Criterion Systems Information System Security Officer in Las Vegas, Nevada

At Criterion Systems, Inc., we developed a different kind of business—a company whose real value is a reputation for excellence built upon the collective skills, talents, perspectives, and backgrounds of its people. Our Offerings: *100% employee-owned private Government contractor founded in 2005. *High retention rate because we work hard at holding onto talent. *Excellent Leadership Team comprised of individuals who have successfully built and run businesses and are involved in day-to-day operations to include an open-door policy. We are as large in 2017 as we have ever been! Our employees are the most valuable assets. Are you ready to be appreciated?

Criterion Systems has an immediate opening for anInformation System Security Officer (ISSO)to join an Information Assurance team on a project with the U.S. Department of Energy. This position is located in Las Vegas, NV, with occasional travel to other project and client locations.

The candidate shall have knowledge of information systems security concepts and technologies to support a government agency. The position will assist in the implementation of the Risk Management Framework (RMF) and ensure information system-related security risk are managed consistent with organizational business and mission objectives. Knowledge of regulatory requirements and standards such as Security Technical Implementation Guides (STIGs), National Institute of Standards and Technology (NIST) Special Publication (SP) 800 series, Federal Information Processing Standards (FIPS), Office of Management and Budget (OMB) guidance, and other relevant standards is required.

Duties and Responsibilities:

  • Document, coordinate, and implement Information System security policies and procedures.

  • Participate in the development of risk assessments

  • Assist in the development and presentation of Information System security awareness training

  • Understand and apply the Risk Management Framework to information; generate security plans, conduct risk assessments, apply STIGs to harden systems, and develop and conduct Security Testing and Evaluation (ST&E)

  • Assist with configuration management and the Configuration Control Board processes

  • Perform internal self-assessments and programmatic inspections

  • Maintain audit logging systems and analyze security audit logs for anomalies

  • Research cyber security trends and technologies

  • Provide computer security support for an enterprise network environment

  • Perform vulnerability assessments of new and existing systems utilizing industry standard tools

  • Assist in the development and implementation of continuous monitoring program

Qualifications/Requirements:

  • US Citizenship

  • Active Q or TS (or higher) clearance or the ability to obtain a Q or TS clearance is required.

  • Knowledge of agency policies, Executive Orders, FIPS Publications, OMB A-130, Public Laws, and NIST SP800 series. Skills must be consistent with the ability to perform functions related to all aspects of computer security

  • Ability to operate under limited supervision, communicate effectively with network engineers, take independent action, analyze problems, and provide focused solutions

  • Ability to support a rapidly changing environment with short suspense deliverables and diverse work assignments

  • Professional demeanor, good people skills, the ability to excel in a multi-tasked and dynamic environment, prioritize tasks, and manage to schedule

Desired Qualifications:

  • Bachelor’s Degree in a related field with appropriate background and knowledge of current industry technologies and industry standards for enterprise networks. 4 years of work experience in computer and information technology related field may be considered as substitution for BS

  • Prior experience with a mix of the following:

  • Tenable Security Center

  • Windows, LINUX

  • Network infrastructure security (Cisco)

  • Blue Coat

  • Splunk

  • Tripwire

  • Current GSEC and/or CISSP certifications or the ability to obtain a certification within 6 months of hire (Other technical certifications or specialized training can be substituted)

The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, duties, skills, or working conditions.

Criterion Systems is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.