For over 60 years, SCI has been a leading provider of defense and aerospace electronics design and manufacturing services. From tactical communications systems to airborne communications and information processing, we deliver high-reliability solutions that keep our first responders and war-fighters connected and protected in the field.
We are currently recruiting highly qualified candidates, whose background and career goals meet our needs, for the following position in our Huntsville, AL facility. Please note that due to our Department of Defense contract requirements, U.S. CITIZENSHIP IS REQUIRED.
Position Title: Senior Information System Security Officer
Job Purpose
Information System Security Officer supporting classified Information Systems (IS)
SCI is seeking an experienced Information System Security Officer (ISSO) trained professional to directly support our Information System Security Manager (ISSM). The ISSO will be responsible for supporting our National Industrial Security Program (NISP), with involvement in all aspects of classified information system security compliance. The ideal candidate for this job will be an experienced information security practitioner who is goal-oriented, strives to exceed expectations, and demonstrated familiarity with the Risk Management Framework (RMF) process.
Nature of Duties
In this role you will work with engineering, program development, and architecture groups to provide security requirements for new applications and systems. You will contribute to the design, documentation, and deployment of new and existing security technologies while also assisting in the development SSPs and POA&Ms. You must be able to work closely with the entire Cyber Security team and the program team to perform architectural reviews and submissions to support program objectives. You will be responsible for documenting processes and procedures relating to Cyber Security technologies. You will assist the ISSM with maintaining the Cyber Security Roadmap. We need this role to support SCI’s security organization while maintaining customer compliance requirements revolving around DOD, NIST, NISPOM, and DCSA requirements and regulations. As a senior member of the team, you will also be responsible for mentoring other team members on Security technologies and standards.
Experience and Education
Qualifications
- Minimum of a bachelor’s degree in Information Systems, Computer Science, or Cyber-related discipline
- Minimum 5 years IT-related work experience in an ISSO position
- DoD approved baseline IAM Level II related certifications (CAP, CASP CE, CISM, CISSP or Associate, GSLC, CCISO, or HCCISP) is required.
- Familiarity with various host, network and cloud-based security technologies
- Familiarity with government and classified systems security requirements
- Experience with NIST SP 800 standards including 30, 53, 82, and 171
- Experience with CNSSI 1253 and 1253F
- Experience with DISA STIGs and SCAP compliance checker
- Experience with DCSA certification authority’s RMF accreditation process and the DCSA DAAPM is required.
- Manage and track security project tasks, including but not limited to, security controls development and implementation, security testing and remediation, compliance tracking, and documentation for management and auditing activities; tracking of closed areas assets.
- Ability to work with all levels of an organization up to the Executive Staff and external customers
- Ability to earn trust, maintain positive and professional relationships, and contribute to a culture of inclusion
- Must be a U.S. citizen or national, U.S. permanent resident (current Green Card holder), or lawfully admitted into the U.S. as a refugee or granted asylum.
- Must be able to obtain and maintain a Secret security clearance
Requirements:
- Applicants selected must have a current Secret security clearance and must meet immediate eligibility requirements for access to Secret classified information
- Experience in a DOD Information Security contractor security environment with demonstrated knowledge of managing classified information systems operation and security.
- Excellent troubleshooting skills and administration of security configurations across multiple operating systems in various environments, to include: Windows, Linux/Unix, utilizing Active Directory/Group Policies, etc. is required.
- Experience with the eMASS tools and demonstrated skills maintaining POA&Ms, artifacts, and SSPs while operating within a continuous monitoring environment is required.
- Assist in the completion of the accreditation process, as applicable, and help maintain the closed areas accredited status as required by DCSA, ISSM, and the requisite ATO.
- Input and update active workflows within the NISP eMASS system to include security artifacts and POA&Ms.
- Assist in implementing and auditing security controls, disaster and contingency plans, incident response plans, configuration management, etc. based on guidance documents such as NIST Special Publications and DISA STIGs
- Perform security assessments and risk analysis including log auditing, vulnerability scanning utilizing the DISA SCAP Compliance Checker and other SIEM toolsets such a SolarWinds, Splunk, QRadar, etc.
- Support the growth, expansion, and continuous modernization of closed and restricted area environment(s) and associated technologies.
- Interact with representatives of the FBI, DCSA, other government agencies, and SCI customers as required.
Sanmina is an Equal Opportunity Employer – M/F/Veteran/Disability/Sexual Orientation/Gender Identity
This is an ITAR facility and applicant must be a US Citizen