Information Systems Security Officer ISSO
Penn State University
The Information Systems Division of The Applied Research Laboratory (ARL) at Penn State University, is seeking an experienced Information Systems Security Officer (ISSO) to support Information Security requirements at our remote facility in Reston, Virginia. Responsibilities include: Develop security test plans, configurations, and certifications and accreditations/plans of action and milestones; develop and execute risk assessments; monitor and assist in system and network review; and monitor and assist in the technical requirements of vulnerability scanning, security log review, and security configuration review. This job will be filled as a level 2 or level 3, depending upon the successful candidate's competencies, education, and experience. Typically requires a Bachelor's degree or higher plus two years of related experience, or an equivalent combination of education and experience for a level 2. Additional experience and/or education and competencies are required for higher level jobs. A Bachelor’s Degree in Cyber and Information Security, Information Technology, or Computer Science is preferred. Other preferred experience includes: At least two years of operational experience with familiarity in security/event log auditing; vulnerability scanning and mitigation utilizing Nessus, Retina, or similar tools; familiarity with Windows and Unix/Linux operating system administration; TCP/ IP Network analysis and network/packet level examination tools such as tcpdump, Zenmap, or Wireshark; familiarity with network monitoring tools such as Bro, Suricata, or Snort; familiarity with SEIM management such as Splunk or ELK; and familiarity with VMWare and management of virtual machines. Requirements include: Knowledge in certification and accreditation process such as RMF and DIACAP; policy and procedure development; test plan creation; security plan development; plan of action and milestone development; training material development; risk assessment planning and preparation; knowledge in NIST/ISO standards, DoD and IC directives, and regulatory requirements; and knowledge in defining and interpretation of audit requirement.To be successful, you must possess: effective analytical and problem solving skills; excellent communication skills; efficient organizational and multitasking skills; the ability to work independently and effectively in teams across multiple IT disciplines to ensure timely completion of tasks and projects; and the ability to certify and maintain information security related certification (Security+, CASP, GSEC, CISM, CISSP). Candidate selected will be subject to a government security investigation. This position is located in Reston, VA; occasional travel to State College will be required. You must be a U.S. citizen to apply. Employment with the Applied Research Laboratory will require successful completion of a pre-employment drug screen. NOTE: A competitive salary will be based on the Reston, VA, area and not the stated PSU salary bands. The Applied Research Laboratory (ARL) at Penn State University is committed to diversity, equity, and inclusion; we believe this is central to our success as a Department of Defense designated University Affiliated Research Center (UARC). We are at our best when we draw on the talents of all parts of society, and our greatest accomplishments are achieved when diverse perspectives are part of our workforce.
These salary bands have been established to provide salary guidelines for staff positions.