Apply on Employer Site

Los Alamos National Laboratory · 2 weeks ago

Information System Security Offer (Cybersecurity Technical Staff 2)

Los Alamos, NM

Full-time

Onsite

Senior Level

5+ years exp

Los Alamos National Laboratory is a multidisciplinary research institution engaged in strategic science on behalf of national security. They are seeking an Information System Security Officer (ISSO) to support the cybersecurity program for information systems accredited within Amazon Web Services (AWS). The ISSO will collaborate with interdisciplinary teams to design secure computing solutions and implement cybersecurity measures for classified systems.

Security

Growth Opportunities

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Assisting the ISSM in development, implementation, and evaluation of the cybersecurity program for classified computing systems within the LANL Field Intelligence Element (FIE)

Participating in or leading projects that address significant and/or complex cyber issues, working with multi-disciplinary teams to analyze and interpret national cybersecurity requirements in support of scientific research

Identifying, developing, and implementing solutions to address cyber threats and vulnerabilities

Evaluating and recommending new tools to strengthen the FIE's cybersecurity posture

Contributing to security reviews, assessments, security plan development, and related documentation for classified systems

Serving as primary or alternate ISSO for the Department of Energy's Office of Intelligence and Counterintelligence (DOE-IN) for Strategic Partner information systems

Implementing the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF), in accordance with Intelligence Community Directive (ICD) 503, the Committee for National Security Systems publications, and NIST Special Publications (SP) 800 series

Performing continuous monitoring activities in support of ongoing authorizations and maintaining effective monitoring of security controls. This includes risk assessments, self-assessments, account management, configuration management, vulnerability management, and auditing of information systems

Developing and maintaining authorization packages, including System Security Plans (SSPs), Plans of Actions and Milestones (POA&Ms), and Security Assessment Reports (SARs)

Supporting secure system deployment and operations in AWS Classified Regions (Secret and Top Secret)

Qualification

NIST RMF implementationAWS security servicesAuthorization package developmentCybersecurity policies knowledgeStakeholder communicationDistributed systems understandingNetwork protocols understandingCyber-related work experienceCloud+ certificationTechnical writing

Required

Proficiency in the implementation of the NIST RMF for national security systems in accordance with all applicable NIST publications, DOE orders, DOE-IN policies, ICDs, and other government agency governing requirements

Hands-on experience with AWS Commercial Cloud Enterprise (C2E) environments and AWS security services such as IAM, GuardDuty, CloudTrail, and KMS. Candidates must have prior cyber-related work experience within AWS environments

Understanding of distributed systems, architectures, and network protocols

Experience developing and maintaining comprehensive authorization packages

Strong technical writing abilities and effective stakeholder communication skills

Position requires a Bachelor's degree in a technical field and a minimum of 5 years' related experience, or an equivalent combination of education and experience