Information Systems Security Officer

Requisition Id15396

Overview:

We are currently seeking qualified applicants with Information Systems Security Officer(ISSO) experienceto support the Field Intelligence Operations Division's classified operations in the areas of Classified Intelligence Information Technology (IT)/Information Assurance (IA), Classified R&D Computing, and physical and personnel security in the Field Intelligence Operations Division (FIOD) - where cutting-edge research and technology meets national defense.Under the Department of Energy (DOE), Office of Intelligence and Counterintelligence (IN) authorities, the FIOD serves as the ORNL focal point for all intelligence community matters and supports national security science by providing secure IT, communications, facilities, and analysis.

Purpose:

The ISSO will assist the Information Systems Security Manager (ISSM) in the certification and accreditation (C&A) of systems/networks and implementation of cyber security requirements and procedures across the National Security Sciences Directorate at Oak Ridge National Laboratory (ORNL).The National Security Sciences Directorate conducts research and development to solve some of the nation's most difficult security challenges and adversaries. The directorate houses S&T leadership in cybersecurity and cyber-physical resiliency, data analytics, geospatial science and technology, nuclear nonproliferation, and high-performance computing for sensitive national security missions. The FIOD is housed within NSSD and provides the operational security, information assurance, and information technology support needed for ORNL to maintain Sensitive Compartmented Information Facilities, clearances, and systems.

Duties and Responsibilities:

The ISSO is a primary stakeholder and facilitator of the continuous monitoring efforts that promote RMF compliance throughout the organization. The ISSO provides clear direction and assists programmatic IT and infrastructure support personnel with the application of security patches and secure configurations commensurate with Security Technical Implementation Guides (STIGs).The ideal candidate will have experience in designing, implementing, and managing security solutions within classified environments, with particular emphasis on leveraging Splunk for security information and event management (SIEM). Routine collaboration and consultation with the Information Systems Security Manager (ISSM) regarding the design, development, integration, and analysis of classified information systems under general supervision, the candidate is responsible for performing a full range of Information Assurance functions in support of the security needs of the ORNL FIE ISSM/Group lead.

These responsibilities include:

System Security Oversight

• Provide day-to-day cybersecurity support for classified/Sensitive Compartmented Information (SCI) systems.
• Ensure compliance with DOE-IN, DoD, and NIST requirements across multiple facilities.
• Develop, review, and maintain System Security Plans (SSPs) and related RMF artifacts (hardware/software lists, diagrams, PPSM, categorization forms, continuous monitoring plans, contingency plans).
  
  

Security Engineering & Compliance

• Support design and implementation of security controls, ensuring alignment with DISA STIGs and NIST 800-53.
• Assist with security architecture reviews, risk assessments, vulnerability analyses, and mitigation strategies.
• Provide technical input for STIG feasibility and implementation, including possible automation of compliance checks.
  
  

Monitoring & Incident Response

• Manage Splunk and SolarWinds environments for log collection, correlation, and monitoring.
• Create and maintain dashboards, alerts, and reports to support real-time detection and response.
• Investigate security incidents, document findings, and implement corrective measures.
• Perform regular audit log reviews, authorized data transfers, and media control in accordance with policy.
  
  

Risk Management Framework (RMF) & Documentation

• Develop and maintain system documentation to support system authorization and accreditation.
• Track system changes, security impact assessments, and coordinate with ISSM on approvals.
• Conduct and support continuous monitoring activities, including vulnerability management and reporting.
  
  

Governance & Training

• Conduct annual account reviews, self-inspections, and compliance testing.
• Train users and system administrators on security procedures and policy.
• Support ISSM in implementing local policies, reporting metrics, and preparing for inspections
• Continuously update and enhance documentation best practices and local security procedures, train users on these procedures, and consistently apply appropriate ES&H standards.
• Maintain a strong commitment to the implementation and perpetuation of values and ethics.

Basic Requirements:

• To be considered for this position, the candidate should possess a bachelor's degree in information technology or technical equivalent and a minimum of five years of experience in cyber security and the C&A process. An overall combination of equivalent education and experience may be considered.
• Current TS clearance with SCI eligibility
• Working knowledge of:
• Risk Management Framework (RMF) process & requirements.
• NIST and CNSSI requirements
• Must be organized, self-motivated, and be able to work with minimal guidance.
• Excellent written and verbal communication skills with an ability to interface with numerous cognizant security agencies, customers, and senior managers.
• Previous experience in developing, testing, and collecting artifacts for RMF packages and BoEs of multiple systems.
• Experience in authorized data transfers across multiple systems and different classifications.

