Apply on Employer Site

Nooks · 2 days ago

Security Process Assurance Generalist

Colorado Springs, CO

Contract

Hybrid

Mid Level

$90K/yr - $110K/yr

3+ years exp

Nooks is a pioneering startup in the Classified Infrastructure-as-a-Service (CIaaS) sector, focused on enhancing national security. The Security Process Assurance Generalist will analyze and streamline security workflows across the US Space Force's classified security enterprise while ensuring compliance and operational excellence.

AerospaceInformation TechnologySubscription Service

No H1B

Security Clearance Required

U.S. Citizen Only

Hiring Manager

Victoria Vega

Responsibilities

Security Process Analysis and Design

Process Mapping: Conduct comprehensive process mapping and analysis across all security domains (e.g., clearance processing, SCIF accreditation, incident reporting, classified material control)

Efficiency Improvement: Identify operational inefficiencies, compliance gaps, and bottlenecks in existing security workflows

Standardization: Design, implement, and standardize new, optimized security processes and procedures to enhance efficiency, reduce cycle time, and ensure consistent compliance across all USSF sites

Methodology: Utilize process improvement methodologies (e.g., Lean, Six Sigma principles) to enhance the security team's overall effectiveness while maintaining strict regulatory adherence

Documentation and Assurance

Master SOP Suite: Lead the development, maintenance, and revision of the master suite of Security Standard Operating Procedures (SOPs), ensuring a unified, consistent, and compliant framework for all security domains (PHYSEC, PERSEC, INFOSEC, INDUSEC)

Template Creation: Create and manage standardized security templates for required documentation, including DD-254s, Fixed Facility Checklists (FFCs), access rosters, and internal self-inspection reports

Quality Control: Collaborate with the Security Compliance and Oversight SME to integrate process improvements into the internal self-inspection and auditing programs, focusing on quality assurance and continuous monitoring

Root Cause Analysis: Lead post-incident analysis efforts to identify systemic root causes and implement corrective process actions to prevent future security violations or recurring incidents

Technology Integration and Metrics

Technology Evaluation: Evaluate and recommend technology solutions (e.g., workflow software, compliance tracking tools, security management systems) to automate manual security processes and enhance auditability

System Optimization: Serve as a functional lead for the integration and optimization of security management systems (DISS/NBIS, NISS) and physical security systems (ACS/IDS) to improve data integrity and compliance reporting

KPI Development: Develop and track Key Performance Indicators (KPIs) and metrics for security process efficiency, compliance status, and security team performance to measure the impact of improvement initiatives

Qualification

Security Process AnalysisProcess Improvement MethodologiesNISPOM KnowledgeSecurity Management SystemsQuality AssuranceAnalytical SkillsProblem-Solving SkillsTeam CollaborationDocumentation Skills

Required

3-5 years of broad, hands-on experience in security, having worked across multiple security disciplines (PERSEC, PHYSEC, INFOSEC, INDUSEC)

Proven experience in process improvement, standardization, or quality assurance roles within a highly regulated compliance environment

Deep, practical knowledge of NISPOM/32 CFR Part 117 and applicable Intelligence Community Directives (ICDs)

Must possess and maintain an Active Top Secret (TS) / Sensitive Compartmented Information (SCI) eligibility security clearance

U.S. Citizenship is required

Exceptional analytical and problem-solving skills, with a proven ability to translate complex regulatory requirements into simplified, efficient, and user-friendly processes

Preferred

SPeD Certification, or experience with process improvement methodologies (e.g., Lean, Six Sigma)

Highly proficient with security management systems (DISS, NISS) and familiarity with enterprise software tools used for document control or workflow management

Bachelor's degree in a relevant field (e.g., Security Management, Business Process, Quality Assurance)