Location: Amarillo TX - Pantex Plant
Job Title: Information System Security Officer
Career Level From: Associate
Career Level To: Associate
Organization: Formal Authorization & Risk Mgmt ()
Job Specialty: Cyber Security
What Youll Do
The Cyber Security Professional is responsible for the Assessment and Authorization (A&A) of Federal information systems as well as the development of accreditation and other required cybersecurity documentation for new and existing systems. Additionally this person will utilize various network tools for continuous monitoring of Information Technology (IT) assets. This role includes responsibilities of the Information System Security Officer (ISSO) and/or the Security Control Assessor (SCA) for classified and unclassified IT systems. Candidates are expected to have an understanding of the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) and the various supporting elements. Successful candidates for this role will be expected to stay up to date on the latest cybersecurity risks and threats as well as work with technology subject matter experts (SME) to develop risk assessments and the proper mitigations.
POSITION DUTIES AND RESPONSIBILITIES:
- A&Aof Federal information systems
- Development of accreditation and other required cybersecurity documentation for new and existing information systems Conduct independent comprehensive assessments of the management operational and technical security controls and control enhancements employed within or inherited by an IT system to determine the overall effectiveness of the controls (as defined in National Institute of Standards and Technology SpecialPublication(NISTSP) 800-37)
- Perform continuous monitoring of IT assets
- Develop risk assessments and the proper mitigations
- This role includes responsibilities of the ISSO and/or the SCA or classified and unclassified IT systems
- Perform other duties as assigned
Minimum Job Requirements
- Bachelors degree in engineering/science discipline.
- OR Masters degree in engineering/science discipline.
- OR Applicants without a bachelors degree may be considered based on a combination of at least 8 years of completed education and/or relevant experience.
Department of Energy (DOE) Order 426.2A Requirements
Preferred Job Requirements
Knowledge of computer networking concepts and protocols and network security methodologies
Knowledge of risk management processes (e.g. methods for assessing and mitigating risk)
Knowledge of cybersecurity and privacy principles
Knowledge of cybersecurity threats and vulnerabilities
Knowledge of Security Assessment and Authorization process
Knowledge of RMF best practices
Ability to present administrative technical and operational information clearly and effectively through the oral and written word as well as diagrams and charts
Knowledge of NIST 800-53/53A security controls
Ability to assess and provide written assessments of A&A packages
Experience with RMF in the Department of Energy (DOE) Community
Security Certified Ethical Hacker (CEH) Certification or Certified Information Systems Security Professional (CISSP) Certification
FedRAMP and Cloud compliance experience
Knowledge of IT security principles and methods (e.g. firewalls demilitarized zones encryption)
Knowledge of Application Security Risks
Knowledge of laws regulations policies and ethics as they relate to cybersecurity and privacy
Knowledge of Supply Chain Risk Management Practices (NIST SP 800-161)
Knowledge of Personally Identifiable Information (PII) data security standards
Knowledge of authentication authorization and access control methods
Knowledge of database systems
Knowledge of Industrial Control Systems (NIST 800-82)
Knowledge emerging technologies that have potential for exploitation
Knowledge of system and application security threats and vulnerabilities (e.g. buffer overflow mobile code cross-site scripting
Procedural Language/Structured Query Language (PL/SQL) and injections race conditions covert channel replay return-oriented
#JointheMission: Your Impact Starts Here
At Pantex you wont just find a jobyoull discover a career of purpose safeguarding national security through work performed nowhere else on Earth. We empower dedicated innovative individuals like you to achieve their greatest impact surrounded by exceptional talent and limitless opportunities for professional growth.
When you #JointheMission you choose a lifetime career where your commitment is genuinely valued and rewarded. At Pantex we believe that extraordinary talent thrives when supported by a balanced life. Discover the flexibility that empowers you to excel coupled with a benefits package designed for your total peace of mind from comprehensive health coverage and robust retirement planning to opportunities for continuous learning through education reimbursement.
Notes
The minimum education and experience for the lowest career level in the job posting range are listed under Minimum Job Requirements. Successful candidates hired into a higher career level than the minimum in the range must meet the requirements listed in the job leveling charts for the career level into which they are being hired.
If a range of Career Levels is posted i.e. Senior Associate to Senior Specialist internal applicants already in one of the Career Levels would come across at their current Career Level. Internal applicants currently in a lower level Career Level would move to the lowest posted Career Level.
Requires a Q clearance; however all qualified candidates will be considered regardless of their current clearance status. The ability to obtain and maintain a Department of Energy Q clearance is required.
Position may require entry into Materials Access Areas (MAA) and participation in the Human Reliability Program (HRP). If HRP is required candidate must complete a counterintelligence-scope polygraph pursuant to 10 CFR 709. Medical requirements may apply.
Pantex is a drug-free workplace. Candidates accepting a job offer will be required to pass a pre-placement physical drug screening and background investigation. As an employee you may be required to receive and maintain a security clearance from the United States Department of Energy in order to meet eligibility requirements for access to sensitive information or matter. U.S. citizenship is a requirement for security clearance applicants. All employees are subject to random selection for drug testing without advance notification.
Pantex is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race color sex age religion national origin ancestry genetic information disability or veteran status.
Required Experience:
Unclear Seniority
Location: Amarillo TX - Pantex PlantJob Title: Information System Security OfficerCareer Level From: AssociateCareer Level To: AssociateOrganization: Formal Authorization & Risk Mgmt ()Job Specialty: Cyber SecurityWhat Youll Do The Cyber Security Professional is responsible for the Assessment and Au...
