DSS Information System Security Officer (ISSO)

DSS Information System Security Officer (ISSO)
Schriever Space Force Base
Colorado Springs, CO

HX5 is an award-winning provider of engineering, research and development, and technical services to clients such as NASA and the Department of Defense. Founded in 2004, HX5 is a fast-growing veteran- and woman-owned company with locations nationwide.

HX5 is currently seeking a qualified DSS Information System Security Officer (ISSO) to support the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES) contract at Schriever Space Force Base in Colorado Springs, CO.

Essential Duties and Responsibilities:

• Execute all duties as outlined in the Joint Special Access Program Implementation Guide (JSIG) section 1.5.15
• Develop and maintain the necessary security authorization package artifacts on the MDA designated system for SAP program authorizations.
• Develop the necessary policies, procedures, and control evidence for selected security controls.
• Work with hardware engineers, software engineers, and test teams developing, testing, and deploying cyber tools for compliance initiatives on a new platform.
• Assess and proactively coordinate mitigation of system security threats/risks using DoD approved tools (eg. ACAS, Prisma, Trelix etc.).
• Lead efforts for security planning, assessment, risk analysis, risk management, certification and awareness activities of MDSEA systems.
• Gather data and prepare documentation in support of U.S. Government Assessment and Authorization (A&A) efforts to obtain new Cyber Security Authorization to Operate (ATO) certification.
• Be responsible for managing the records for an assigned enclave.
• Monitor baseline systems to ensure operation, function and cyber posture meets mission requirements.
• Review and analyze appropriate system logs for performance and behavior anomalies, determine trends, and develop proactive corrective actions.
• Coordinate actions and efforts as needed with appropriate team members, internal and external teams, customers, stakeholders and leaders to effectively execute tasks, solve problems and develop solutions with minimal to no mission impact.
• Understand security vulnerabilities in various SW and HW platforms and be able to recommend mitigations.
• Maintain a high degree of proficiency in cyber applications to accomplish tasks.
• Complete other cyber duties as assigned

Salary Information:

This position is expected to pay $140,000 - $170,000 annually; depending on experience, education, and any certifications that are directly related to the position.

The Successful Candidate Will:

• Have excellent verbal, written, interpersonal teaming soft skills
• Be able to prioritize and perform in a highly complex (technical and organizational) environment.

Education and Experience:

• Must have 8, or more, years of general (full-time) work experience
  • May be reduced with the completion of advanced education
• Must have 4, or more, years of directly related experience
• Must have 1, or more, years of experience working in a management or leadership role
• Must have an active DoD 8570 IAT Level II certification (ex: Security+)
• Must have experience with NIST SP 800-53 and other NIST and DoD Cybersecurity polices.
• Must have experience with Joint Special Access Program Implementation Guide (JSIG)
• Must have experience in Risk Management Framework (RMF) accreditation and authorization (A&A) processes and standard body of evidence (BoE) package development.
• Must have experience providing technical briefings to executive level personnel.
• Must have an active DoD Top Secret Security Clearance with SCI eligibility

Desired Requirements:

• Have experience with defining Cyber architecture, then engineering and implementing that architecture.
• Be familiar with the System Development Life Cycle (SDLC).
• Be familiar with Project Management principles.
• Have experience with agile system development, and DevSecOps tools and processes.
• Be able to conduct research and develop white papers on security and other applicable topics as needed
• Have knowledge in using container scanning vulnerability tools (such as JFrog Xray, Prisma).
• Have experience with Cyber compliance tools such as ACAS, Trelix, Prisma and Elastic.
• Have an active DoD 8570 IAT Level III or IAM Level II certifications (ex: CISSP, CISM, CCISO).

Position Type/Expected Hours of Work:

This is a full-time position requiring 40 hours per week and offers a flexible work schedule Monday through Friday during core business hours.

Other Position Requirements:

• Proof of U.S. Citizenship or US Permanent Residency is a requirement for this position.
• Must be able to complete a U.S. government background investigation.
• Must be able to obtain a Secret clearance.
• Must be able to travel, including air travel.
• Must have a valid Drivers License.

HX5 offers a competitive salary and benefits package to include:

• Medical/Dental/Vision Insurance
• 401(k) plan with Company Match
• Paid Holidays
• Paid Time Off
• Parental Leave
• Life Insurance
• Tuition Reimbursement
• Medical and Dependent Care Flexible Spending Accounts
• Pet Insurance

HX5, LLC is an Equal Opportunity Employer that recruits and hires qualified candidates without regard to race, religion, sex, age, national origin, ancestry, citizenship, disability, or veteran status.

HX5, LLC is a Drug Free Workplace Employer.

ACCESSIBILITY NOTICE:
If you need a reasonable accommodation for any part of the employment process due to a physical or mental disability, please call (850) 362-6551.

CJ