| The University of Washington (UW) is proud to be one of the nation's premier educational and research institutions. Our people are the most important asset in our pursuit of achieving excellence in education, research, and community service. Our staff not only enjoys outstanding benefits and professional growth opportunities, but also an environment noted for diversity, community involvement, intellectual excitement, artistic pursuits, and natural beauty. |
The Applied Physics Laboratory at the University of Washington (APL-UW) is a national center for advanced science and engineering research and development and education. APL-UW was formed in 1943 for the U.S. Navy to bring university research resources to bear on urgent WWII defense problems. APL-UW has developed an international reputation for its broad based programs in science, engineering and for designing, building, and deploying the advanced technology required to meet the research needs of numerous government and commercial sponsors. With modern facilities, equipment and over 350 talented researchers and staff, APL-UW provides a unique, dynamic work environment with many opportunities.
APL has an outstanding opportunity for a full time Information Systems Security Officer (ISSO).
Reporting through University of Washington Facility Security Officer (FSO) to the Applied Physics Laboratory University of Washington (APL-UW) Information Security Manager (ISSM), the incumbent will serve as the APL-UW's Information Systems Security Officer (ISSO). As such the position will coordinate directly with the ISSM in managing all aspects of APL-UW's (and the University's industrial security information systems security program, including but not limited to information system security operations, physical security as it relates to information systems security, compliance with federal policies and regulations, information systems security training, and other security issues as assigned.
This position will provide classified computer/network technical and administrative support to the University of Washington, Navy University Affiliated Research Center (UARC) as an Information Systems Security Officer. As such the position coordinates with the Information System Security Manager (ISSM) in managing all aspects of APL-UW's (and the University's) industrial security information systems security program, including but not limited to information system security operations, physical security as it relates to information systems security, compliance with federal policies and regulations, information systems security training, and other security issues as assigned.
The ISSO manages the APL-UW information system security resources while maintaining complete security compliance and effective systems. The primary job duties are to assist in developing, implementing, and managing effective and efficient information system security practices that are compliant with continually evolving national security federal laws, policies, regulations, and guidelines. The position requires the ISSO to continuously integrate information gathered from a variety of sources into APL-UW information systems security practices, coordinating with the ISSM and/or FSO to ensure consistency as appropriate across the broad University's industrial security program.
Technical Security Operations:
The ISSO works with the APL- UW's ISSM to ensure that the APL-UW's Secret Internet Protocol Routed Network (SIPRNet) enclave maintains compliance with Defense Information Systems Agency (DISA) requirements. The ISSO ensure users are correctly following the security procedures. The ISSO configures, updates, and monitors SIPRNet network infrastructure devices consisting of routers, firewalls, intrusion detection/prevention components, and switches. The ISSO is responsible for the local Host Based Security System (HBSS) implementation and operation. The ISSO interfaces directly with the Computer Network Defense Service Provider (CNDSP) to provide support related to CNDSP subscription services. The ISSO use tools authorized by DISA to test the system, i.e. vulnerability scanner, Security Technical Implementation Guide (STIG) compliance checker, and antivirus. Maintains compliance records for SIPRNet network infrastructure using Continuous Monitoring and Risk Scoring web based system or other locally developed risk management tools. Completes required and recommended training activities necessary to maintain technical proficiency and required certifications.
Classified Security Systems:
The ISSO ensures that all remaining classified computing systems are established/maintained in compliance with Defense Security Service (DSS requirements, ensures users are correctly following proper security procedures, and that all classified information systems are properly secured. The ISSO works collaboratively with the ISSM to develop, document and present information system security education, awareness and training; establish, document, implement, and monitor the industrial information systems security information systems program, ensuring compliance with federal policy and regulations; identify and document any unique information system security threats; conduct periodic information system self-inspections and coordinate corrective actions for all findings; conduct certification tests and certify to DSS that that all required information system protection measures are in place and provide the necessary protections; and other responsibilities described in applicable federal information system security requirement documents. The ISSO is responsible for ensuring weekly security checks of all accredited systems are completed. As necessary, the ISSO performs system administration functions for modern operating systems and applications, including but not limited to Microsoft Windows and Red Hat Enterprise Linux operating systems, such as installing and configuring operating systems, installing patches and updates, adjusting security controls to meet federal requirements, monitoring operation, and creating and managing system back-ups. The ISSO ensures System Security Plans for all classified computing areas assigned to his/her responsibility are maintained.
The ISSO remains available during core business hours to support users of classified or unclassified computing systems by providing guidance and training on security policy, plans and procedures; performing system administrator functions; ensuring critical information is backed-up; and adding or removing classified systems. For all active users, the ISSO verifies their clearance and needs to use the systems assigned to his/her responsibility annually. The ISSO will assist in developing and administering Controlled Unclassified Information(CUI) compliance and auditing policies associated with APL- UW unclassified network. The ISSO will perform Information Assurance (IA) duties as assigned by the ISSM.
Bachelor's Degree in Information Systems, Computer Science, Computer Engineering or Information Security or related field and six years of progressively responsible experience as a Network Engineer, Network Administrator or Security Administrator WITH the appropriate industry recognized certifications
Microsoft supported server operating system certifications and/ or network administration level certification
Demonstrated ability to work independently, make critical decisions, and work effectively with all levels of the organization
DoDD 8140, Tech Level III or MGT Level II or III Certification
Defense Information System Agency (DISA) Host Based Security System (HBSS) trained with certification
DISA Assured Compliance Assessment Solution (ACAS) trained with certification
Experienced with NIST 800-53 standards
Equivalent education/experience will substitute for all minimum qualifications except when there are legal requirements, such as a license/certification/registration. Certification in computer operations and security as required by federal requirements (e.g., Global Information Assurance Certification (GIAC)) and Certified Information Systems Security Professions (CISSP)
Certifications in Cyber Forensics, Insider Threat, Incident Handling
| Appointment to this position is contingent upon obtaining satisfactory results from a criminal background check. |
May be subject to successful completion of E-Verify process.
Ability to acquire and maintain a Department of Defense SECRET personnel security clearance.
Ability to acquire and maintain required CISSP Certification.
This position requires a flexible work schedule and the normal work schedules may often extend beyond normal University business hours (8am-5pm). The incumbent must be present at APL during core business hours. The incumbent must be available to rapidly respond to security alarms during all hours (must be able to respond within one hour to APL when on-call during evenings, weekends, and holidays). Work beyond the normal 40-hour week, including evenings, nights, and weekends, may be required.
The application process for UW positions may include completion of a variety of online assessments to obtain additional information that will be used in the evaluation process. These assessments may include Work Authorization, Criminal Conviction History, Cover Letter and/or others. Any assessments that you need to complete will appear on your screen as soon as you select Apply to this position. Once you begin an assessment, it must be completed at that time; if you do not complete the assessment you will be prompted to do so the next time you access your My Jobs page. If you select to take it later, it will appear on your "My Jobs" page to take when you are ready. Please note that your application will not be reviewed, and you will not be considered for this position until all required assessments have been completed.