Information System Security Officer (ISSO)

Amentum • Sunnyvale • 4h ago

Amentum is seeking an Information System Security Officer (ISSO) for a contract at the National Aeronautics and Space Administration (NASA) Ames Research Center. The ISSO provides security Subject Matter Expertise (SME) supporting NASA information systems.

Amentum is a leading provider of engineering, scientific, and program management support services to some of the top agencies in the U.S. government, including the Defense Advanced Research Projects Agency (DARPA), NASA, the Department of Homeland Security, and the Intelligence Community.

This is a full-time position based at Moffet Field in Mountain View, CA.

Job Duties and Responsibilities:

Provide technical guidance to address the adequacy and effectiveness of information security policies, procedures, and practices.
Review cyber intelligence threats reports, including but not limited to SOC MARs, SARs, and DHS/CISA Emergency Directives, in order to identify threats to the information system, develop mitigations, and ensure vulnerabilities that require immediate attention are remediated.
Assist the Information System Owner (ISO) and Information System Security Manager (ISSM) in ensuring that all components of the information system are appropriately updated and patched in accordance with Federal and NASA requirements.
Evaluate cloud service providers’ security posture and develop associated recommendations for restrictions, conditions and control responsibility parsing.
Support the Assessment and Authorization (A&A) process through the development and updating of the following: System Security Plan, Contingency Plan, Disaster Recovery Plans, Risk Assessment Report, annual review package, work instructions, policies, and procedural guides affecting the overall IT and security posture of the environment within the NASA Risk Information Security Compliance System (RISCS) system.
Develop and maintain detailed and accurate System Security Plans (SSP), including security documentation for component and interface specifications, to support appropriate cybersecurity and privacy throughout the information systems’ life cycle
Write Plan of Action and Milestones (POA&M’s) and Risk Based Decisions (RBD’s) for the SSP controls.
Support the Government with identifying and prioritizing essential system functions or sub-systems required to support essential capabilities or business functions for restoration or recovery after a system failure or during a system recovery event based on overall system requirements for continuity and availability. Ensure contingency plans and system controls are reviewed and tested in accordance with agency requirements.
Analyze system logs to identify potential issues.
Perform routine audits of systems and applications. Ensure Privacy Threshold Assessments (PTA) and Privacy Impact Assessments (PIA) are conducted as required.
Provide IT security support to communication systems as needed.
Serve as a technical resource to other IT and security professionals.

Required Qualifications:

Must have an active Top Secret US Government Clearance, with the ability to obtain an SCI Clearance. Note: US Citizenship is required to obtain a Government Clearance.
Batchelor’s degree with a minimum of 5 years of professional experience in cybersecurity design and development activities.
Ability to provide practical and creative solutions in a dynamic work environment, while working effectively with a team.
Ability to handle multiple tasks and prioritize effectively in a rapidly evolving environment.

Desired qualifications:

An active SCI US Government Clearance, with the ability to obtain an SCI Clearance. Note: US Citizenship is required to obtain a SCI Clearance.
Experience in NASA security or served as an ISSO in other Government agencies.
Experience in NASA Assessment and Authorization (A&A) process.
Experience in NASA Risk Information Security Compliance System (RISCS) tool.
risk information security compliance system and assessment and authorization.
Experience with cloud services.
Experience with classified networks.
Candidates should be self-starters capable of working both independently and as part of a team.
Certification level to meet DoD 8140 IAT or DoD 8570 IAT Level II certification or higher.

Amentum is proud to be an Equal Opportunity Employer. Our hiring practices provide equal opportunity for employment without regard to race, sex, sexual orientation, pregnancy (including pregnancy, childbirth, breastfeeding, or medical conditions related to pregnancy, childbirth, or breastfeeding), age, ancestry, United States military or veteran status, color, religion, creed, marital or domestic partner status, medical condition, genetic information, national origin, citizenship status, low-income status, or mental or physical disability so long as the essential functions of the job can be performed with or without reasonable accommodation, or any other protected category under federal, state, or local law. Learn more about your rights under Federal laws and supplemental language at Labor Laws Posters.