Information Systems Security Officer (ISSO) Cyber Security Specialist
Fort Worth, TX

Job Description

We are pioneers. We were the first to break the sound barrier and design the first functional jetpack. We were aboard NASA's first lunar mission and brought advanced tiltrotor systems to market. Today, we are defining the future of on-demand mobility. At Bell, we are proud to be an iconic company with superb talent, rapidly creating novel and coveted vertical lift experiences.

Bell is seeking an Information Systems Security Officer (ISSO) Cyber Security Officer to support our global security program.

The ISSO Cyber Security Specialist is responsible for maintaining the appropriate operational security posture for information systems as stipulated by USG requirements including DoDI 8510.01, NIST 800-37, NIST 800-53, JSIG, NISPOM, DSS Assessment and Authorization Process Manual (DAAPM), SIPRNet, and other DoD requirements.

Position Responsibilities:

* Perform the Risk Management Framework (RMF) processes for a given system.
* Support the development of Assessment and Authorization artifacts such as SSPs, SCTM, Protection Profiles, SSP attachments, POA&M, Policies and Procedures, Testing, and documentation.
* Support Information Assurance sustainment through Continuous Monitoring activities as defined by RMF.
* Perform Linux and Windows system administration and maintenance duties including updates to the OS and security related tools.
* Review Linux and Windows audit logs via the Splunk tool and manual methods, and investigate abnormalities found.
* Perform operating systems security features and settings, account and user interface management, group policy management, system audit reviews, problem fixes, AV updates, and other tasks for all DoD systems at the site.
* Conduct vulnerability scanning and remediation/mitigation using DISA SCAP/STIG and other tools.
* Enforce media protection and file transfer procedures.
* Perform hardware and software change management and risk assessments.
* Maintain various types of backups and perform file system and RAID maintenance.
* Conduct information system self-inspection and audits.
* Enforce compliance for Collateral and SAP spaces.
* Conduct Information Assurance Training and Awareness.
* Interface with internal and external customers: ISSM, CPSO, FSO, CSO, Program Managers/Directors, Information Technology, DSS, DoD Customers, and Engineering.
* Utilize strong critical thinking/analytical skills, attention to detail, creativity, and a sustained commitment to excellence and quality.
* Detail oriented with excellent written and verbal communication skills.
* Continuous improvement through training, lessons learned, and knowledge disseminated from the security community.
* Effectively manage one's time and be able to prioritize assigned tasks.
* Willing and able to travel to other locations as required on occasion (less than 5%).

Don't miss the chance to join a diverse, inclusive environment that embodies one of our core values, Lift Each Other Up. As a member of our global workforce, you will collaborate with dedicated, enthusiastic teams where differences in experiences, backgrounds and ideas combined with a strong passion for our products take us above and beyond flight.

Education:

* A Bachelor's Degree in Computer Science, Information Systems, Information Assurance, Cyber Security, or related field of study required.

Required:

* 4 - 6 years' experience in Information System Security and System and Network Administration.
* Active USG Secret security clearance which requires U.S. citizenship.
* Must meet IAT - Level 2 DoD 8570.1-M compliant Professional Certification (Security , CCNA-Security, etc) or be able to gain certification within 6 months of start of employment.
* Experience with Risk Management Framework (RMF).
* Familiarity with the development of System Security Plans (SSPs) and/or supporting Assessment & Authorization (A&A) documentation.
* Experience supporting various computer hardware platforms and multiple operating systems on both stand alone and LAN/WAN configurations.
* Working knowledge of Linux and Windows operating systems security features and settings.
* Ability to use the DISA SCAP/STIG tool to check OS security settings compliance and remediate the findings or perform and document actions to mitigate.
* Use of various hardening and compliance assessment tools and practices such Nessus, SCAP, CIS Benchmarks, and/or the NIST National Vulnerability Database to oversee the implementation and enforcement of security policies.
* Experience with the Splunk tool.
* Candidate must meet background pre-screening requirements for Special Access Programs with the ability to gain a Top-Secret clearance.
* Experience with computer auditing procedures.
* Knowledge of various computer hardware devices and ability to perform basic functions inside a computer (add/remove devices, re-seat cables), perform system BIOS changes, and sanitize a system.
* Proficient use with desktop applications (Word, Excel, Power Point, Access, Visio, Acrobat DC, Libre Office, photo editing tool, etc.)
* Must be able to work individually, as well as part of a team.
* Professional demeanor, good interpersonal skills, and ability to excel in a high-paced multi-tasked environment.

Preferred:

* A minimum of four (4) years' experience in Information Assurance/Security; JSIG/RMF/ DIACAP/NISPOM, and SIPRNet is preferred.
* Active Top-Secret clearance which requires U.S. citizenship.
* Experience with Windows and Linux client/server security administration and the underlying technologies such as TCP/IP, PKI, DNS, AD, LDAP, Kerberos, Winbind, Samba, CIFS, SSSD, MySql, and the OS security subsystem.
* Experience with Linux administration via command line is a plus.
* Experience with backup software such as Netvault or Veam.
* Experience with RAID and NAS technology.
* CISSP Certification.
* RHEL Certification.
* Certified Splunk Architect/Engineer.
* Prior ISSO/Information Assurance Officer (IAO) or Alternate ISSO/IAO is a plus.
* Applicable US Military experience.