Job Description

Description



As an Information Systems Security Officer (ISSO), you will ensure that the GSFC Flight Dynamics Facility (FDF) IT infrastructure is secure and in compliance with NASA security policies. This position supports a group of flight dynamics engineers in the GSFC Flight Dynamics Facility (FDF). The FDF is a NASA Mission Essential Infrastructure facility that provides multi-mission services for a wide range of robotic and human space flight spacecraft missions like James Webb Space Telescope (JWST), Artemis missions to the moon and SpaceX Dragon vehicle support.



Responsibilities


Ensure implementation and maintenance of the System Security Plan (SSP) and its compliance to Federal Information Processing Standards (FIPS), STIGS & NIST standards.

Identify and recommend a remediation Plan of Actions & Milestones (POA&M) as required security findings and non-compliance.

Document Risk-Based Decisions (RBD) when required and keep Gemini current with artifacts/body of evidence.

Conduct Risk Assessments (RA) and provide vulnerability reports against new and existing infrastructure to minimize organizational and environmental risk.

Responsible for preparing, planning, and coordinating the annual A&A (assessment and accreditation) to obtain and renew the contracts Authorization to Operate (ATO) from the Agency.

Create and maintain up to date security documents and provide continuous monitoring efforts to ensure policies, regulations, and operating procedures are concurrent with the latest FIPS, CSET, NIST, and NASA Procedural Requirements.

Keep technical staff and stakeholders informed of current and future requirements/configuration changes.


Conduct vulnerability scans through Nessus Scanner and provide remediation efforts and guidance to mitigate risks.



Required Degree & Experience


BA or BS in Technology or related field or equivalent experience, 4 + years of experience.

CompTIA Security+


Required Skills


TCP/IP networking and troubleshooting

Understanding access controls

SSH, Firewalls, and VPN's

Scanning operating systems for vulnerabilities and identifying remediation methods

User level knowledge of Windows server and Linux systems

Attention to detail and ability to write technical documentation that is consistent with federal guidelines

Understanding of NIST Standards, FIPS, and Risk Management Framework (RMF)

Risk detection and mitigation

Previous enterprise government security experience


Desired Skills


CISCO UCS, NetApp SAN ESi or ESX hosts, SRM, VMware

HP-UX

AWS

Active Directory

SentinelOne


Security Clearance Requirements


Must be eligible to obtain a DoD Secret Security Clearance


About Us



Pearl River is an SBA certified HUBZone small-disadvantaged business (SDB) providing professional, technical, and administrative support services to federal, state and local government agencies. Through our support and commitment to the HUBZone program, we successfully offer our customers the highest quality of service, while creating opportunities and growth for our employees.



US citizenship required / EEO/AA / E-Verify Participation



As an Equal Employment Opportunity/Affirmative Action employer, Pearl River Technologies LLC provides equal employment opportunity to all employees and applicants without regard to an individual's protected status, including race/ethnicity, color, national origin, ancestry, religion, creed, age, gender, gender identity/expression, sexual orientation, marital status, parental status, including pregnancy, childbirth, or related conditions, disability, military service, veteran status, genetic information, or any other protected status.