Intel Information Security System Officer ISSO United States, California, Santa Clara 714874642
The GITS team is part of Intel's Information Security organization and supports the unique IT Information Security and Compliance requirements for Intel Federal LLC, a subsidiary of Intel that delivers products and/or services to the U.S. Government (USG). As part of the GITS team, you will help us grow our secure solution suite to meet U.S. Government requirements for data safeguarding.
In this role, you will be part of an Agile team, tasked with supporting, improving, and expanding our secure solutions to enhance Intel Government Technology capabilities, with a continuous focus on regulatory compliance for U.S. Government contracts.
Primary duties and responsibilities:
- Oversee the security posture of information systems and develop/revise necessary Risk Management Framework (RMF) documentation to support system authorization.
- Create and update standard RMF artifacts, including the System Security Plan (SSP), Plan of Action and Milestones (POAM), Security Controls Traceability Matrix (SCTM), hardware and software inventories, and network topology diagrams.
- Assist in the development and implementation of security policies and procedures required by assessment and authorization activities, in accordance with directives such as ICD-503, DAAPM, NISPOM, JSIG, and NIST 800-53.
- Provide guidance and direction to program personnel, ensuring effective communication within the role.
- Collaborate with system administrators and network engineers to ensure timely application of security patches and secure configurations in line with Security Technical Implementation Guides (STIGs).
- Minimal travel required.
Core Functions:
- Develop and maintain Certification and Accreditation (CA) package documentation, including System Security Plans (SSPs), Plan of Actions and Milestones (POAM), Risk Assessment Reports, and System Requirements.
- Validate security policies and procedures outlined in the System Security Plan (SSP), customer policies, and regulations, ensuring adherence to local policies.
- Assist with information system security management and day-to-day security operations.
- Serve as a member of the Change Control Board (CCB) to ensure configuration management forCybersecurity-relevantsoftware, hardware, and firmware is maintained and documented.
- Ensure all personnel receive the necessary technical and security training to perform their duties effectively.
- Conduct security reviews of proposed changes or additions to the information system (including hardware or software) and advise the Information System Security Manager (ISSM) on security relevance.
- Perform vulnerability/risk assessment analysis to support continuous monitoring and the certification and accreditation process.
You must possess the below minimum qualifications to be initially considered for this position. Preferred qualifications are in addition to the minimum requirements and are considered a plus factor in identifying top candidates. Experience listed below would be obtained through a combination of your degree, research and or relevant previous job and or internship experiences.
This position involves work on U.S. Government Contracts and/or proposals for U.S. Government Contracts that limit participation to U.S. Citizens. A person may be required to provide proof of U.S. Citizenship in order to comply with U.S. government requirements. Any offer by Intel for this position is conditioned upon satisfying any government requirements regarding proof of citizenship.
Minimum Qualifications:
U.S. Citizenship required.
Ability to obtain an active U.S. Government Top Secret/SCI clearancewith polygraph.
Possess a bachelor’s degree and a minimum of 5+ years of relevant experience inthe Government Information Technology (IT) and Information Security Industry, or a High School Diploma with at least 8+ years of relevant experience in the Government Information Technology (IT) and Information Security Industry.
Must hold at least one of the following certifications: Security+ CE, CASP+(SecurityX), CISSP, CySA+, GICSP, GSEC, CND, or SSCP.
2+ years’ experience with the NIST Risk Management Framework (RMF), JSIG, NIST 800-53, and ICD-503.
2+ years’ experience with Security Technical Implementation Guides (STIGs), Security Content Automation Protocol (SCAP), and Security Requirements Guides (SRGs).
2+ years’ experience in maintaining Information System package documentation, including System Security Plans (SSP), Plan of Action and Milestones (POAMs), Risk Assessment Reports (RAR), Security Assessment Reports (SAR), Security Requirements Traceability Matrix (SRTM), and hardware and software inventories.
Preferred Qualifications:
Active U.S. Government Top Secret/SCI clearance.
Working knowledge of industry-standard tools for audit reduction, vulnerability scanning, and malware detection, such as Splunk, Tenable Nessus, Security Content Automation Protocol (SCAP) Checker, and STIG viewer.
Experience in administering and operating IT technologies, including Microsoft Windows, Linux, networks, firewalls, and virtual cloud environments.
Experience with multiple encryption methodologies for data in transport and at rest.
Experienced HireShift 1 (United States of America)US, California, Santa ClaraPosition of Trust
offer a total compensation package that ranks among the best in the industry. It consists of competitive pay, stock, bonuses, as well as, benefit programs which include health, retirement, and vacation. Find more information about all of our Amazing Benefits here:
Annual Salary Range for jobs which could be performed in the US:
This role will require an on-site presence. * Job posting details (such as work model, location or time type) are subject to change.
משרות נוספות שיכולות לעניין אותך