Location: Amarillo TX - Pantex Plant
Job Title: Information System Security Officer
Career Level From: Associate
Career Level To: Associate
Organization: Formal Authorization & Risk Mgmt ()
Job Specialty: Cyber Security
What Youll Do
The Cyber Security Professional is responsible for the Assessment and Authorization (A&A) of Federal information systems as well as the development of accreditation and other required cybersecurity documentation for new and existing systems. Additionally this person will utilize various network tools for continuous monitoring of Information Technology (IT) assets. This role includes responsibilities of the Information System Security Officer (ISSO) and/or the Security Control Assessor (SCA) for classified and unclassified IT systems. Candidates are expected to have an understanding of the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) and the various supporting elements. Successful candidates for this role will be expected to stay up to date on the latest cybersecurity risks and threats as well as work with technology subject matter experts (SME) to develop risk assessments and the proper mitigations.
POSITION DUTIES AND RESPONSIBILITIES:
- A&Aof Federal information systems
- Development of accreditation and other required cybersecurity documentation for new and existing information systems Conduct independent comprehensive assessments of the management operational and technical security controls and control enhancements employed within or inherited by an IT system to determine the overall effectiveness of the controls (as defined in National Institute of Standards and Technology SpecialPublication(NISTSP) 800-37)
- Perform continuous monitoring of IT assets
- Develop risk assessments and the proper mitigations
- This role includes responsibilities of the ISSO and/or the SCA or classified and unclassified IT systems
- Perform other duties as assigned
Minimum Job Requirements
- Bachelors degree in engineering/science discipline.
- OR Masters degree in engineering/science discipline.
- OR Applicants without a bachelors degree may be considered based on a combination of at least 8 years of completed education and/or relevant experience.
Department of Energy (DOE) Order 426.2A Requirements
Preferred Job Requirements
Knowledge of computer networking concepts and protocols and network security methodologies
Knowledge of risk management processes (e.g. methods for assessing and mitigating risk)
Knowledge of cybersecurity and privacy principles
Knowledge of cybersecurity threats and vulnerabilities
Knowledge of Security Assessment and Authorization process
Knowledge of RMF best practices
Ability to present administrative technical and operational information clearly and effectively through the oral and written word as well as diagrams and charts
Knowledge of NIST 800-53/53A security controls
Ability to assess and provide written assessments of A&A packages
Experience with RMF in the Department of Energy (DOE) Community
Security Certified Ethical Hacker (CEH) Certification or Certified Information Systems Security Professional (CISSP) Certification
FedRAMP and Cloud compliance experience
Knowledge of IT security principles and methods (e.g. firewalls demilitarized zones encryption)
Knowledge of Application Security Risks
Knowledge of laws regulations policies and ethics as they relate to cybersecurity and privacy
Knowledge of Supply Chain Risk Management Practices (NIST SP 800-161)
Knowledge of Personally Identifiable Information (PII) data security standards
Knowledge of authentication authorization and access control methods
Knowledge of database systems
Knowledge of Industrial Control Systems (NIST 800-82)
Knowledge emerging technologies that have potential for exploitation
Knowledge of system and application security threats and vulnerabilities (e.g. buffer overflow mobile code cross-site scripting
Procedural Language/Structured Query Language (PL/SQL) and injections race conditions covert channel replay return-oriented
#JointheMission: Your Impact Starts Here
At Pantex you wont just find a jobyoull discover a career of purpose safeguarding national security through work performed nowhere else on Earth. We empower dedicated innovative individuals like you to achieve their greatest impact surrounded by exceptional talent and limitless opportunities for professional growth.
When you #JointheMission you choose a lifetime career where your commitment is genuinely valued and rewarded. At Pantex we believe that extraordinary talent thrives when supported by a balanced life. Discover the flexibility that empowers you to excel coupled with a benefits package designed for your total peace of mind from comprehensive health coverage and robust retirement planning to opportunities for continuous learning through education reimbursement.
Notes
The minimum education and experience for the lowest career level in the job posting range are listed under Minimum Job Requirements. Successful candidates hired into a higher career level than the minimum in the range must meet the requirements listed in the job leveling charts for the career level into which they are being hired.
If a range of Career Levels is posted i.e. Senior Associate to Senior Specialist internal applicants already in one of the Career Levels would come across at their current Career Level. Internal applicants currently in a lower level Career Level would move to the lowest posted Career Level.
Requires a Q clearance; however all qualified candidates will be considered regardless of their current clearance status. The ability to obtain and maintain a Department of Energy Q clearance is required.
Position may require entry into Materials Access Areas (MAA) and participation in the Human Reliability Program (HRP). If HRP is required candidate must complete a counterintelligence-scope polygraph pursuant to 10 CFR 709. Medical requirements may apply.
Pantex is a drug-free workplace. Candidates accepting a job offer will be required to pass a pre-placement physical drug screening and background investigation. As an employee you may be required to receive and maintain a security clearance from the United States Department of Energy in order to meet eligibility requirements for access to sensitive information or matter. U.S. citizenship is a requirement for security clearance applicants. All employees are subject to random selection for drug testing without advance notification.
Pantex is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race color sex age religion national origin ancestry genetic information disability or veteran status.
Required Experience:
Unclear Seniority
View more
View less
Job Location:
Monthly Salary:
Not Disclosed
Posted on:
8 hours ago
Vacancies:
1 Vacancy
