Senior Information Systems Security Officer (ISSO)
Job Description
Salary: $120,000- $127,000
York Space Systems was founded to radically improve spacecraft affordability and reliability, transforming, and enabling next generation space mission operations worldwide. Today, it is one of the most innovative aerospace companies, specializing in both end-to-end customer solutions and the rapid production of spacecraft platforms. York’s complete Space Segment Solution including spacecraft production, payload integration, system integration & test, launch services, ground segment services, and mission operations enables customers to leverage York’s existing technology solutions to get rapidly and responsively to orbit. We’re looking to expand our team across the board.
York Space Systems is seeking a Senior Information Systems Security Officer (ISSO) to facilitate A&A (Authorization & Assessment) efforts throughout multiple systems’ RMF lifecycles for both ground and space assets. The selected candidate will take the lead in supporting multiple RMF accreditation efforts and will perform tasks that include determining system compliance requirements, risk assessment outcome measures, system security testing, documenting security controls, and ensuring overall compliance with industry relevant cybersecurity policies and guidance’s. The ideal candidate will have experience working as an ISSO or security relevant field and must be comfortable operating in a senior role and providing mentorship for junior ISSOs. The selected candidate will be able to speak directly with customers with little to no Information Systems Security Manager (ISSM) involvement and will be the face of system security for their selected boundaries. Responsibilities below are inclusive ISSO duties.
RESPONSIBILITIES
York Space Systems was founded to radically improve spacecraft affordability and reliability, transforming, and enabling next generation space mission operations worldwide. Today, it is one of the most innovative aerospace companies, specializing in both end-to-end customer solutions and the rapid production of spacecraft platforms. York’s complete Space Segment Solution including spacecraft production, payload integration, system integration & test, launch services, ground segment services, and mission operations enables customers to leverage York’s existing technology solutions to get rapidly and responsively to orbit. We’re looking to expand our team across the board.
York Space Systems is seeking a Senior Information Systems Security Officer (ISSO) to facilitate A&A (Authorization & Assessment) efforts throughout multiple systems’ RMF lifecycles for both ground and space assets. The selected candidate will take the lead in supporting multiple RMF accreditation efforts and will perform tasks that include determining system compliance requirements, risk assessment outcome measures, system security testing, documenting security controls, and ensuring overall compliance with industry relevant cybersecurity policies and guidance’s. The ideal candidate will have experience working as an ISSO or security relevant field and must be comfortable operating in a senior role and providing mentorship for junior ISSOs. The selected candidate will be able to speak directly with customers with little to no Information Systems Security Manager (ISSM) involvement and will be the face of system security for their selected boundaries. Responsibilities below are inclusive ISSO duties.
RESPONSIBILITIES
Â
- Develop and maintain enterprise RMF accreditation packages, from concept development and contract pre-acquisition through contractor design and accreditation across multiple locations
- Oversee daily operations as required to perform and maintain RMF A&A efforts
- Delegate tasks and create deadlines for Information Assurance (IA) teams to meet system security requirements
- Lead on-site program audits and security inspections with cognizant authorization entities
- Assist the ISSM in meeting their duties to support A&A activities and coordinate with system’s Security Controls Assessor (SCA) and Authorizing Official (AO)
- Oversee system and network designs that encompass multiple computer and network devices to include those with differing data protection and mission requirements
- Advise Information Systems Security Engineers (ISSEs), technical reps, and/or system administration to remediate system deficiencies
- Handle security concerns in lieu of ISSM and advise on security concerns IAW system procedures
- Perform and review technical security assessments of the system(s) to identify points of vulnerability, non-compliance with established cybersecurity standards and regulations, and recommend mitigation strategies to maintain operational system security posture
