Senior Information Systems Security Officer; ISSO

Position: Senior Information Systems Security Officer (ISSO)
Requisition

Overview:

The Field Intelligence Operations Division (FIOD) is seeking a Cybersecurity Specialist to provide day-to-day support for Sensitive Compartmented Information (SCI) and Special Access Program (SAP) systems. Qualified applicants have Information Systems Security Officer (ISSO) experience to support FIOD Operations for classified operations across a wide-breadth of information environments. The ISSO supports the Information Systems Security Manager (ISSM) in the certification and accreditation of systems/networks and implementation of cyber security requirements and procedures across the National Security Sciences Directorate at Oak Ridge National Laboratory.

This role ensures compliance with DOE and sponsor (e.g. DoW) security policies and procedures as outlined in System Security Plans (SSPs), with a focus on system operations, maintenance, and disposal.

As part of our team, you will be joining a vibrant group of professionals eager to provide premier customer service to ensure people and information technology remain secure. The team is collaborative and strives to ensure security practices and procedures are understood, implemented, and enforced.

Major Duties/Responsibilities:

* Oversee compliance with DOE and DoW cybersecurity policies and SSPs across multiple facilities.

* Conduct routine self-inspections, audits, and incident investigations, ensuring timely resolution and remediation.

* Manage continuous monitoring activities, system recovery processes, and contingency planning.

* Administer access controls, evaluate user accounts annually, and support ISSM in enforcing cybersecurity policy.

* Create, review, and maintain SSPs using Xacta, and support certification and accreditation activities.

* Perform and lead system certification testing, periodic and functional security testing, and annual self-inspections.

* Monitor system audit logs, execute authorized data transfers, and manage classified media in accordance with policy.

* Communicate effectively with stakeholders, document best practices, and deliver user training on security procedures.

* Uphold high ethical standards and maintain a commitment to ES&H protocols

* Deliver ORNL's mission by aligning behaviors, priorities, and interactions with our core values of Impact, Integrity, Teamwork, Safety, and Service. Promote equal opportunity by fostering a respectful workplace - in how we treat one another, work together, and measure success.

Basic Qualifications:

* BS / BA degree in information technology or technical equivalent and a minimum of eight years of experience in cyber security and the C&A process. Additional years of experience may be considered in lieu of a degree.

* Current TS clearance with SCI eligibility

* Previous experience supporting SCI environments

* Security + or equivalent DoD Directive 8570 / 8140 Information Assurance Management Level I - III certification

* Working knowledge of:

* Risk Management Framework (RMF) process & requirements.

* NIST and CNSSI requirements

* Intelligence Community Directive 503 (ICD-503)

* Joint Special Access Program (SAP) Implementation Guide (JSIG)

* Excellent written and oral communication skills

* Demonstrated organizational skills

* Must be organized, self-motivated, and be able to work with minimal guidance

* Excellent written and verbal communication skills with an ability to interface with numerous cognizant security agencies, customers, and senior managers

* Previous experience in developing, testing, and collecting artifacts for RMF packages and BoEs of multiple systems

* Experience in authorized data transfers across multiple systems and different classifications

Preferred Qualifications:

* Eligibility for access to Special Access Program Information

* CISSP, SEC+, or other relevant certifications

* Relevant ISSO / ISSE experience within the DoW or Intelligence Community.

* Experience with DoW/IC cybersecurity practices for on-premises and cloud native Kubernetes-based processing system.

* Knowledge of the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) and configuration standards.

* Working knowledge of Industry Standard tools for purposes of audit reduction, vulnerability scanning, and malware analysis is preferred. Relevant tools include but are not limited to:
Splunk, Tenable Nessus, Host Based Security System (HBSS) components, Security Content Automation Protocol (SCAP) Checker, and STIG viewer.

* Experience with Security Directives, Policies, Publications, and Regulations.

Special Requirements :

* Visa sponsorship is not available for this position.

* Work may involve various physical requirements and working conditions.

* This position requires the ability to obtain and maintain a Secret Compartmented Information (SCI) clearance from the Department of Energy. As such, this position is a Workplace Substance Abuse (WSAP) testing designated position. WSAP positions require passing a pre-placement drug test and participation in an ongoing random drug…