Information System Security ; Cybersecurity Technical Staff

Overview

Information System Security Offer (Cybersecurity Technical Staff
2) at Los Alamos National Laboratory. This role supports the cybersecurity program for information system boundaries accredited within Amazon Web Services (AWS) on the Commercial Cloud Enterprise (C2E) platform. The ISSO will contribute to a portfolio of exciting and high-impact national security scientific research.

We are seeking an Information System Security Officer (ISSO) to support the cybersecurity program for information system boundaries accredited within AWS on the C2E platform. The ISSO will contribute to a portfolio of exciting and high-impact national security scientific research. In this role, you will collaborate with interdisciplinary teams to design secure, high-performance computing solutions that drive world-class scientific outcomes for our stakeholders.

The SSO-3 group is an integral part of the Sensitive and Special Operations (SSO) Division at LANL, focusing on implementation of IT and network technologies for high security environments. The SSO Division operates special security facilities at LANL and remote sites, enabling cutting-edge work in Emerging Threats, Energy Security, and Nuclear Threats and Deterrence. Our dedicated teams architect and implement secure computing environments used to tackle the nation's toughest challenges in global and nuclear security.

As a member of the Special Security Cyber Operations Team, your responsibilities will include:

• Assisting the ISSM in development, implementation, and evaluation of the cybersecurity program for classified computing systems within the LANL Field Intelligence Element (FIE).
• Participating in or leading projects that address significant and/or complex cyber issues, working with multi-disciplinary teams to analyze and interpret national cybersecurity requirements in support of scientific research.
• Identifying, developing, and implementing solutions to address cyber threats and vulnerabilities.
• Evaluating and recommending new tools to strengthen the FIE's cybersecurity posture.
• Contributing to security reviews, assessments, security plan development, and related documentation for classified systems.

Additional Responsibilities include:

• Serving as primary or alternate ISSO for the Department of Energy's Office of Intelligence and Counterintelligence (DOE-IN) for Strategic Partner information systems.
• Implementing the NIST Risk Management Framework (RMF), in accordance with ICD 503, CNSS publications, and NIST SP 800-series.
• Performing continuous monitoring activities in support of ongoing authorizations and maintaining effective monitoring of security controls, including risk assessments, self-assessments, account management, configuration management, vulnerability management, and auditing of information systems.
• Developing and maintaining authorization packages, including System Security Plans (SSPs), Plans of Actions and Milestones (POA&Ms), and Security Assessment Reports (SARs).
• Supporting secure system deployment and operations in AWS Classified Regions (Secret and Top Secret).

What You Need

Minimum

Job Requirements:

• Proficiency in the implementation of the NIST RMF for national security systems in accordance with all applicable NIST publications, DOE orders, DOE-IN policies, ICDs, and other government agency governing requirements.
• Hands-on experience with AWS Commercial Cloud Enterprise (C2E) environments and AWS security services such as IAM, Guard Duty, Cloud Trail, and KMS. Candidates must have prior cyber-related work experience within AWS environments.
• Understanding of distributed systems, architectures, and network protocols.
• Experience developing and maintaining comprehensive authorization packages.
• Strong technical writing abilities and effective stakeholder communication skills.

Education/

Experience:

Position requires a Bachelor's degree in a technical field and a minimum of 5 years' related experience, or an equivalent combination of education and experience. At this level post graduate work may be expected.

Desired

Qualifications:

• Master's Degree in cybersecurity, information assurance, or related technical field.
• Active Q or Top-Secret clearance.
• Active Sensitive Compartmented Information (SCI) access (or ability to obtain).
• DoDD 8570 IAM Level 1, or equivalent certification. Cloud+ preferred.
• Experience in SCI or Special Access Program (SAP) environments.
• Knowledge of DOE/DoD cybersecurity policies.

Work Environment:

Work Location: The work location for this position is onsite and located in Los Alamos, NM. All work locations are at the discretion of management.

Position commitment: Regular appointment employees are required to serve a period of continuous service in their current position in order to be eligible to apply for posted jobs throughout the Laboratory. The position commitment for this position is 1 year.

Note to Applicants: Due to federal restrictions contained in the current National Defense Authorization Act, certain foreign nationals are…