Information Systems Security Officer (ISSO)
Penn State University Park
Penn State University
Penn State is a major, public, research-I university serving Pennsylvania and the global community. Learn more about our undergraduate, graduate, and doctoral degree programs.CURRENT PENN STATE EMPLOYEE (faculty, staff, technical service, or student), please login to Workday to complete the internal application process. Please do not apply here, apply internally through Workday.
CURRENT PENN STATE STUDENT (not employed previously at the university) and seeking employment with Penn State, please login to Workday to complete the student application process. Please do not apply here, apply internally through Workday.
If you are NOT a current employee or student, please click “Apply” and complete the application process for external applicants.
JOB DESCRIPTION AND POSITION REQUIREMENTS:
We are seeking a self-motivated, customer service oriented, and quality conscious cybersecurity professional to join the Cyber and Information Security team at the Applied Research Laboratory (ARL) at Penn State University. ARL’s purpose is to research and develop innovative solutions to challenging scientific, engineering, and technology problems in support of the Navy, the Department of Defense (DoD), and the Intel Community (IC). This team helps protect ARL’s network and systems by providing proactive security measures, assessing and acting on risks, and ensuring compliance.
As an Information Systems Security Officer (ISSO), you will be responsible for ensuring the security and compliance of ARL's unclassified and classified networks. This is an excellent opportunity for people passionate about growing in the cybersecurity field and interested in contributing to high-impact projects in a collaborative, multi-disciplinary culture that values innovation, communication, and problem-solving.
ARL is an authorized DoD SkillBridge partner and welcomes all transitioning military members to apply.
You will:
Support the development, validation, and submission of security documentation, including information system security plans, security test and evaluation plans, certification and accreditation or authorization packages, and plans of action and milestones in support of compliance requirements
Assist in conducting and coordinating risk assessments of information systems across development, testing, production, and research environments as required by established or newly determined compliance/audit requirements
Conduct assessment and review systems and networks to identify where systems/networks deviate from acceptable configurations, enclave policy, and local policy
Aid in the development of training material related to security compliance and audit requirements for ARL employees
Perform technical tasks for networks and systems such as; vulnerability scanning, security/event log review, network analysis, security configuration review, and incident response as needed
This position can be filled at multiple levels, depending on your education and experience. Minimum requirements include an Associate’s degree or higher or an equivalent combination of education and experience. Additional experience and/or education are required for higher level positions. A Bachelor’s Degree in Cyber and Information Security, Information Technology, or Computer Science and two to four years of related experience is preferred.
Entry level required skills/experience areas include:
Exposure to Assessment and Authorization processes and Risk Management Framework (RMF)
Familiarity with NIST 800-53, NISPOM, NIST 800-171, Department of Defense Directives, and regulatory requirements
Exposure to certifying and accrediting systems and networks
Operational knowledge of security/event log auditing
Exposure to security plan development and/or continuous monitoring for compliance
Ability to obtain and maintain information security related certifications; Security+ or CISSP are the most ideal (but also includes CASP, GSEC, CISM)
Higher level required skills/experience areas include:
Current eligibility for access to classified information at the Secret level or higher and will be subject to a government background investigation to upgrade clearance eligibility
Assessment and Authorization processes and Risk Management Framework (RMF)
NIST 800-53, NISPOM, NIST 800-171, Department of Defense Directives, and regulatory requirements
Certifying and accrediting systems and networks
Operational knowledge of security/event log auditing
Security plan development and/or continuous monitoring for compliance
Ability to obtain and maintain information security related certifications; Security+ or CISSP are the most ideal (but also includes CASP, GSEC, CISM)
Preferred skills/experience areas include:
For entry level, current eligibility for access to classified information at the Secret level or higher and will be subject to a government background investigation to upgrade clearance eligibility
Policy and procedure development
Vulnerability scanning and mitigation utilizing Nessus, ACAS, or similar tool
Windows or UNIX/Linux operating system administration
TCP/IP network analysis and network/packet level examination tools such as tcpdump, or Wireshark
SEIM management or use for analysis, (Splunk, ELK, etc.)
VMWare and management of virtual machines
Definition and interpretation of audit requirements
Development and support of a certification test plans and continuous monitoring strategies
Your working location will be hybrid on-site/work from home, located in State College, PA. Questions related to flexible work should be directed to the hiring manager during the interview process. Occasional travel to satellite offices may be required.
ARL at Penn State is an integral part of one of the leading research universities in the nation and serves as a University center of excellence in defense science, systems, and technologies with a focus in naval missions and related areas.
You will be subject to a government security investigation, and you must be a U.S. citizen to apply. Employment with the ARL will require successful completion of a pre-employment drug screen.
ARL is committed to diversity, equity, and inclusion; we believe this is central to our success as a Department of Defense designated University Affiliated Research Center (UARC). We are at our best when we draw on the talents of all parts of society, and our greatest accomplishments are achieved when diverse perspectives are part of our workforce.
FOR FURTHER INFORMATION on ARL, visit our web site at www.arl.psu.edu.
**The proposed salary range may be impacted by geographic differential.**
The salary range for this position, including all possible grades is:
$56,200.00 - $102,300.00Salary Structure - additional information on Penn State's job and salary structure.
CAMPUS SECURITY CRIME STATISTICS:
Pursuant to the Jeanne Clery Disclosure of Campus Security Policy and Campus Crime Statistics Act and the Pennsylvania Act of 1988, Penn State publishes a combined Annual Security and Annual Fire Safety Report (ASR). The ASR includes crime statistics and institutional policies concerning campus security, such as those concerning alcohol and drug use, crime prevention, the reporting of crimes, sexual assault, and other matters. The ASR is available for review here.
Employment with the University will require successful completion of background check(s) in accordance with University policies.
EEO IS THE LAW
Penn State is an equal opportunity, affirmative action employer, and is committed to providing employment opportunities to all qualified applicants without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. If you are unable to use our online application process due to an impairment or disability, please contact 814-865-1473.
University Park, PATags: ACAS Audits CASP+ CISM CISSP Clearance Compliance Computer Science DoD ELK GSEC Incident response Linux Monitoring Nessus NISPOM NIST NIST 800-53 Risk assessment Risk management RMF Splunk System Security Plan TCP/IP UNIX VMware Windows
Perks/benefits: Career development Equity / stock options Flex hours
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.