Information System Security Officer

Please review the job details below.

Summary

The Information System Security Officer (ISSO) is responsible for ensuring the appropriate operational security posture is maintained for accredited Information Systems (IS) in support of the Risk Management Framework (RMF) and the terms of the IS accreditation. This position works in close collaboration with Information System Security Engineers (ISSE), Information System Security Manger (ISSM), Information System Owner (ISO), Program Management (PM), Program Security, and Personnel Security. 

Duties & Responsibilities

• Performance of system, server, and workstation audits weekly. Preparation of weekly audit report on findings and anomalies.
• Processing User Account request and providing System Security Briefings before granting system access. Contribute to the continuous monitoring and protection of accredited information systems.
• Support the overall enterprise strategy for information security, technology risk management, and compliance.
• Participate in the evaluation of suspected security breaches, work with subject matter experts, and recommend corrective actions.
• Document any special security requirements identified as well as protection measures implemented to fulfill these requirements for the information contained in the IS.
• Ensure systems are operated, maintained, and disposed of in accordance with security policies,
• and procedures as outlined in the security authorization package.
• Coordinate any changes or modifications to hardware, software, or firmware of a system with the
• ISO and AO/DAO prior to the change for approval.
• Track and manage vulnerability mitigation plan for assigned IS.
• Develop and maintain training materials to educate managers, administrators, and users about the importance of system and data security, their roles in safeguarding information, and ways to observe, report, and implement changes in the environment to maintain system and data security.

Required Skills

This position requires a minimum of 2 years related IT or security experience with a Bachelor of Science or 6 years related IT or security experience.

• U.S. citizenship
• Existing security clearance (SECRET) and the ability to obtain Top Secret/SCI access
• Counterintelligence Polygraph required after award of SCI access
• Knowledge of Information Security or Information technology standards
• Experience with Risk Managed Framework (RMF)
• Familiarity with implementation of Government directives and policies derived from NIST, CNSSI, ICS, DoD, or other Government Regulatory compliance standards within a professional industry.
• Department of Defense Directive (DoDD) 8140 / 8570 AIM level I or higher Certification (CompTIA Security+ CE or equivalent certification)

Desired Skills

• Current Top Secret/SCI clearance with CI Polygraph
• Initiative driven attitude and a willingness to take on challenging tasks independently.
• Ability to multitask and prioritize projects, appropriately manage expectations, make difficult judgment calls and communicate complex issues in an easy-to-understand format.
• Knowledge of or experience administering accredited information systems.
• Knowledge of AWS, UNIX, and Windows system administration practices, access control, and auditing/logging procedures within an enterprise class environment.
• Introductory knowledge of network administration and security practices and procedures, including routine network auditing within an enterprise class environment.
• Experience with security related tools including ACAS (Tenable SC), Host Based Security Systems, log aggregation with Elastic and/or Splunk, and File Integrity Monitoring Software.
• Ability to prepare multiple types of documentation, policies, guides, communications, presentations, etc.
• Bachelor of Science in Computer Science or related degree or equivalent experience.

#LI-AE1

In support of pay transparency at Maxar, we disclose salary ranges on all of our U.S. job postings. We use geographic cost of labor as an input to develop market-driven ranges for our roles, and as such, each location where we hire may have a different range. To accommodate all locations, we have listed the bottom to the top of the possible range, and will share the target range for a specific location during the recruiting discussion. Individual pay will be competitive based on a candidates unique set of knowledge, skills, and geographic diversity, with earnings potential commensurate with experience. The range for this position is:

We offer a comprehensive package of benefits including paid time off, health and welfare insurance, and 401(k) to eligible employees. You can find more information on our benefits at: https://www.maxar.com/careers/benefits

This position will be posted for a minimum of three business days, and will be posted until a qualified candidate has been identified for hire. 

Maxar employees must follow all applicable Maxar policies and COVID-19 requirements as well as those of Maxar customers and third parties. Individual job requirements may vary, and Maxar reserves the right to modify its policies and requirements as it deems appropriate in accordance with applicable law.

Maxar Technologies values diversity in the workplace and is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.