Cyber Security Specialist/ISSO

Avion Solutions Inc., an employee-owned company, seeks candidates for a Cyber Security Specialist/ISSO to support PEO Aviation. This position is based in Huntsville, AL.

Job Responsibilities/Duties:

• Ability to manage projects that relate to cybersecurity
• Assists in the development of application security policies.
• Establish procedures & processes to ensure tracking and mitigation of risks identified during the ATO process.
• Develop and update Interconnection Security Agreement documentation as needed.
• Develop and update System Security Plans (SSPs) and supporting documentation.
• Assisting with tailoring of security control baselines for general support system and other FISMA reportable systems, including cloud systems utilizing FedRamp controls.
• Collecting and validating control implementation statements from subject matter experts.
• Oversee development of security and privacy control implementation statements per NIST SP 800-53 and agency security policy standards.
• Assist with the migration to NIST SP 800-53 Rev 5, identifying gaps and providing understanding of new requirements to technical teams for implementation.
• Conduct security reviews for changes impacting hardware, software, baselines, connections, or applications.
• Review and assess POA&M outputs, recommending additional work or closure.
• Support the continuous monitoring program as necessary when Information System Continuous Monitoring (ISCM) results will be used to support continuing authorization requirements or ongoing authorizations.
• Document and communicate control deficiencies for POA&M consideration.
• Assist in developing security policies, ensuring compliance, and updating documentation.
• Provide information for status reports, briefings, schedules, and project plans in written and oral form.
• Compliance and Auditing processes and inspections for all applications; ensures validity and accuracy review of all associated documentation.
• Performs compliance reviews of applicable STIGs, performs risk assessments, and performs security test evaluations and audits.
• Analyzes security requirements for information protection for enterprise applications.
• Other duties as assigned.

Required Experience:

• BA/BS with 5+ years of experience or AA with 7+ years of experience.
• IAT II Certification.
• Ability to interpret and apply DOD and Army level cyber instructions and regulations.
• Ability to apply cybersecurity theories and principles to an IT system.
• Excellent written and oral communication skills.
• Understanding of the application of DISA STIGs.
• Ability to manage people, schedules, tasks, and projects.
• Must be a US Citizen and have an active DoD Secret Security Clearance.
• Must be able to travel up to 10% of the time.

Preferred Qualifications:

• Experience with RMF.
• Experience with eMass.
• Experience with Windows and Linux operating systems.
• Experience with Trellix, ESS, Elastic, ACAS, NESSUS, SCCM, PowerShell.

Equal Opportunity: Avion Solutions, Inc. reaffirms its belief in equal employment opportunity for all employees and applicants. Avion Solutions, Inc. is an Equal Employment Opportunity Employer and a VEVRAA-governed Federal Contractor who affords equal employment opportunity to protected veterans and people with disabilities. Avion Solutions, Inc. provides all employees and job applicants equal employment opportunities in hiring and promotion without regard to age, sex, sexual orientation, marital status, race, religion, color, veteran status, genetic information, physical or mental disability, national origin or any other reason prohibited by law.