Information Security Analyst - (91633) - Sanmina
Huntsville, AL
About the Job
At SCI Technology, a Sanmina Company, we serve those who serve by delivering innovative, trusted and comprehensive products and services that meet and exceed the unique needs of the Defense and Aerospace sector. From avionics to tactical and airborne communications, counter-UAS, integrated manufacturing and cradle-to-grave product life cycle support, we deliver high-reliability solutions that keep service members connected and protected in the field.
Our heritage dates to 1961, as an early supplier to the space program in Huntsville, Alabama. Today, SCI offers a complete range of Defense & Aerospace solutions through our three business segments – Products, Systems Build, and Life Cycle Services. It’s SCI summed up - ALL WE DO to serve those who serve.
At this time, SCI is recruiting highly qualified candidates whose background and career goals meet our needs for the following position in Huntsville, AL. Please note that due to Department of Defense contract requirements, U.S. CITIZENSHIP IS REQUIRED.
Position Title: Information System Security Officer
Job Purpose
Information System Security Officer supporting classified Information Systems (IS)
SCI is seeking an experienced Information System Security Officer (ISSO) trained professional to directly support our Information System Security Manager (ISSM). The ISSO will be responsible for supporting our National Industrial Security Program (NISP), with involvement in all aspects of classified information system security compliance. The ideal candidate for this job will be an experienced information security practitioner who is goal-oriented, strives to exceed expectations, and demonstrated familiarity with the Risk Management Framework (RMF) process.
Nature of Duties
In this role you will work with engineering, program development, and architecture groups to provide security requirements for new applications and systems. You will contribute to the design, documentation, and deployment of new and existing security technologies while also assisting in the development SSPs and POA&Ms. You must be able to work closely with the entire Cyber Security team and the program team to perform architectural reviews and submissions to support program objectives. You will be responsible for documenting processes and procedures relating to Cyber Security technologies. You will assist the ISSM with maintaining the Cyber Security Roadmap. We need this role to support SCI’s security organization while maintaining customer compliance requirements revolving around DOD, NIST, NISPOM, and DCSA requirements and regulations. As a senior member of the team, you will also be responsible for mentoring other team members on Security technologies and standards.
Experience and Education
Qualifications
- Minimum of a bachelor’s degree in Information Systems, Computer Science, or Cyber-related discipline
- Minimum 5 years IT-related work experience in an ISSO position
- DoD approved baseline IAM Level II related certifications (CAP, CASP+ CE, CISM, CISSP or Associate, GSLC, CCISO, or HCCISP) is required.
- Familiarity with various host, network and cloud-based security technologies
- Familiarity with government and classified systems security requirements
- Experience with NIST SP 800 standards including 30, 53, 82, and 171
- Experience with CNSSI 1253 and 1253F
- Experience with DISA STIGs and SCAP compliance checker
- Experience with DCSA certification authority’s RMF accreditation process and the DCSA DAAPM is required.
- Manage and track security project tasks, including but not limited to, security controls development and implementation, security testing and remediation, compliance tracking, and documentation for management and auditing activities; tracking of closed areas assets.
- Ability to work with all levels of an organization up to the Executive Staff and external customers
- Ability to earn trust, maintain positive and professional relationships, and contribute to a culture of inclusion
- Must be a U.S. citizen or national, U.S. permanent resident (current Green Card holder), or lawfully admitted into the U.S. as a refugee or granted asylum.
- Must be able to obtain and maintain a Secret security clearance
Requirements:
- Applicants selected must have a current Secret security clearance and must meet immediate eligibility requirements for access to Secret classified information
- Experience in a DOD Information Security contractor security environment with demonstrated knowledge of managing classified information systems operation and security.
- Excellent troubleshooting skills and administration of security configurations across multiple operating systems in various environments, to include: Windows, Linux/Unix, utilizing Active Directory/Group Policies, etc. is required.
- Experience with the eMASS tools and demonstrated skills maintaining POA&Ms, artifacts, and SSPs while operating within a continuous monitoring environment is required.
- Assist in the completion of the accreditation process, as applicable, and help maintain the closed areas accredited status as required by DCSA, ISSM, and the requisite ATO.
- Input and update active workflows within the NISP eMASS system to include security artifacts and POA&Ms.
- Assist in implementing and auditing security controls, disaster and contingency plans, incident response plans, configuration management, etc. based on guidance documents such as NIST Special Publications and DISA STIGs
- Perform security assessments and risk analysis including log auditing, vulnerability scanning utilizing the DISA SCAP Compliance Checker and other SIEM toolsets such a SolarWinds, Splunk, QRadar, etc.
- Support the growth, expansion, and continuous modernization of closed and restricted area environment(s) and associated technologies.
- Interact with representatives of the FBI, DCSA, other government agencies, and SCI customers as required.
- Provide weekly update status reports, or as needed.
Sanmina is an Equal Opportunity Employer – M/F/Veteran/Disability/Sexual Orientation/Gender Identity.
This is an ITAR facility and applicants must be a US Citizen.
