Information Systems Security Officer

About Caribou Thunder

Caribou Thunder, LLC is a Woman Owned, HUBZone Certified, Native American Owned, SBA and SDB Certified global engineering services company, incorporated in 2006.

Caribou Thunder is a Global Service Provider supporting a wide variety of DoD, Space, and Intelligence programs with consistent growth since inception to over 100 associates and $10M in annual sales with solid performance in 35 states across the U.S. and 22 countries around the world. Caribou Thunder, LLC is an established Defense contractor with nearly 20 years of experience delivering engineering services worldwide.  We offer industry leading salaries, flexible work life balance, full range of benefits (career development and mentoring, PTO, medical, dental, vision, life insurance, disability insurance, and 401k match).  Caribou Thunder, LLC offers meaningful career opportunities within a true team-based environment, where each and every employee matters, contributing to a higher goal supporting National Security programs. 

Caribou Thunder, LLC is committed to hiring and maintaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer, making decisions without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, marital status, national origin, age, veteran status, disability, or any other protected class. United States citizenship is a requirement for all positions.

Information Systems Security Officer

Caribou Thunder

Location: Colorado Springs, CO

Requisition#: 0056

Date Posted: 8/19/2024

Salary: $100k - $150k

Security Clearance: Active Top Secret/SCI

Education: Bachelor’s degree (STEM)

Experience: 2 - 7 years of experience

Position Summary

Caribou Thunder is seeking a highly skilled Information Systems Security Officer to join our dynamic engineering team.

Complete Description

The ISSO is responsible for ensuring the appropriate operational security posture is maintained for an information system and as such, works in close collaboration with the ISSM and ISO. The position shall have the detailed knowledge and expertise required to manage the security aspects of an information system and, in many organizations, is assigned responsibility for the day-to-day security operations of a system.

Requirements

Responsibilities include but are not limited to the following:

· Develop physical or logical topologies for a system

· Assist the ISSM in meeting their duties and responsibilities

· Prepare, review, and update authorization packages

· Ensure approved procedures are in place for clearing, sanitizing, and destroying various types of hardware and media

· Conduct periodic reviews of information systems to ensure compliance with the security authorization package

· Coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM and AO/DAO prior to the change

· Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctly

· Ensure all IS security-related documentation is current and accessible to properly authorized individuals

· Ensure audit records are collected, reviewed, and documented (to include any anomalies)

· Attend required technical and security training (e.g., operating system, networking, security management) relative to assigned duties

· Execute the cyber security portion of the self-inspection, to include provide security coordination and review of all system assessment plans

· Identify cyber security vulnerabilities and assist with the implementation of the countermeasures for them

· Prepare reports on the status of security safeguards applied to computer systems

· Perform ISSO duties in support of in-house and external customers

· Conduct security impact analysis activities and provide to the ISSM on all configuration management changes to the authorization boundaries

· Conduct continuous monitoring activities for authorization boundaries under your preview

· Assist Department of Defense, National Agency and Contractor organizations with all RMF efforts