Oct 21, 2021

Information Systems Security Officer - Entry to Senior - Maryland Location

  • National Security Agency
  • Fort Meade, MD, USA

Job Description

The professionals at the National Security Agency (NSA) have one common goal: to protect our nation. The mission requires a strong offense and a steadfast defense. The offense collects, processes, and disseminates intelligence information derived from foreign signals for intelligence and counterintelligence purposes. The defense prevents adversaries from gaining access to sensitive classified national security information. Are you an Information System Security Officer (ISSO)? Do you want to be at the forefront of strengthening our National Cybersecurity posture; do you want to do work you can't do anywhere else? Do you want to help chart the course for NSA's innovative Cybersecurity and help prevent future cyber-attacks against the United States? If so, NSA is the place for you! Information System Security Officers are responsible for ensuring the appropriate operational security posture is maintained for an information system (IS). ISSO responsibilities support the monitoring of NSA/CSS networks to detect and correct areas of security non-compliance, unmitigated vulnerabilities, and other risks in order to prevent insider threats and adversary activity. ISSOs follow consistent security processes and play a critical role in the Information Systems Continuous Monitoring (ISCM) Program to support the agency's need to continuously operate its information assets within an acceptable security posture and coordinate a proactive response as the threat environment changes. Information System Security Officers perform a broad spectrum of duties and may: - perform audits, inspections, and investigations in accordance with government regulations and make appropriate recommendations for improvement - provide technical support to the security certification and accreditation process - work collaboratively with stakeholders on the risk assessment process - coordinate hardware/software/firmware modifications within the Risk Management Framework - assess the effectiveness of security solutions against present and projected threats

Do you want to utilize your Information Systems Security Officer expertise to help NSA strengthen the National Cybersecurity posture; apply here!

Salary Range: $49,157 - $78,167 (Entry/Developmental) *The qualifications listed are the minimum acceptable to be considered for the position. Salary offers are based on candidates' education level and years of experience relevant to the position and also take into account information provided by the hiring manager/organization regarding the work level for the position. Entry is with a Bachelor's degree and no experience. A high school diploma or GED plus 4 years of relevant experience; or an Associate's degree or 18 semester hours of military coursework/training in a computer-related field plus 2 years of relevant experience may be considered. Degree in Information Assurance, Information Security, Information Systems, Information Technology, Computer Networking, Information Science, Cyber Security, or related is preferred. Relevant experience must be in information systems design, development, programming, information/computer/cyber/network security, vulnerability analysis, system auditing, penetration testing, computer forensics, computer systems research, reverse engineering, and/or systems engineering (i.e., requirements analysis, design, implementation, testing, integration, deployment/installation, and maintenance). Experience in the Risk Management Framework (RMF), Information Systems Security technologies, IT policies, and ability to interpret policies and directives is desired. Network and system administration may be used to meet the relevant experience requirement. Continued assignment to this work role is contingent upon compliance with NSA's Cyberspace Workforce Improvement Program (CWIP) per NSA/CSS Policy 6-34; Information Assurance Manager (IAM) Tier 1 certification requirements must be met within 6 months of assignment to the position. Maintaining certification status is required through continuous education training or sustainment training while serving in this work role. Salary Range: $72,750 - $113,362 (Full Performance) *The qualifications listed are the minimum acceptable to be considered for the position. Salary offers are based on candidates' education level and years of experience relevant to the position and also take into account information provided by the hiring manager/organization regarding the work level for the position. Entry is with a Bachelor's degree plus 3 years of relevant experience, or a Master's degree plus 1 year of relevant experience or a Doctoral degree and no experience. A high school diploma or GED plus 7 years of relevant experience, or an Associate's degree or 18 semester hours of military coursework/training in a computer-related field plus 5 years of relevant experience may be considered. Degree in Information Assurance, Information Security, Information Systems, Information Technology, Computer Networking, Information Science, Cyber Security, or related is preferred. Relevant experience must be in information systems design, development, programming, information/computer/cyber/network security, vulnerability analysis, penetration testing, computer forensics, computer systems research, reverse engineering, and/or systems engineering (i.e., requirements analysis, design, implementation, testing, integration, deployment/installation, and maintenance). Experience in the Risk Management Framework (RMF), Information Systems Security technologies, IT policies, and ability to interpret policies and directives is desired. Network and system administration may be used to meet some, but not all, of the relevant experience requirement. Continued assignment to this work role is contingent upon compliance with NSA's Cyberspace Workforce Improvement Program (CWIP) per NSA/CSS Policy 6-34; Information Assurance Manager (IAM) Tier 1 certification requirements must be met within 6 months of assignment to the position. Maintaining certification status is required through continuous education training or sustainment training while serving in this work role. Salary Range: $103,690 - $159,286 (Senior) *The qualifications listed are the minimum acceptable to be considered for the position. Salary offers are based on candidates' education level and years of experience relevant to the position and also take into account information provided by the hiring manager/organization regarding the work level for the position. Entry is with a Bachelor's degree plus 6 years of relevant experience, or a Master's degree plus 4 year of relevant experience or a Doctoral degree plus 2 years of relevant experience. A high school diploma or GED plus 10 years of relevant experience, or an Associate's degree or 18 semester hours of military coursework/training in a computer-related field plus 8 years of relevant experience may be considered. Degree in Information Assurance, Information Security, Information Systems, Information Technology, Computer Networking, Information Science, Cyber Security, or related is preferred. Relevant experience must be in information systems design, development, programming, information/computer/cyber/network security, vulnerability analysis, penetration testing, computer forensics, computer systems research, reverse engineering, and/or systems engineering (i.e., requirements analysis, design, implementation, testing, integration, deployment/installation, and maintenance). Experience in the Risk Management Framework (RMF), Information Systems Security technologies, IT policies, and ability to interpret policies and directives is desired. Network and system administration may be used to meet some, but not all, of the relevant experience requirement. Continued assignment to this work role is contingent upon compliance with NSA's Cyberspace Workforce Improvement Program (CWIP) per NSA/CSS Policy 6-34; Information Assurance Manager (IAM) Tier 1 certification requirements must be met within 6 months of assignment to the position. Maintaining certification status is required through continuous education training or sustainment training while serving in this work role.

The optimal candidate is someone with strong organizational, analytical, communication, and interpersonal skills. Specialized skills may include preventing, assessing, and/or mitigating threats to information systems and infrastructures and the information contained in or transmitted by these systems. This may encompass: - threat and vulnerability analysis - risk mitigation - certification and accreditation - Risk Management Framework Skills applying standards, policies, procedures and requirements for ensuring information security are also beneficial. Industry certifications such as CISSP, CAP, Security+ or MSIS are helpful. If you want to utilize your ISSO expertise to help NSA strengthen the National Cybersecurity posture; you need to talk to us!

On-the job training, Internal NSA courses, and external training will be made available based on the need and experience of the selectee. Work Schedule: Monday - Friday, with basic 8hr/day work requirements between 0600 to 1800 (flexible).