Sr. Information Systems Security Officer

Requisition Id 15070 

­­Overview:  

As a U.S. Department of Energy (DOE) Office of Science national laboratory, ORNL has an impressive 80-year legacy of addressing the nation’s most pressing challenges. Our team is made up of over 7,000 dedicated and innovative individuals! Our goal is to create an environment where a variety of perspectives and backgrounds are valued, ensuring ORNL is known as a top choice for employment. These principles are essential for supporting our broader mission to drive scientific breakthroughs and translate them into solutions for energy, environmental, and security challenges facing the nation.

The Field Intelligence Operations Division (FIOD) is seeking a Cybersecurity Specialist to provide day-to-day support for Sensitive Compartmented Information (SCI) and Special Access Program (SAP) systems. Qualified applicants have Information Systems Security Officer (ISSO) experience to support FIOD Operations for classified operations across a wide-breadth of information environments. The ISSO supports the Information Systems Security Manager (ISSM) in the certification and accreditation (C&A) of systems/networks and implementation of cyber security requirements and procedures across the National Security Sciences Directorate at Oak Ridge National Laboratory (ORNL). This role ensures compliance with DOE security policies and procedures as outlined in System Security Plans (SSPs), with a focus on system operations, maintenance, and disposal.

As part of our team, you will help be joining a vibrant group of professionals eager to provide premier customer service to ensure people and information technology remain secure.  The team is collaborative and strives to ensure security practices and procedures are understood, implemented, and enforced.

Major Duties/Responsibilities: 

• Oversee compliance with DOE cybersecurity policies and SSPs across multiple facilities.
• Conduct routine self-inspections, audits, and incident investigations, ensuring timely resolution and remediation.   
• Manage continuous monitoring activities, system recovery processes, and contingency planning.
• Administer access controls, evaluate user accounts annually, and support ISSM in enforcing cybersecurity policy.
• Create, review, and maintain SSPs using Xacta, and support certification and accreditation activities.
• Perform and lead system certification testing, periodic and functional security testing, and annual self-inspections.
• Monitor system audit logs, execute authorized data transfers, and manage classified media in accordance with policy.
  
• Communicate effectively with stakeholders, document best practices, and deliver user training on security procedures.
  
• Uphold high ethical standards and maintain a commitment to ES&H protocols.
• Deliver ORNL’s mission by aligning behaviors, priorities, and interactions with our core values of Impact, Integrity, Teamwork, Safety, and Service. Promote equal opportunity by fostering a respectful workplace – in how we treat one another, work together, and measure success. 
  
  

 Basic Qualifications:

• BS / BA degree in information technology or technical equivalent and a minimum of five years of experience in cyber security and the C&A process
• Previous experience supporting SCI environments
• Security + or equivalent DoD Directive 8570 / 8140 Information Assurance Management Level I - III certification
• Working knowledge of:
• Risk Management Framework (RMF) process & requirements.
• NIST and CNSSI requirements
• Intelligence Community Directive 503 (ICD-503)
• Joint Special Access Program (SAP) Implementation Guide (JSIG)
• Excellent written and oral communication skills
• Demonstrated organizational skills
• Must be organized, self-motivated, and be able to work with minimal guidance
• Excellent written and verbal communication skills with an ability to interface with numerous cognizant security agencies, customers, and senior managers
• Previous experience in developing, testing, and collecting artifacts for RMF packages and BoEs of multiple systems
• Experience in authorized data transfers across multiple systems and different classifications
  

Preferred Qualifications:

• Current TS clearance with SCI eligibility
• Eligibility for access to Special Access Program Information
• CISSP, SEC+, or other relevant certifications
• Relevant ISSO / ISSE experience within the DoD or Intelligence Community.
• Knowledge of the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) and configuration standards.
• Working knowledge of Industry Standard tools for purposes of audit reduction, vulnerability scanning, and malware analysis is preferred. Relevant tools include but are not limited to: Splunk, Tenable Nessus, Host Based Security System (HBSS) components, Security Content Automation Protocol (SCAP) Checker, and STIG viewer.
• Experience with Security Directives, Policies, Publications, and Regulations.

Special Requirements:

• Visa sponsorship is not available for this position.
• Work may involve various physical requirements and working conditions.
• This position requires the ability to obtain and maintain a Secret Compartmented Information (SCI) clearance from the Department of Energy. As such, this position is a Workplace Substance Abuse (WSAP) testing designated position. WSAP positions require passing a pre-placement drug test and participation in an ongoing random drug testing program.  In addition, due to the SCI, you may also be subject to random polygraph testing. 
•  

Benefits at ORNL: 

ORNL offers competitive pay and benefits programs to attract and retain dedicated people! The laboratory offers many employee benefits, including medical and retirement plans and flexible work hours, to help you and your family live happy and healthy. Employee amenities such as on-site fitness, banking, and cafeteria facilities are also provided for convenience.

Other benefits include the following: Prescription Drug Plan, Dental Plan, Vision Plan, 401(k) Retirement Plan, Contributory Pension Plan, Life Insurance, Disability Benefits, Generous Vacation and Holidays, Parental Leave, Legal Insurance with Identity Theft Protection, Employee Assistance Plan, Flexible Spending Accounts, Health Savings Accounts, Wellness Programs, Educational Assistance, Relocation Assistance, and Employee Discounts.

If you have difficulty using the online application system or need an accommodation to apply due to a disability, please email: ORNLRecruiting@ornl.gov

 #LI-ES1

This position will remain open for a minimum of 5 days after which it will close when a qualified candidate is identified and/or hired.

We accept Word (.doc, .docx), Adobe (unsecured .pdf), Rich Text Format (.rtf), and HTML (.htm, .html) up to 5MB in size. Resumes from third party vendors will not be accepted; these resumes will be deleted and the candidates submitted will not be considered for employment.

If you have trouble applying for a position, please email ORNLRecruiting@ornl.gov.

ORNL is an equal opportunity employer. All qualified applicants, including individuals with disabilities and protected veterans, are encouraged to apply.  UT-Battelle is an E-Verify employer.