- Conduct risk analyses from vulnerability and compliance scans and/or other audit activities to support A&A requirements
- Create and maintain Plan of Action and Milestones (POA&Ms), Risk Assessment Reports, System Security Plans (SSPs), Security Control Traceability Matrices (SCTMs), Standard Operating Procedures (SOPs), and additional support artifacts as required
- Conduct continuous monitoring (ConMon) activities for applicable ground and space authorization boundaries
- Apply and maintain up to date review of Security Technical Implementation Guides (STIGs) for required components of the information systems
- Ensure approved procedures are in place for clearing, sanitizing, and destroying various types of hardware and media
- Maintain inventory and asset configuration to include change management documentation
- Lead System level change requests through formalized Configuration Control boards (CCB)
- Ensure that the appropriate operational security posture is maintained for the information system, working in close collaboration with the information system owner and the ISSM
- Notify ISSM when changes occur that might affect the authorization determination of the information system(s)
REQUIRED QUALIFICATIONS
- Active Secret clearance or higher
- 6+ years of IA/Cyber Security experience
- Bachelor’s degree or higher in Computer Science or Security
- DoD 8570 IAM/T II or equivalate
- Experience supporting A&A throughout all phases of the RMF process
- Experience with DCSA tools such as eMASS, STIGs and SCAP
- Extensive experience in developing and documenting A&A required artifacts
- Knowledge of CNSSI 1253, NIST 800 Series (primarily 800-53, 800-53A, 800-171), RMF
PREFERRED EXPERIENCE
- Extensive knowledge in RMF package creation and maintenance to support A&A decision
- Fundamental knowledge of DISA Enterprise Mission Assurance Support Service (eMASS)
- Experience using DISA Security Technical Implementation Guides (STIGs), Security Requirements Guide (SRGs) and Security Content Automation Protocol (SCAP) to audit and securely configure network-enabled devices
- Familiar with vulnerability tools and audit review tools which include audit log analysis and report generation (Nessus and Splunk experience preferred)
- Ability to advise the ISSOs/ISSEs or relevant security personnel to remediate system deficiencies
- Experience conducting risk analysis on products and system components through review of CVEs, plugins, CWEs
- Experience in conducting software due diligence with COTS and GOTS solutions
- Strong communication and documentation skills
- Flexible and able to adapt to a rapidly changing environment
- Positive, self-motivated individual who can complete tasks independently
- Working knowledge of system functions, security policies, technical security safeguards, and operational security measures.
York Space Systems provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, military or protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. Must have permanent authorization to work in US. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.
YORK SPACE SYSTEMS is an EEO employer - M/F/Vets/Disabled
YORK SPACE SYSTEMS is an EEO employer - M/F/Vets/Disabled
Apply Now
Back to Job Listings
Add To Job List
Company Profile
View Company Reviews
Date Posted
06/14/2023
Views
15
Positive
Subjectivity Score: 0.9
Similar Jobs
Senior Electrical Engineer - Red 6
Views in the last 30 days - 0
Red 6 is a pioneering AR technology startup specializing in synthetic air combat training The company is seeking a Senior Electrical Engineer to contr...
View DetailsSystems Engineer - Mission Operations Lead - York Space Systems
Views in the last 30 days - 0
York Space Systems is seeking a Systems Engineer Mission Operations Lead The role involves acting as the mission operations focal point leading the de...
View DetailsLaunch Systems Integration Engineer, Sr. - York Space Systems
Views in the last 30 days - 0
York Space Systems an innovative aerospace company is seeking a Launch Systems Integration Senior Engineer The role involves coordinating spacecraft l...
View DetailsMarketing Systems Developer - Klaviyo
Views in the last 30 days - 0
Klaviyo a leading marketing automation platform is seeking a skilled GTM Marketing Integrations Salesforce Developer The ideal candidate will have a ...
View DetailsSenior Lead, Partner Marketing - SMB Demand Generation - Klaviyo
Views in the last 30 days - 0
Klaviyo is seeking a Sr Partner Marketing Manager for SMB Demand Generation The role involves driving direct engagement with SMB partners creating imp...
View DetailsSecurity - CIM Group
Views in the last 30 days - 0
CIM Group is a communityfocused real estate and infrastructure owneroperator lender and developer They aim to create value in real assets benefiting t...
View Details