Information System Security Officer
Maxar Technologies
- Westminster, CO
- Permanent
- Full-time
- Performance of system, server, and workstation audits weekly. Preparation of weekly audit report on findings and anomalies.
- Processing User Account request and providing System Security Briefings before granting system access. Contribute to the continuous monitoring and protection of accredited information systems.
- Support the overall enterprise strategy for information security, technology risk management, and compliance.
- Participate in the evaluation of suspected security breaches, work with subject matter experts, and recommend corrective actions.
- Document any special security requirements identified as well as protection measures implemented to fulfill these requirements for the information contained in the IS.
- Ensure systems are operated, maintained, and disposed of in accordance with security policies,
- and procedures as outlined in the security authorization package.
- Coordinate any changes or modifications to hardware, software, or firmware of a system with the
- ISO and AO/DAO prior to the change for approval.
- Track and manage vulnerability mitigation plan for assigned IS.
- Develop and maintain training materials to educate managers, administrators, and users about the importance of system and data security, their roles in safeguarding information, and ways to observe, report, and implement changes in the environment to maintain system and data security.
- U.S. citizenship
- Existing security clearance (SECRET) and the ability to obtain Top Secret/SCI access
- Counterintelligence Polygraph required after award of SCI access
- Knowledge of Information Security or Information technology standards
- Experience with Risk Managed Framework (RMF)
- Familiarity with implementation of Government directives and policies derived from NIST, CNSSI, ICS, DoD, or other Government Regulatory compliance standards within a professional industry.
- Department of Defense Directive (DoDD) 8140 / 8570 Certification requirements (CompTIA Security+ CE or equivalent certification)
- Current Top Secret/SCI clearance with CI Polygraph
- Initiative driven attitude and a willingness to take on challenging tasks independently.
- Ability to multitask and prioritize projects, appropriately manage expectations, make difficult judgment calls and communicate complex issues in an easy-to-understand format.
- Knowledge of or experience administering accredited information systems.
- Knowledge of AWS, UNIX, and Windows system administration practices, access control, and auditing/logging procedures within an enterprise class environment.
- Introductory knowledge of network administration and security practices and procedures, including routine network auditing within an enterprise class environment.
- Experience with security related tools including ACAS (Tenable SC), Host Based Security Systems, log aggregation with Elastic and/or Splunk, and File Integrity Monitoring Software.
- Ability to prepare multiple types of documentation, policies, guides, communications, presentations, etc.
- Bachelor of Science in Computer Science or related degree or equivalent experience.