Information Systems Security Officer (ISSO)

Job Description

Do Something Wonderful!

The world is transforming - and so is Intel. Intel is a company of bold and curious inventors and problem solvers who create some of the most astounding technology advancements and experiences in the world. With a legacy of relentless innovation and a commitment to bring smart, connected devices to every person on Earth, our diverse and brilliant teams are continually searching for tomorrow's technology and revel in the challenge that changing the world for the better brings. We work every single day to design and manufacture silicon products that empower people’s digital lives. Come join us and do something wonderful!

Who we Are:

The Government Information Technology and Security Team (GITS) is made up of highly experienced security professionals with skills ranging from solutions architecture and information security to application development and service operations and includes regulatory compliance oversight. This cross functional team is focused on supporting the unique information security and compliance requirements for Intel Federal LLC, a subsidiary of Intel that delivers products and/or services to the U.S. Government (USG). We are growing our secure solution suite to meet U.S. Government requirements for data safeguarding.

In the GITS Team, each person wears many hats and has multiple areas of expertise. We are looking for a talented and motivated individual with strong analytical, communication, and security risk assessment skills and enthusiasm for rapidly learning new technologies. As part of this role, you will be part of an Agile Kanban team and be expected to support, improve, and grow our secure solutions to enhance Intel Federal's capabilities with a constant focus on regulatory compliance of U.S. Government contracts.

Role overview:

The Government IT and Security (GITS) organization is seeking an Information Systems Security Officer (ISSO). This role will report into the National Industrial Security Information Security group.

Responsibilities:

• Develop and maintain Certification and Accreditation (CA) package documentation to include System Security Plans (SSPs), Plan of Actions and Milestones (POAM), Risk Assessment Reports, and System Requirements.
• Using knowledge of the Information System (IS) and understanding of established Information Assurance (IA) and Cybersecurity requirements validate security policies and procedures outlined in the System Security Plan (SSP), customer policies and regulations, and ensure local policies are followed.
• Assist with information system security management and day-to-day security operations.
• Provide configuration management for information system security software, hardware, and firmware.
• Participate in the Change Control Board (CCB) process.
• Ensure that all personnel receive the necessary technical and security training to carry out their duties.
• Conduct information security review of proposed changes or additions to the IS (including hardware or software) and advise the Information System Security Manager (ISSM) of the security relevance.
• Perform vulnerability/risk assessment analysis to support continuous monitoring and the certification and accreditation process.

Additional responsibilities include but are not limited to:

• Oversight of the information system's security posture, develop/revise the necessary Risk Management Framework (RMF) documentation to support the authorization of the individual systems.
• Creating and Updating Standard RMF artifacts that include the System Security Plan (SSP), Plan of Action and Milestones (POAM), Security Controls Traceability Matrix (SCTM), hardware and software inventories and network topology diagrams.
• The ISSO also assists in the development and implementation of relevant security policies and procedures required by assessment and authorization activities associated with any of the following guidance directives: ICD-503, DAAPM, NISPOM, JSIG, NIST 800-53.
• Effective communication is a key attribute within this role. The ISSO provides guidance and direction to program personnel. The ISSO also works closely with the system administrators and network engineers to ensure security patches and secure configurations commensurate with Security Technical Implementation Guides (STIGs) are applied in a timely fashion.

Qualifications

You must possess the below minimum qualifications to be initially considered for this position. Preferred qualifications are in addition to the minimum requirements and are considered a plus factor in identifying top candidates.

Minimum qualifications

This position requires verification of U.S. citizenship due to citizenship-based legal restrictions. Specifically, this position supports United States government customers and is subject to certain citizenship-based restrictions.

Active US Government Top Secret (TS-SCI) with Polygraph.

Bachelor's degree in Computer Science or Information Technology and 4+ years of related experience, including the following:

• 2+ years of experience with the NIST Risk Management Framework (RMF), NISPOM, JSIG, NIST 800-53, ICD-503.
• 2+ years of experience with STIGs / SCAP / SRGs.
• 2+ years of experience maintaining IS package documentation (SSP, POAMs, RAR, SAR, SRTM, hardware and software inventories).
• Minimal travel required.
• One of the following certifications: Security+ CE, CySA+, GICSP, GSEC, CND, or SSCP.

Preferred qualifications

• Experience with Industry Standard tools for purposes of audit reduction, vulnerability scanning, and malware detection is preferred. Relevant tools include but are not limited to: Splunk, Tenable Nessus, Security Content Automation Protocol (SCAP) Checker and STIG viewer.
• Experience Administering and Operating IT Technologies including Microsoft Windows, Linux, Networks, Firewalls, and Virtual Cloud environments.
• Experience with using multiple encryption methodologies for data in transport and at rest.
• Additional Security Certifications (or desire to continue security learning) CISSP, CISM, GSLC, CCISO.

#CJ

Inside this Business Group

Other Locations

Posting Statement

Benefits

Working Model