Sandia National Laboratories Cyber Assurance Specialist - Information Systems Security Officer (ISSO) (Early/Mid-Career) in Albuquerque, New Mexico
This posting will be open for application submissions for a minimum of seven (7) calendar days, including the ‘posting date’. Sandia reserves the right to extend the posting date at any time.
Sandia demonstrates its commitment to public safety in the national interest by requiring that all new hires attest to their vaccination status before commencing employment. The requirement also applies to those who are telecommuting and working virtually.
Any concerns about the ability to meet this requirement should be directed to HR Solutions at (505) 284-4700.
Are you passionate about your work and dream of utilizing state-of-the-art facilities to explore solutions? Would you like to join a dynamic team that enables the success of the United States Intelligence Community (IC)? If so, we encourage you to explore this new and exciting opportunity within Sandia National Laboratories!
The Field Intelligence Element (FIE) Cyber Security Operations Team provides Cyber Security for the Intelligence Community. We are seeking a highly motivated and driven Cyber Assurance Specialist / Information Systems Security Officer (ISSO) performing accreditation and assessment services in alignment with NIST Risk Management Framework (RMF) to ensure the confidentiality, integrity, and availability of our information systems. This requires close partnership within our experienced Cyber Assurance Team, mission partners, and our Intelligence Community sponsors. Our ideal candidate has experience interpreting and implementing cyber security policies, accreditations, and assessments, as well as a history of successful customer partnerships delivering compliant, risk-managed information systems in support of our nation’s top national security challenges. This job may require travel for training, work duties, and engagement with sponsors and customers, on an as-needed basis.
On any given day, you may be called on to:
Aid in the development of system accreditation planning, testing activities,
Perform regular assessments of information systems to maintain their security posture and accreditation statuses, including the use of the NIST Continuous Monitoring Framework and tools,
Analyze and mitigate risks to ensure compliance, including the management of corrective measures (POA&Ms),
Provide interpretation of NIST/CNSSI requirements and guidelines along with validation testing,
Participate in incident response team activities,
Develop and execute cyber security test plans and/or cyber policies,
Support our FIE Cyber Security Operations services,
Engage our mission partners to understand system requirements and goals, and
Provide recommendations to internal and external senior leadership.
Bachelor's degree in Management Information Systems, Information Assurance, Computer Science, or other relevant field,
or master's degree in above subject areas or related field,
or combination of education and experience that are demonstrably equivalent to the requirement above,
Experience and understanding of the Risk Management Framework as detailed in NIST publications,
Experience applying cyber security standards, directives, guidance, and policies to information systems,
Ability to travel for training, work duties, and project engagement as needed, and
Ability to obtain and maintain DOE Q and SCI clearances which may require a polygraph test.
Hands-on experience obtaining and maintaining information system accreditations from Department of Energy (DoE) or Department of Defense (DoD) program requirements,
Experience with Federal cyber security requirements, developing and managing security plans,
Industry-recognized Cyber Security certifications (e.g., CEH, CISM, CISSP, GIAC),
Technical and/or project leadership experience,
Experience with vulnerability and patch management,
Experience with continuous monitoring tools (e.g., Splunk, Nessus, Security Center),
Experience with cloud service providers Amazon Web Services or Microsoft Azure,
Experience with SOAR (security, orchestration, automation, and response),
Experience with operating systems to include Windows and Linux, and
Experience with networking.
The FIE Cyber Security Operations Team supports the Field Intelligence Element mission by ensuring effective cyber information assurance services and technical solutions for various Intelligence Community (IC) missions. This includes system accreditations and assessments, cyber security engineering, continuous monitoring, TEMPEST evaluations, incident response, and COMSEC services and support. Our team consists of a variety of professionals to deliver these services, including Information Systems Security Managers (ISSMs), Information Systems Security Officers (ISSOs), Information Systems Security Engineers (ISSEs), TEMPEST professionals, and COMSEC professionals.
Sandia National Laboratories is the nation’s premier science and engineering lab for national security and technology innovation, with teams of specialists focused on cutting-edge work in a broad array of areas. Some of the main reasons we love our jobs:• Challenging work with amazing impact that contributes to security, peace, and freedom worldwide• Extraordinary co-workers• Some of the best tools, equipment, and research facilities in the world• Career advancement and enrichment opportunities• Flexible work arrangements for many positions include 9/80 (work 80 hours every two weeks, with every other Friday off) and 4/10 (work 4 ten-hour days each week) compressed workweeks, part-time work, and telecommuting (a mix of onsite work and working from home)• Generous vacations, strong medical and other benefits, competitive 401k, learning opportunities, relocation assistance and amenities aimed at creating a solid work/life balance*
World-changing technologies. Life-changing careers. Learn more about Sandia at: http://www.sandia.gov*These benefits vary by job classification.
Sandia is required by DOE to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants for employment need to be able to obtain and maintain a DOE Q-level security clearance and SCI access, both of which require US citizenship. SCI access may also require a polygraph examination. If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain these levels of access may be impacted.
Applicants offered employment with Sandia are subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by the DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or veteran status and any other protected class under state or federal law.