Job Information
Pennsylvania State University Information Systems Security Officer in Annapolis Junction, Maryland
APPLICATION INSTRUCTIONS:
CURRENT PENN STATE EMPLOYEE (faculty, staff, technical service, or student), please login to Workday to complete the internal application process (https://pennstateoffice365.sharepoint.com/:b:/s/KnowledgeBaseArticlesSharing/EfiwgKReZ4VAjprFZPKWUm0Bq_sU3KzTmERfpryq0esPKQ) . Please do not apply here, apply internally through Workday.
CURRENT PENN STATE STUDENT (not employed previously at the university) and seeking employment with Penn State, please login to Workday to complete the student application process. (https://pennstateoffice365.sharepoint.com/:b:/s/KnowledgeBaseArticlesSharing/Eeys15Xva4hFokHVtbP1eGIB5i1WFLc-J3k9KHgrFYZ7mg) Please do not apply here, apply internally through Workday.
If you are NOT a current employee or student, please click “Apply” and complete the application process for external applicants (https://hr.psu.edu/sites/hr/files/Application_Process_for_External_Applications_Non-Penn_State_Employees_.pdf) .
JOB DESCRIPTION AND POSITION REQUIREMENTS:
The Cyber and Information Security Department at the Applied Research Laboratory at Penn State University is seeking an experienced Information Systems Security Officer to join our team. This team protects the infrastructure of ARL by taking proactive security measures, assessing risks, responding to security breaches, and ensuring compliance. If you consider yourself an analytical leader who enjoys solving problems, is comfortable communicating and collaborating with a diverse audience, and can easily work alone or in a group, read on!
Your working location will be fully on-site in Reston, Virginia, or Annapolis Junction, Maryland. This position may require travel to other ARL locations.
ARL is an authorized DoD SkillBridge partner and welcomes all transitioning military members to apply.
Responsibilities include:
Lead, conduct, develop, validate, and submit information system security plans, security test and evaluation plans, certification and authorization packages, and plans of action and milestones in support of compliance requirements
Lead, conduct, develop, plan, and coordinate risk assessments of information systems in development, test, production and research environments as required by established or newly determined compliance/audit requirements
Monitor and assist in the assessment and review of systems and networks within the environment to identify where systems/networks deviate from acceptable configurations, enclave policy, and local policy
Develop training material related to compliance and audit requirements to assist employees in individual compliance/audits as applicable
Assist in technical requirements such as; vulnerability scanning, review of security/event logs, network analysis, and incident response on an as-needed basis
Typical education and experience requirements include a Bachelor's degree or higher in a related field plus five years of related experience, or an equivalent combination of education and experience.
Required skills and experience areas include:
RMF assessment and authorization process
NIST/ISO standards, Department of Defense directives, and regulatoryrequirements
Windows and UNIX/Linux operating system administration
Operational experience, with familiarity in security/event log auditing
Security plan development and/or continuous monitoring for compliance with security plans
The ability to certify and maintain information security related certification(Security+, CASP, GSEC, CISM, CISSP [CISSP is an anticipated requirement of the sponsor])
An current, active TS/SCI security clearance with adjudicated full scope polygraph
Preferred skills and experience areas include:
Vulnerability scanning and mitigation. Nessus, Retina, GFI Languard, Trivvy, or similar tools
TCP/IP network analysis and network/packet level examination tools such as tcpdump, Zenmap, or Wireshark
Network monitoring tools such as Bro, Suricata, or Snort
SEIM management or use for analysis, such as Splunk, ELK, or Alienvault
VMWare and management of Virtual Machines
Policy and procedure development
Enforcement of audit requirements
Development and support of a certification test plans and continuous monitoring plans
Plan of action and milestone development
Training material development
Risk assessment planning and preparation
ARL at Penn State is an integral part of one of the leading research universities in the nation and serves as a University center of excellence in defense science, systems, and technologies with a focus in naval missions and related areas.
You will be subject to a government security investigation, and you must be a U.S. citizen to apply. Employment with the ARL will require successful completion of a pre-employment drug screen.
ARL is committed to diversity, equity, and inclusion; we believe this is central to our success as a Department of Defense designated University Affiliated Research Center (UARC). We are at our best when we draw on the talents of all parts of society, and our greatest accomplishments are achieved when diverse perspectives are part of our workforce.
FOR FURTHER INFORMATION on ARL, visit our web site at www.arl.psu.edu.
The posted salary ranged may be impacted by geographic differential .
The salary range for this position, including all possible grades is:
$76,700.00 - $115,100.00
Salary Structure (https://hr.psu.edu/current-employee/compensation/staff-salary-grades-and-leveling-matrix) - additional information on Penn State's job and salary structure.
CAMPUS SECURITY CRIME STATISTICS:
Pursuant to the Jeanne Clery Disclosure of Campus Security Policy and Campus Crime Statistics Act and the Pennsylvania Act of 1988, Penn State publishes a combined Annual Security and Annual Fire Safety Report (ASR). The ASR includes crime statistics and institutional policies concerning campus security, such as those concerning alcohol and drug use, crime prevention, the reporting of crimes, sexual assault, and other matters. The ASR is available for review here (https://police.psu.edu/annual-security-reports) .
Employment with the University will require successful completion of background check(s) in accordance with University policies.
EEO IS THE LAW
Penn State is an equal opportunity, affirmative action employer, and is committed to providing employment opportunities to all qualified applicants without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. If you are unable to use our online application process due to an impairment or disability, please contact 814-865-1473.
Federal Contractors Labor Law Poster (https://affirmativeaction.psu.edu/files/2022/01/Federal-Contractors-Labor-Law-Poster.pdf)
PA State Labor Law Poster
Affirmative Action (https://policy.psu.edu/policies/hr11)
Penn State Policies
Copyright Information (https://www.psu.edu/copyright-information)
Hotlines
Annapolis Junction, MD