CMMC - Information Security System Officer (ISSO)

Denver, CO, US • Posted 1 day ago • Updated 3 hours ago
Full Time
On-site
USD $95,000.00 - 120,000.00 per year
Fitment

Dice Job Match Score™

🛠️ Calibrating flux capacitors...

Job Details

Skills

  • Cloud Computing
  • Satellite
  • Servers
  • Apache Velocity
  • Aerospace
  • Business Systems
  • Cyber Security
  • FSO
  • ISSM
  • Training
  • Risk Assessment
  • Risk Management
  • Risk Management Framework
  • Audit Management
  • Continuous Monitoring
  • Security Controls
  • Auditing
  • Malware Analysis
  • Reporting
  • Incident Management
  • System Security
  • Collaboration
  • Regulatory Compliance
  • Leadership
  • Continuous Improvement
  • Information Systems
  • Oracle Linux
  • Security Clearance
  • Computer Science
  • Information Security
  • NIST SP 800 Series
  • DevSecOps
  • SIEM
  • IDS
  • IPS
  • STIG
  • Hardening
  • Vulnerability Management
  • Kubernetes
  • Amazon Web Services
  • Continuous Integration
  • Continuous Delivery
  • Network Design
  • Soft Skills
  • Communication
  • Analytical Skill
  • Conflict Resolution
  • Problem Solving
  • ITAR
  • Management
  • Health Insurance

Summary

Quindar

Quindar builds modern, cloud-native satellite mission operations software with a simple mission: to operate satellites like servers. Our platform replaces fragmented, legacy ground systems with an integrated, automation-driven approach that brings modern software velocity to space operations.

We're a small, fast-moving team with deep aerospace and software roots, energized by big challenges and motivated by the impact we have on real missions in this next chapter of the Space Age. If you want to work with sharp, ambitious people who push boundaries, move quickly, and are excited to take space operations to the next level, Quindar is the place to do it.
What you will be doing

The Information Systems Security Officer (ISSO) is responsible for enforcing and maintaining information security policies, standards, and procedures to ensure the confidentiality, integrity, and availability of information systems.

The ISSO will uphold requirements in NIST SP 800-171 to protect Quindar Business Systems that process, transmit, or store Controlled Unclassified Information (CUI) and maintain Cybersecurity Maturity Model Certification (CMMC) 2.0 accreditation. The ISSO will coordinate directly with the Quindar ISSM, FSO, System Administrators, Leadership, and the General User community to foster strong security culture and ensure compliance with governing Federal Regulations.

Key Responsibilities:
  1. Operations Support
    • Review user requests in conjunction with ISSM and System Administrators to determine security impacts of software additions or configuration changes to systems.
    • Onboard users to systems, including development and delivery of training and briefings of Roles and Responsibilities operating on systems.
  1. Risk Management and Assessment:
    • Conduct regular risk assessments and vulnerability assessments to identify potential security threats.
    • Implement risk mitigation strategies and manage the risk management framework.
  1. Continuous Monitoring and Audit Management:
    • Prepare for and execute both self-assessments and external assessments with Government Security Control Assessors in support of achieving and maintaining CMMC accreditation.
    • Execute Continuous Monitoring activities of employed security controls to ensure comprehensive and effective implementation over time, including but not limited to analyzing user/system audit logs, malware protections, vulnerability reporting, and access reviews.
  1. Incident Response and Management:
    • Develop and maintain an Incident Response Plan, partnering with Government Customers/Prime/Subcontractors for reporting procedures.
    • Lead incident response activities, including investigation, containment, and remediation of security incidents.
    • Investigate and adjudicate SIEM events.
  2. System Security Plans (SSPs):
    • Maintain System Security Plans and collecting all required artifacts (Compliance and Vulnerability reports, documented Policies/Procedures, etc.)
    • Ensure that SSPs are regularly reviewed, updated, and compliant with regulatory requirements.
  3. Collaboration and Communication:
    • Work closely with System Administrators, compliance, and other departments to ensure cohesive and comprehensive security strategies.
    • Serve as a point of contact for security-related issues and provide guidance and support to other teams.
  4. Continuous Improvement:
    • Stay up-to-date with the latest security trends, technologies, and regulatory requirements.
    • Continuously improve security measures and processes to protect information systems effectively.

Qualifications:
  • Citizenship: ship
  • Clearance: Eligibility for a US Government Security Clearance
  • Education: Bachelor's degree in Information Security, Computer Science, or a related field.

Experience:
  • 2+ years of experience in information security, working with Federal Regulations
  • Proven experience in leading the management and implementation of an Information Security Program.

Technical Skills:
  • Strong understanding of security frameworks and standards for NIST SP 800-171 and DevSecOps.
  • Proficiency in security tools and technologies, such as SIEM, IDS/IPS, STIG Hardening, and vulnerability management solutions.
  • Exposure to technologies and concepts including Kubernetes Containerization, AWS GovCloud Environments and Tooling, CI/CD pipelines, and Secure Network Architecture.

Soft Skills:
  • Excellent communication and interpersonal skills.
  • Strong analytical and problem-solving abilities.

Ability to manage multiple projects and priorities in a fast-paced environment.

ITAR REQUIREMENTS

Learn more about the ITAR here.

Why you'll love working at Quindar
  • We work in a cutting edge industry and you will get the opportunity to be part of a small team with a large direct impact on the success of our customers' space missions!
  • We take work life balance very seriously. We require employees to take 15 days off but provide unlimited PTO and follow most US federal government holidays.
  • Mental health is just as important as physical so we provide quarterly health & wellness benefits.
  • Comprehensive health insurance for you and your family with 100% coverage for employees.
  • We encourage employees to save for retirement and provide 4% 401(k) matching.
  • Each year we have a 4-day company offsite. Previous locations include San Francisco, Nashville, Denver, Santa Fe, New Orleans, San Diego, Bozeman, and New York City.
  • Our culture and company is evolving. You will be key in creating the next major or minor version!
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: 80184908
  • Position Id: 6b303c0c7fc9d0a604b5e97e073790f3
  • Posted 1 day ago
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Lone Tree, Colorado

Today

Full-time

USD 165,010.21 - 226,889.04 per year

Colorado Springs, Colorado

Today

Full-time

USD 80,001.00 - 120,000.00 per year

Colorado Springs, Colorado

Today

Full-time

USD 120,001.00 - 160,000.00 per year

Colorado Springs, Colorado

Today

Full-time

Search all similar jobs