Information Systems Security Administrator - FLRAA

Textron•Fort Worth, TX

22h

About The Position

We’re more than aviation experts, we’re pioneers. We challenge what’s possible. From breaking the sound barrier to advanced tiltrotor systems. Today, Bell is shaping the future of aviation through specialized engineering. And we want you. Information Systems Security Officer (ISSA) Bring your skills and experience to Bell as an ISSA, a classified systems administrator responsible for maintaining the appropriate operational security configuration for classified information systems and networks in compliance with USG guidelines including 32-CFR-117, DoDI 8510.01, CNSSI 1253, NIST SP 800-37, NIST SP 800-53, JSIG, DAAPM, and others. Bell in Fort Worth, TX is seeking an Information Systems Security Administrator (ISSA) to support our security program. What you’ll be doing as an ISSA Work in close coordination with the ISSM and other Bell Global Security team members to maintain Risk Management Framework (RMF) and Authority to Operate (ATO) requirements. Responsible for security configuration on DoD cognizant systems in compliance with the System Security Plan (SSP), RMF/JSIG, and other applicable security policies and procedures, and perform necessary corrective actions. Build, harden, maintain, and troubleshoot classified computer systems, devices, and networks including hardware and systems/applications software. Perform the role of Systems Administrator for classified Windows and Linux workstations and servers including domain controller, group policy, single sign-on or multi-factor authentication, updates/patch installation, and vulnerability/flaw remediation. Install, configure, and maintain security software solutions such as SCAP, Splunk, McAfee, Nessus, WSUS, One Identity, etc. Implement classified information system upgrades and configuration changes to meet CCI requirements and Continuous Monitoring schedule. Purchase approved hardware and software as needed and maintain licenses as well as perform configuration management duties and support the Configuration Control Board (CCB) for security impact and risk analysis. Fulfill data backup/restore and contingency/disaster recovery solutions as well as enforce media protection and file transfer procedures. Directly support the ISSM/ISSO on correcting STIG and Nessus findings, performing self-inspections, resolving system and application anomalies, preparing for customer inspections, and Incident Response and Contingency training and testing activities. Travel to other local locations as required.

Requirements

Bachelor’s Degree in Computer Science, Information Systems, Information Assurance, Cyber Security, or other related field of study.
5+ years overall experience in Information Security and System / Network Administration, Cybersecurity, and/or other relevant IT role.
Active USG Secret or higher security clearance is required. Candidate must meet background pre-screening requirements for Special Access Programs.
Must meet IAT - Level 2 DoD 8570.1-M compliant Professional Certification (Security+, CISSP, etc) or be able to gain certification within 6 months of start of employment.
Background working in a USG defense contractor or national security environment is highly preferred.
Experience working in collateral closed-area spaces and close familiarity of the NIST SP 800-53 (SAP spaces and JSIG preferred) with deep understanding of cyber security, classified system hardening requirements, tools, and procedures to meet Risk Management Framework (RMF) and Joint Security Implementation Guide (JSIG).
Proficient at using the DISA Host Baseline tools, Security Technical Implementation Guides (STIG), and vulnerability scanning to set up and configure secure computing environments that meet customer requirements and expectations.
Adept in operating systems security features and settings, account and user interface management, group policy management, ports, protocols, and services management, problem fixes, and other IS tasks to meet RMF and STIG requirements.
Experience with Windows, Windows Server; Linux administration experience is a plus.
Expertise in implementing various OS workstation and server versions and proper configuration for RMF compliant computing environments with knowledge of various computer hardware devices and ability to perform basic functions inside a computer (add/remove devices, re-seat cables), perform system BIOS changes, and sanitize a system.

Nice To Haves

Experience with Windows, Windows Server; Linux administration experience is a plus.
Background working in a USG defense contractor or national security environment is highly preferred.

Responsibilities

Work in close coordination with the ISSM and other Bell Global Security team members to maintain Risk Management Framework (RMF) and Authority to Operate (ATO) requirements.
Responsible for security configuration on DoD cognizant systems in compliance with the System Security Plan (SSP), RMF/JSIG, and other applicable security policies and procedures, and perform necessary corrective actions.
Build, harden, maintain, and troubleshoot classified computer systems, devices, and networks including hardware and systems/applications software.
Perform the role of Systems Administrator for classified Windows and Linux workstations and servers including domain controller, group policy, single sign-on or multi-factor authentication, updates/patch installation, and vulnerability/flaw remediation.
Install, configure, and maintain security software solutions such as SCAP, Splunk, McAfee, Nessus, WSUS, One Identity, etc.
Implement classified information system upgrades and configuration changes to meet CCI requirements and Continuous Monitoring schedule.
Purchase approved hardware and software as needed and maintain licenses as well as perform configuration management duties and support the Configuration Control Board (CCB) for security impact and risk analysis.
Fulfill data backup/restore and contingency/disaster recovery solutions as well as enforce media protection and file transfer procedures.
Directly support the ISSM/ISSO on correcting STIG and Nessus findings, performing self-inspections, resolving system and application anomalies, preparing for customer inspections, and Incident Response and Contingency training and testing activities.
Travel to other local locations as required.