Information Systems Security Officer

Requisition Id 16074

Overview: We are currently seeking qualified applicants with Information Systems Security Officer (ISSO) experience to support the Field Intelligence Operations Division's classified operations in the areas of Classified Intelligence Information Technology (IT)/Information Assurance (IA), Classified R&D Computing, and physical and personnel security in the Field Intelligence Operations Division (FIOD) - where cutting-edge research and technology meets national defense. Under the Department of Energy (DOE), Office of Intelligence and Counterintelligence (IN) authorities, the FIOD serves as the ORNL focal point for all intelligence community matters and supports national security science by providing secure IT, communications, facilities, and analysis.

Purpose: The ISSO will assist the Information Systems Security Manager (ISSM) in the certification and accreditation (C&A) of systems/networks and implementation of cyber security requirements and procedures across the National Security Sciences Directorate at Oak Ridge National Laboratory (ORNL). The National Security Sciences Directorate conducts research and development to solve some of the nations most difficult security challenges and adversaries. The directorate houses S&T leadership in cybersecurity and cyber-physical resiliency, data analytics, geospatial science and technology, nuclear nonproliferation, and high-performance computing for sensitive national security missions. The FIOD is housed within NSSD and provides the operational security, information assurance, and information technology support needed for ORNL to maintain Sensitive Compartmented Information Facilities, clearances, and systems.

Duties and Responsibilities: The ISSO is a primary stakeholder and facilitator of the continuous monitoring efforts that promote RMF compliance throughout the organization. The ISSO provides clear direction and assists programmatic IT and infrastructure support personnel with the application of security patches and secure configurations commensurate with Security Technical Implementation Guides (STIGs). The ideal candidate will have experience in designing, implementing, and managing security solutions within classified environments, with particular emphasis on leveraging Splunk for security information and event management (SIEM).

Routine collaboration and consultation with the Information Systems Security Manager (ISSM) regarding the design, development, integration, and analysis of classified information systems under general supervision, the candidate is responsible for performing a full range of Information Assurance functions in support of the security needs of the ORNL FIE ISSM/Group lead. These responsibilities include:

• System Security Oversight

• Provide day-to-day cybersecurity support for classified/Sensitive Compartmented Information (SCI) systems.

• Ensure compliance with DOE-IN, DoD, and NIST requirements across multiple facilities.

• Develop, review, and maintain System Security Plans (SSPs) and related RMF artifacts (hardware/software lists, diagrams, PPSM, categorization forms, continuous monitoring plans, contingency plans).

• Security Engineering & Compliance

• Support design and implementation of security controls, ensuring alignment with DISA STIGs and NIST 800-53.

• Assist with security architecture reviews, risk assessments, vulnerability analyses, and mitigation strategies.

• Provide technical input for STIG feasibility and implementation, including possible automation of compliance checks.

• Monitoring & Incident Response

• Manage Splunk and SolarWinds environments for log collection, correlation, and monitoring.

• Create and maintain dashboards, alerts, and reports to support real-time detection and response.

• Investigate security incidents, document findings, and implement corrective measures.

• Perform regular audit log reviews, authorized data transfers, and media control in accordance with policy.

• Risk Management Framework (RMF) & Documentation

• Develop and maintain system documentation to support system authorization and accreditation.

• Track system changes, security impact assessments, and coordinate with ISSM on approvals.

• Conduct and support continuous monitoring activities, including vulnerability management and reporting.

• Governance & Training

• Conduct annual account reviews, self-inspections, and compliance testing.

• Train users and system administrators on security procedures and policy.

• Support ISSM in implementing local policies, reporting metrics, and preparing for inspections

• Continuously update and enhance documentation best practices and local security procedures, train users on these procedures, and consistently apply appropriate ES&H standards.

Basic Requirements:

• BA in information technology or technical equivalent and a minimum of five years of experience in cyber security and the C&A process.
• An overall combination of equivalent education and experience may be considered.
• Current TS clearance with SCI eligibility
• Working knowledge of:
• Risk Management Framework (RMF) process & requirements.
• NIST and CNSSI requirements
• Must be organized, self-motivated, and be able to work with minimal guidance.
• Excellent written and verbal communication skills with an ability to interface with numerous cognizant security agencies, customers, and senior managers.
• Previous experience in developing, testing, and collecting artifacts for RMF packages and BoEs of multiple systems.
• Experience in authorized data transfers across multiple systems and different classifications.

Desired Skills:

• Relevant ISSO / ISSE experience within the DoD or Intelligence Community.
• CISSP, SEC+, or other relevant certifications
• Previous experience supporting SCI environments.
• Deep understanding of incident response procedures and enterprise security tool implementation
• Knowledge of the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) and configuration standards.
• Working knowledge of Industry Standard tools for purposes of audit reduction, vulnerability scanning, and malware analysis is preferred. Relevant tools include but are not limited to:
• Splunk
• Tenable Nessus
• Host Based Security System (HBSS) components
• Security Content Automation Protocol (SCAP) Checker
• STIG viewer
• Experience with Security Directives, Policies, Publications, and Regulations.

Special Requirement: This position requires the ability to obtain and maintain a Sensitive Compartmented Information (SCI) clearance from the Department of Energy. As such, this position is a Workplace Substance Abuse (WSAP) testing designated position. WSAP positions require passing a pre-placement drug test and participation in an ongoing random drug testing program. In addition, due to the SCI, you may also be subject to random polygraph testing.

About ORNL: As a U.S. Department of Energy (DOE) Office of Science national laboratory, ORNL has an impressive 80-year legacy of addressing the nation's most pressing challenges. Our team is made up of over 7,000 dedicated and innovative individuals! Our goal is to create an environment where a variety of perspectives and backgrounds are valued, ensuring ORNL is known as a top choice for employment. These principles are essential for supporting our broader mission to drive scientific breakthroughs and translate them into solutions for energy, environmental, and security challenges facing the nation.

ORNL offers competitive pay and benefits programs to attract and retain individuals who demonstrate exceptional work behaviors. The laboratory provides a range of employee benefits, including medical and retirement plans and flexible work hours, to support the well-being of you and your family. Employee amenities such as on-site fitness, banking, and cafeteria facilities are also available for added convenience. Other benefits include the following:

• Prescription Drug Plan
• Dental Plan
• Vision Plan
• 401(k) Retirement Plan
• Contributory Pension Plan
• Life Insurance
• Disability Benefits
• Generous Vacation and Holidays
• Parental Leave
• Legal Insurance with Identity Theft Protection
• Employee Assistance Plan
• Flexible Spending Accounts
• Health Savings Accounts
• Wellness Programs
• Educational Assistance
• Relocation Assistance
• Employee Discounts

If you have difficulty using the online application system or need an accommodation to apply due to a disability, please email: ORNLRecruiting@ornl.gov

This position will remain open for a minimum of 5 days after which it will close when a qualified candidate is identified and/or hired. We accept Word (.doc, .docx), Adobe (unsecured .pdf), Rich Text Format (.rtf), and HTML (.htm, .html) up to 5MB in size. Resumes from third party vendors will not be accepted; these resumes will be deleted and the candidates submitted will not be considered for employment. ORNL is an equal opportunity employer. All qualified applicants, including individuals with disabilities and protected veterans, are encouraged to apply. UT-Battelle is an E-Verify employer.