Polaris Alpha

  • Information System Security Officer (ISSO)

    Location Schriever AFB, CO
    Req #
    2632
    Position Type
    Full Time
    FLSA Status
    Exempt
    Security Clearance
    Required Top Secret/SCI
  • Job Description

    Polaris Alpha develops innovative solutions to the most significant challenges affecting our Nation's ability to collect, utilize, and defend digital information. We’re passionate about developing cutting-edge, creative solutions, and fostering a highly sought-out place of employment for many of the brightest minds in the industry. We are the best because we hire the best. At Polaris Alpha, we have developed a culture of going above and beyond the normal expectations in the delivery of our work. Our clients and employees are the number one reason why we’re successful, and that formula won’t be changing! Polaris Alpha is a highly technical industry leader uniquely positioned to address customers’ most complex challenges across the full spectrum of air, land, sea, cyber and space domains.

    Polaris Alpha has an immediate opening for an Information System Security Officer (ISSO) at Schriever AFB, CO to work on several technologies maintained and developed by Polaris Alpha. The ISSO will work closely with a collaborative team comprised of Software Engineers, System Administrators, Program Managers, and Project Managers with systems operating on a classified network. The ISSO will also work directly with the site ISSOs/ISSMs, Security Controls Assessor(s) (SCAs) and Delegated Authorizing Official (DAO) with AF IC / A6SC.

    The ISSO must possess an overall understanding of the AF A&A process and be familiar with writing, updating and reviewing related technical documentation. The ISSO will be responsible for creating, updating, and managing required A&A artifacts and the associated Xacta projects. Artifacts include: System Security Plan (SSP), Configuration Management Plan (CMP), System Security Test Plan (SSTP), Concept of Operations (CONOPS), Security Controls Traceability Matrix (SCTM), Risk Assessment Report (RAR), Plan of Action and Milestones (POA&M) and others as required. For security related changes to the system/application, the ISSO will submit Security Impact Analysis (SIA) requests and work with the Security Controls Assessor (SCA) through approval of requested changes. The ISSO will also submit Certificate to Field (CtF) requests for software requesting to be installed on the system. In addition, a candidate with experience in the full life cycle of the Xacta process would be highly preferred.

    It is mandatory for the ISSO to know how to run vulnerability assessment tools (e.g. SCAP, Nessus, etc), lock down systems and present mitigation strategies Engineers and System Administrators. The candidate should also have experience running Security Readiness Review Evaluation Scripts (SRR), performing associated testing, and be hands-on with Security Technical Implementation Guides (STIGs).

    Physical Demands and Working Conditions:
    Normal office setting, therefore the noise level in the work environment is usually moderate. Work is generally sedentary in nature, but may require standing and walking. Use of hands to operate computer equipment. Frequent near vision use for reading and computer use.

    Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.

    ***Polaris Alphais an Equal Opportunity and Affirmative Action Employer. All employment candidates may be subject to background screening, and will be subject to a pre-employment, mandatory drug screen.

    Required Skills

    • 5+ years of experience in software engineering, security engineering, system testing, security testing
    • Experience includes 3+ years in accrediting fielded systems
    • Experience working with federal/DoD regulations related to information security (NIST 800-53, CNSSI 1253, DISA STIGs)
    • Must have working knowledge/experience with the Risk Management Framework requirements/documentation
    • Experience creating and maintaining documents for submittal requirements (SSP, CMP, CONOPS, SCTM, Test Plans, etc)
    • Experience working with relevant operating system security (Windows, Linux) and understanding of security related technologies
    • Participate in technical requirements discussions and manage, monitor, audit, and support securing systems
    • Conduct SCAP compliant, SRR, and ACAS/Nessus vulnerability scans of servers to determine security compliance
    • Develop and maintain Information Assurance policies and provide program policy compliance, oversight, and report findings to program management
    • Experience receiving and maintaining ATOs and CTFs
    • Have excellent time management skills with proven ability to effectively coordinate multiple tasks
    • Customer service-oriented personality traits
    • Ability to work alone and self-motivated
    • Active Top Secret/SCI clearance
    • Active Security+, CAP, or CISSP certification
    • Must be a U.S. citizen

    Desired Skills

    • Experience working with SATCOM systems
    • Experience working with other federal regulations related to information security (FISMA, PII, etc.)
    • Installation, configuration, administration in support of a multimode virtual infrastructure environment
    • Software testing experience
    • Security / Penetration testing

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Connect With Us!

    Not ready to apply? Connect with us for general consideration.