Title: Space C2 – Information Systems Security Officer (ISSO)
Location: Colorado Springs, CO
Clearance: TS/SCI preferred
Company Overview:
Cornerstone Defense, in partnership with our military, intelligence, and civil government customers, supports U.S. operations worldwide through the use of many different types of intelligence, satellite, and cyber technologies. Cornerstone’s Intelligence Sector provides solutions to the United States Government for information collection, operations, exploitation and dissemination, and research activities. Our Team specializes in software development, cloud architecture, systems and network engineering, systems integration, agile management, as well as targeting operations and intelligence analysis. Our support to our mission customers includes cyber network operations, exploitation and defense, signals intelligence, human intelligence, and critical missions and networks.
General Requirements:
Perform security analysis of operational and development environments, threats, vulnerabilities, and internal interfaces to define and assess compliance with accepted industry and government standards
Lead and implement the Assessment and Authorization (A&A) processes under the Risk Managed Framework (RMF) for new and existing information systems
Facilitates development of Memorandums of Understanding (MOU), Interconnection Security Agreements (ISA), Risk Acceptance Letters (RAL) and support Continuous Monitoring (CONMON)
Oversees configuration management of assigned systems; auditing systems to ensure security posture integrity
Partner with Information Technology, Program Engineering, and Management with security requirements
Conduct risk assessments and investigations, execute appropriate risk mitigations, and oversee incident response activities
Serves as organization spokesperson on advanced projects and programs. Acts as advisor to management and customers on advanced technical research studies
Interfaces with the appropriate government customers, suppliers, and company personnel to implement protective mechanisms and to ensure understanding of and compliance with cybersecurity requirements
Maintain and enforce all Information System Security policies, standards, and directives to ensure assessment and authorization of information systems processing classified information
Required Experience:
IAM Level 1 DoD 8140.01 (previously 8570.01) compliant certification (i.e. CAP, GSLC, Security+ CE, CISSP, CASP, CISM, GSLC)
3+ years of experience utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include: NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS
Experience with cybersecurity policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, CNSSI 1253, ICD-503, JSIG, and/or NIST SP 800 series
Experience as an Information System Security Officer (ISSO) implementing or managing cybersecurity requirements on classified systems under JSIG, NISPOM, ICD 503, and/or CNSSI 1253
Experience in assessing and documenting test or analysis data to show cybersecurity compliance
Demonstrated experience leading audits conducted by external stakeholders