monitor corrective actions until all actions are closed.
· Apply cybersecurity principals to provide realistic configuration management solutions designed to enhance the cybersecurity posture.
· Understand the Risk Management Framework Certification and Accreditation process.
This position can be filled at Schriever SFB, Colorado Springs, CO.
This position is expected to pay $111,300 - $136,300 annually; depending on experience, education, and any certifications that are directly related to the position.
This position will be posted for a minimum of 3 days.
If a candidate has not been selected at that time, it will continue to be posted until a suitable candidate is selected or the position is closed.
Resumes, in month and year format, must be submitted with application in order to be considered for the position.
The selected candidate will be assigned as an employee for Jacobs or one of our teammate companies.
Jacobs health and welfare benefits are designed to invest in you, and in the things you care about.
Your health.
Your well-being.
Your security.
Your future.
Typical benefits offered include flexible work schedules and opportunities to work remotely, educational reimbursement, retirement benefits (401K match), employee stock purchase plan, health benefits, tax saving options, disability benefits, life and accident insurance, voluntary benefits, paid time off and paid holidays, and parental leave.
#cjpost Here’s What You’ll Need: Basic Requirements: Must have one of the following combinations of education and experience: HS Diploma (or GED) and 8 years of general experience; Associate’s degree and 6 years of general experience; Bachelor’s degree and 4 years of general experience; Master’s degree and 2 years of general experience · Must have 6 years of directly related experience · Must have 2 years of management or leadership experience.
· Must have current experience supporting the IRES contract.
· Must be willing to travel, not to exceed 10%, CONUS or OCONUS periodically to support Exercises and War-games systems cybersecurity deployment efforts or other team efforts · Must be familiar with Trellix/McAfee products, i.
e.
HBSS, ESS, ENS · Must have a current DoD 8570 IAT level II certification (Security+ CE) · Must have an active DoD Secret Security Clearance Desired Requirements: · Be able to thoroughly document work and adhere to DoD and MDA level enterprise processes & procedures · Have knowledge of BMDS, War-games and Exercises · Have knowledge of NIST 800-53 accreditation documentation and processes · Have experience with Multi-Factor technology (RSA and PKI); Common Criteria requirements; FIPS 140-2 standards; patch management; vulnerability management; Ports, Protocols, and Services Management.
· Be familiar with central log servers (SPLUNK or ArcSight) · Be familiar with DISA Security Technical Implementation Guides (STIG) · Have experience with SCCM, WSUS, and ACAS · Have knowledge of Windows 10 update and patch management process and procedures · Be familiar with Linux operating systems · Be familiar with the CVT process · Be familiar with CCRIs