Share this Job

Information System Security Officer, PCAPP (219604)

  • Requisition ID:  219604
  • Position Title: Information System Security Officer, PCAPP (219604)
  • Project:  PCAPP
  • Location:  Pueblo, CO
  • Relocation Authorized:  National - Family
  • Position to be Panel Interviewed?  Yes  
  • Must be a US citizen.
  • Other Requirements: All employees are subject and agree to random drug and alcohol testing as a condition of employment and successfully go through a government screening process. Unescorted access required.  Candidate must successfully clear government background check.  Must be able to work safely at Plant site location. Based on project goals and objectives, candidates established within our local community are desirable.

Role Overview
The Pueblo Chemical Agent-Destruction Pilot Plant (PCAPP) is looking for an Information System Security Officer (ISSO) at the Pueblo, CO location. This position will report to the Information System Security Manager at the PCAPP project.

 

This position will fulfill the role of subject matter expert for system(s) cybersecurity controls and provide specialized assistance to system stakeholders for proper configuration and management of the security controls. Trains/informs project team members regarding specific cybersecurity attributes that could affect project execution. Performs a broad range of work that requires the creative application of a wide spectrum of technical and administrative controls necessary to support the Risk Management Framework (RMF) program. Influences policy formation relevant to own areas of expertise. Responsible for guiding system’s stakeholders in the RMF documentation effort from creation through maintenance of the systems’ Authorization package(s), overseeing continuous monitoring, and cybersecurity policy and procedure development.

 

The successful candidate will be a great communicator and have the desire to work in a very dynamic environment while managing changing priorities and meeting project goals. This position requires an individual with strong leadership skills and an inherent desire to continually learn and improve their technical and soft skillsets.

 

This PCAPP position falls under the scope of the McNamara-O’Hara Service Contract Act of 1965 (SCA). The SCA requires PCAPP to provide employees with benefits and wages no less than the amounts the Department of Labor has established for the location and classification in which the employee will be working.

 

This is a long-term assignment with a 9-80 or 4-10 schedule. The work hours are flexible between core business hours. This position may require additional overtime hours as deemed necessary.

 

Principle responsibilities include, but are not limited to:

  • Executes work as directed by the project’s Information System Security Manager (ISSM) in the area of cybersecurity, information security and auditing of technical and administrative controls.
  • Provides technical feedback, development, training and mentoring of peers as necessary to support project mission in areas of cybersecurity.
  • Provides training and support to end user customers as required.
  • Maintains project schedules as delegated by the ISSM.
  • Establishes appropriate technical and administrative procedures, test procedures and auditing guidelines as directed by the ISSM.
  • Initiates and contributes to standards development and facilitates the creation of controls to support the CS program as directed by the ISSM.
  • Supports the cybersecurity program by documenting how technologies and processes can be used to protect key information assets.
  • Leads the development of procedures to implement cybersecurity policies appropriate for the systems to be authorized against unauthorized usage, modification, disclosure and destruction of data/systems.
  • Develops procedures to implement cybersecurity policies appropriate for the systems being authorized to protect against unauthorized usage, modification, disclosure and destruction of data/systems.
  • Supports the project’s cybersecurity awareness program and communicates where needed to reinforce goals and objectives.
  • Participates in the computer incident response team efforts and investigates cybersecurity related incidents as directed by the ISSM.
  • Collaborates with cybersecurity peers on project and across the CS function to identify, define and confirm key threats to information systems and other assets.
  • Investigate irregularities in system logs and recommend corrective actions as appropriate.
  • Perform vulnerability scans, analyze results, and recommend actions to resolve findings.
  • Other duties as defined by the project’s ISSM.

 

Basic Qualifications:

  • Bachelor’s degree in Information Technology, Computer Science, or related discipline from an accredited university and six (6) years of progressive related experience relevant to Information Technology OR in lieu of degree, twelve (12) years of progressive related work experience relevant to Information Technology OR 3 years of experience with Assessment and Authorization (A&A) and/or Certification and Accreditation (C&A) process using the NIST SP 800-37 Rev. 1 (RMF) or DOD DIACAP (or equivalent US government) methodologies.
  • Must be a U.S. Citizen

 

Minimum Qualifications:

  • Capability to meet DODI 8570.01-M IAM II certification within 6 months of employment.
  • Intermediate level of understanding and applying Microsoft Office Suite of applications.
  • 2 years’ experience with the following:
  • Technical Knowledge of RMF NIST SP 800-37 Rev. 1.
  • Technical Knowledge of NIST SP 800-82 Rev 2.
  • Technical Knowledge of NIST SP 800-53 Rev. 4.
  • Technical Knowledge of NIST SP 800-53A Rev. 4.
  • Other NIST 800 series guidance as it relates to supporting an RMF program.
  • Experience using NESSUS or equivalent vulnerability scanning software
  • Strong documentation skills using project provided templates.
  • Strong communication and interpersonal skills to enable both independent and team approach to assigned technical work tasks.
  • Ability to collaborate and maintain solid working relationships with peers internal and external to the project and the NS&E organization.

 

Preferred Qualifications:

This position fulfills an IAM Level II role per DOD 8570.01-M, Information Assurance Workforce Improvement Program. The candidate is required to possess at least one of the credentials noted below within 6 months of the position’s start date. Failure to meet the DOD requirement could result in termination of employment.

  • CAP
  • GSLC
  • CISM
  • CASP
  • CISSP

 

This project is subject to the Army Regulations (AR50-6 Chemical Surety) which governs persons performing work under the Chemical Personnel Reliability Program (CPRP) and Unescorted Access Program (UAP). Depending on the work performed and the access granted a government security investigation and other physical requirements such as respirators may be mandated. Eligibility to be placed in a CPRP or UAP position requires US citizenship.

The following Surety Program marked with an “x” apply to this job:

_____ None / No Program

_____ This position is designated as a Chemical Duty Position and is subject to the requirements of the Chemical Personnel Reliability Program (CPRP). As a condition of employment, candidates and incumbents must favorably complete a series of screenings included but not limited to: a personnel security investigation, urinalysis testing, medical exam and respiratory screening, and must meet and maintain personnel suitability and reliability requirements established by Army Regulations.

__X__ This position is designated as an Unescorted Access Position (UAP). As a condition of employment, candidates and incumbents must favorably complete a series of screenings included but not limited to: a personnel security investigation, urinalysis testing, respiratory screening and must meet and maintain personnel suitability and reliability requirements established by Army Regulations

 

 

Shaping tomorrow together

Bechtel is one of the most respected global engineering, construction, and project management companies. Together with our customers, we deliver landmark projects that foster long-term progress and economic growth. Since 1898, we’ve completed more than 25,000 extraordinary projects across 160 countries on all seven continents. We operate through four global businesses: Infrastructure; Nuclear, Security & Environmental; Oil, Gas & Chemicals; and Mining & Metals. Our company and our culture are built on more than a century of leadership and a relentless adherence to our values, the core of which are safety, quality, ethics, and integrity. These values are what we believe, what we expect, what we deliver, and what we live.  
www.bechtel.com

Bechtel is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.