Senior/ Principal Cyber Information Assurance Specialist - Onsite
Job Description
About Sandia:
Sandia National Laboratories is the nation’s premier science and engineering lab for national security and technology innovation, with teams of specialists focused on cutting-edge work in a broad array of areas. Some of the main reasons we love our jobs:
- Challenging work with amazing impact that contributes to security, peace, and freedom worldwide
- Extraordinary co-workers
- Some of the best tools, equipment, and research facilities in the world
- Career advancement and enrichment opportunities
- Flexible work arrangements for many positions include 9/80 (work 80 hours every two weeks, with every other Friday off) and 4/10 (work 4 ten-hour days each week) compressed workweeks, part-time work, and telecommuting (a mix of onsite work and working from home)
- Generous vacations, strong medical and other benefits, competitive 401k, learning opportunities, relocation assistance and amenities aimed at creating a solid work/life balance*
World-changing technologies. Life-changing careers. Learn more about Sandia at: http://www.sandia.gov*These benefits vary by job classification.
What Your Job Will Be Like:
We are seeking a highly motivated, driven and experienced Information Assurance Specialist to join our dynamic team.
On any given day, you may be called on to:
- Ensure appropriate operational security posture is maintained for a given portfolio of information systems.
- Ensure systems are operated, maintained, and disposed of in accordance with security policies and procedures as outlined in the security authorization package.
- Develop and maintain System Security Plans.
- Manage and control changes to system configurations and assess the security impact of those changes.
- Conduct periodic reviews of information systems to ensure compliance with the security authorization package.
- Determine security requirement gaps and provide recommendations or mitigations for addressing the gaps.
The experienced individual may be assigned the role of Information System Security Officer (ISSO) for multiple information systems, may implement monitoring tools, and will work closely with our Information Security Site Manager (ISSM), other Information System Security Officers (ISSOs) and system administrators to provide interpretation and implementation of NIST/JSIG requirements and guidelines along with validation testing. Also, will collaborate with external entities including the Department of Defense and Intelligence Community agencies to securely enable new and emerging programs and maintain existing program.
DoD 8570 IAM certification must be obtained within the first 9 months of employment. Due to the nature of the work, this candidate must be able to work onsite.
Salary Range:
$95,400 - $185,700
*Salary range is estimated, and actual salary will be determined after consideration of the selected candidate's experience and qualifications, and application of any approved geographic salary differential.
Qualifications We Require:
- Bachelor’s degree in relevant discipline, plus five years experience; or equivalent (AS + 9)
- Experience working in a US Government or government contractor cyber security program
- Understanding of the Risk Management Framework (RMF) and/or NIST 800-53 security controls
- Experience with Windows or Linux operating systems
- Active DOE Q Security Clearance, and the ability to obtain and maintain a DOE SCI Security Clearance which may require a polygraph
Qualifications We Desire:
- Ability to apply cyber security standards, directives, guidance, and policies to an architectural framework
- Experience with continuous monitoring tools (i.e. Splunk, ACAS, Nessus, Security Center, HBSS)
- System administration experience, to include a detailed understanding of common operating systems (e.g. Windows and Linux) and networking architecture
- Experience as an Information System Security Officer (ISSO)
- Familiarity of the Joint Special Access Program Implementation Guide (JSIG)
- Active Certified Information System Security Professional (CISSP), Security+, or job-related DoD 8570 IAM certification
- Excellent written, verbal, and interpersonal communication skills
- Active SCI clearance
About Our Team:
The FIE Cyber Special Programs Department supports the Field Intelligence Element mission by delivering capabilities around information system hardening/accreditation, vulnerability assessment, risk management and forensics with a particular focus on mitigating cyber threats. The Cyber Security staff, consisting of Information Systems Security Managers (ISSMs), Information Systems Security Officers (ISSOs), Alternate ISSOs (AISSOs), and Information Systems Security Engineers (ISSEs), provide effective technical solutions for DOE, DOD and the Intelligence Community.
Posting Duration:
This posting will be open for application submissions for a minimum of seven (7) calendar days, including the ‘posting date’. Sandia reserves the right to extend the posting date at any time.
Security Clearance:
Position requires a Department of Energy (DOE) Q security clearance to start, or equivalent active security clearance with another U.S. government agency (e.g., DOD). Sandia is required by DOE directive to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants for employment need to be able to maintain a DOE Q-level security clearance, which requires U.S. citizenship. If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted.
Applicants offered employment with Sandia are subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment.
EEO:
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or veteran status and any other protected class under state or federal law.
NNSA Requirements for MedPEDs:
If you have a Medical Portable Electronic Device (MedPED), such as a pacemaker, defibrillator, drug-releasing pump, hearing aids, or diagnostic equipment and other equipment for measuring, monitoring, and recording body functions such as heartbeat and brain waves, if employed by Sandia National Laboratories you may be required to comply with NNSA security requirements for MedPEDs.
If you have a MedPED and you are selected for an on-site interview at Sandia National Laboratories, there may be additional steps necessary to ensure compliance with NNSA security requirements prior to the interview date.
Job ID: 694425
Job Family: IT
Regular/Temporary Position: R
Full/Part-Time Status: F
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.