Job Description
Job Description
Corvid Technologies' Range Engineering & Instrumentation team is looking for a mid-level Information System Security Officer (ISSO) to join our team based out of our Huntsville, AL office. Candidate will perform tasks related to completing (and maintaining) Assessment & Authorization (A&A) and Authorizations to Operate (ATOs) for assigned Information Systems (i.e., applications, networks, devices). This position will be part of a team developing recommended courses of action needed to maintain and enforce current Risk Management Framework (RMF) policies and procedures for compliance to support our test range customers.
The opportunity will have direct interaction with customers in order to assist with management and execution of RMF activities for information systems. The position will provide guidance solutions to complex problems related to securing systems across a diverse network & challenging environments - often with broad definitions and challenging applications of specialized theories and knowledge. The role will also support security tasks outside specialty (e.g., program security) and be proficient in Microsoft applications (Word, Excel, PowerPoint, Access, Visio, etc.) to provide routine support related to other applicants as required.
Responsibilities include:
- Drafting RMF documents (SSPs, RARs, POAMs, SCTMs, SOPs, ST&Es, etc.) as well as managing Enterprise Mission Assurance Support Service (eMASS) records for all Collateral Information Systems as required
- Lead the classified incident handling process and oversee the reporting and investigation of Information System security related incidents
- Performing sustainment activities, including change management, account management, auditing, media protection, user training, file transfers, etc.
- Work with system administrators, engineers, and developers to create or update system/site policies, procedures, and process guides
- Conduct Self Assessments for risk and vulnerability assessments of information systems to identify vulnerabilities, risks, and protection needs
Requirements:
- Candidate must be a US Citizen and possess at least a Secret Clearance
- Bachelor's Degree in a related discipline and at least 5 years of experience in cybersecurity or information technology (preference for managing government systems)
- Candidate must possess appropriate certifications such as Security+, GSEC or SSCP
- System Admin experience with Red Hat Enterprise Linux (RHEL) and current Windows OS
- Experience using Tenable Nessus/ACAS Scanning Software or equivalent
- Knowledge of common security technologies competent hands-on support and configuration ability in at least one security technology (i.e., SIEM)
- Experience in assessing systems using NIST 800-53, DISA STIGs and SRGs, SCAP Compliance Checker and/or STIG Viewer
- Candidate should demonstrate familiarity with NISPOM, DAAPM, RMF, CMMC and other NIST (i.e., 800-171) publications
- Ability to travel as needed, up to 25% (typically less)
About Corvid:
Corvid Technologies is an engineering firm specializing in high-fidelity, computational modeling and simulation to analyze, design, and manufacture products for aerospace, DoD, and commercial customers. We offer a fast-paced and flexible work environment, where we tackle difficult, cutting-edge technical challenges using state-of-the-art technologies and resources.
Why Corvid:
We value our employee-owners and in addition to offering challenging work opportunities and competitive pay, Corvid believes in providing a strong benefits package that delivers value to our team members at all stages of their career.
Our benefits include:
- Employee ownership through our generous 401(k) match in Corvid Stock
- Medical insurance via Blue Cross - PPO and High-Deductible plans (with company HSA contribution)
- Paid Time Off (PTO) starting at 3 weeks - based on years of industry experience not tenure
- Career development and continuing education opportunities
- Company provided life, long-term, and short-term disability insurance
- Incentive opportunities to reward strong performance and corporate growth
- Paid gym membership