Desired Skills:

• Current TS clearance with SCI eligibility
• Relevant ISSO / ISSE experience within the DoD or Intelligence Community.
• CISSP, SEC+, or other relevant certifications

• Previous experience supporting SCI environments.

• Deep understanding of incident response procedures and enterprise security tool implementation
• Knowledge of the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) and configuration standards.
• Working knowledge of Industry Standard tools for purposes of audit reduction, vulnerability scanning, and malware analysis is preferred. Relevant tools include but are not limited to: Splunk, Tenable Nessus, Host Based Security System (HBSS) components, Security Content Automation Protocol (SCAP) Checker, and STIG viewer.
• Experience with Security Directives, Policies, Publications, and Regulations.

Special Requirement:

This position requires the ability to obtain and maintain a Sensitive Compartmented Information (SCI) clearance from the Department of Energy. As such, this position is a Workplace Substance Abuse (WSAP) testing designated position. WSAP positions require passing a pre-placement drug test and participation in an ongoing random drug testing program. In addition, due to the SCI, you may also be subject to random polygraph testing.

Security, Credentialing, and Eligibility Requirements:
For employment at Oak Ridge National Laboratory (ORNL), a Real ID compliant form of identification will be required. Additionally, ORNL is subject to Department of Energy (DOE) access restrictions. All employees must also be able to obtain and maintain a federal Personal Identity Verification (PIV) card as mandated by Homeland Security Presidential Directive 12 (HSPD-12) and Department of Energy (DOE) Order 473.1A, which requires a favorable post-employment background investigation.

To obtain this credential, new employees must successfully complete and pass a Federal Tier 1 background check investigation. This investigation includes a declaration of illegal drug activities, including use, supply, possession, or manufacture within the last year. This includes marijuana and cannabis derivatives, which are still considered illegal under federal law, regardless of state laws.

For foreign national candidates:
If you have not resided in the U.S. for three consecutive years, you are not eligible for the PIV credential and instead will need to obtain a favorable Local Site Specific Only (LSSO) risk determination to maintain employment. Once you meet the three-year residency requirement, you will be required to obtain a PIV credential to maintain employment.

About ORNL:
As a U.S. Department of Energy (DOE) Office of Science national laboratory, ORNL has an impressive 80-year legacy of addressing the nation's most pressing challenges. Our team is made up of over 7,000 dedicated and innovative individuals! Our goal is to create an environment where a variety of perspectives and backgrounds are valued, ensuring ORNL is known as a top choice for employment. These principles are essential for supporting our broader mission to drive scientific breakthroughs and translate them into solutions for energy, environmental, and security challenges facing the nation.

ORNL offers competitive pay and benefits programs to attract and retain individuals who demonstrate exceptional work behaviors. The laboratory provides a range of employee benefits, including medical and retirement plans and flexible work hours, to support the well-being of you and your family. Employee amenities such as on-site fitness, banking, and cafeteria facilities are also available for added convenience.

Other benefits include the following: Prescription Drug Plan, Dental Plan, Vision Plan, 401(k) Retirement Plan, Contributory Pension Plan, Life Insurance, Disability Benefits, Generous Vacation and Holidays, Parental Leave, Legal Insurance with Identity Theft Protection, Employee Assistance Plan, Flexible Spending Accounts, Health Savings Accounts, Wellness Programs, Educational Assistance, Relocation Assistance, and Employee Discounts.

If you have difficulty using the online application system or need an accommodation to apply due to a disability, please email: ORNLRecruiting@ornl.gov

This position will remain open for a minimum of 5 days after which it will close when a qualified candidate is identified and/or hired.

We accept Word (.doc, .docx), Adobe (unsecured .pdf), Rich Text Format (.rtf), and HTML (.htm, .html) up to 5MB in size. Resumes from third party vendors will not be accepted; these resumes will be deleted and the candidates submitted will not be considered for employment.

If you have trouble applying for a position, please email ORNLRecruiting@ornl.gov.

ORNL is an equal opportunity employer. All qualified applicants, including individuals with disabilities and protected veterans, are encouraged to apply. UT-Battelle is an E-Verify employer.