As a UW employee, you have a unique opportunity to change lives on our campuses, in our state and around the world. UW employees offer their boundless energy, creative problem solving skills and dedication to build stronger minds and a healthier world.
UW faculty and staff also enjoy outstanding benefits, professional growth opportunities and unique resources in an environment noted for diversity, intellectual excitement, artistic pursuits and natural beauty. All of which has allowed the UW to be nationally recognized as a “Great College to Work For” for six consecutive years.
The Applied Physics Laboratory at the University of Washington (APL-UW) is a national center for advanced science and engineering research and development and education. APL-UW was formed in 1943 for the U.S. Navy to bring university research resources to bear on urgent WWII defense problems. APL-UW has developed an international reputation for its broad based programs in science, engineering and for designing, building, and deploying the advanced technology required to meet the research needs of numerous government and commercial sponsors. With modern facilities, equipment and over 350 talented researchers and staff, APL-UW provides a unique, dynamic work environment with many opportunities.
APL has an outstanding opportunity for an Information Security Systems Officer.
The Information Security Systems Officer (ISSO) reports to the Information Security Manager (ISSM) at the Applied Physics Laboratory and coordinates directly with the ISSM to manage all aspects of the security information systems security program at the Applied Physics Laboratory and at the University, including but not limited to information system security operations, physical security as it relates to information systems security, compliance with federal policies and regulations, information systems security training, and other security issues as assigned.
Technical Security Operations:
The incumbent works with the ISSM to ensure that the APL-UW’s Secret Internet Protocol Routed Network (SIPRNet) enclave maintains compliance with Defense Information Systems Agency (DISA) requirements. The incumbent configures, updates, and monitors SIPRNet network/system infrastructure devices consisting of switches, routers, firewalls, intrusion detection/prevention components, and servers. The incumbent is responsible for the local Host Based Security System (HBSS) implementation and operation. The incumbent interfaces directly with the Computer Network Defense Service Provider (CNDSP) to provide support related to CNDSP subscription services. The incumbent will use tools authorized by DISA to test the system, i.e. ACAS vulnerability scanner, Security Technical Implementation Guide (STIG) compliance checker, and other DISA approved security tools. Maintains compliance records for SIPRNet network infrastructure using Continuous Monitoring and Risk Scoring web based system or other locally developed risk management tools. Completes required and recommended training activities necessary to maintain technical proficiency and required certifications at an administrator level.
Classified Security Systems:
The incumbent ensures that all remaining classified computing systems are established/maintained in compliance with Defense Counterintelligence Security Agency (DCSA) requirements, that users are correctly following proper security procedures, and that all classified information systems are properly secured. The incumbent works collaboratively with the ISSM to develop, document and present information system security education, awareness and training; establish, document, implement, and monitor the industrial information systems security information systems program, ensuring compliance with federal policy and regulations; identify and document any unique information system security threats; conduct periodic information system self-inspections and coordinate corrective actions for all findings; conduct certification tests and certify to DCSA that that all required information system protection measures are in place and provide the necessary protections; and other responsibilities described in applicable federal information system security requirement documents. The incumbent is responsible for ensuring weekly security checks of all accredited systems are completed. As necessary, the incumbent performs system administration functions for modern operating systems and applications, including but not limited to Microsoft Windows and Red Hat Enterprise Linux operating systems, such as installing and configuring operating systems, installing patches and updates, adjusting security controls to meet federal requirements, monitoring operation, and creating and managing system back-ups. The incumbent will ensure System Security Plans for all classified computing areas assigned to his/her responsibility are maintained.
Maintains the operation of the classified systems, ensuring that the systems are operating effectively, efficiently, and securely. Responsible for system baseline images; verifying system and application security configuration settings are compliant with existing DISA STIGs, SCAP Benchmarks, and software manufacturer security configuration guidance. The incumbent will remain available during core business hours to support users of classified or unclassified computing systems by providing guidance and training on security policy, plans and procedures; performing network and system administrator functions; ensuring critical information is backed-up; and adding or removing classified systems. For all active users, the incumbent verifies the clearance and need to use the systems assigned to his/her responsibility annually. Correct or mitigate any non-compliant security controls at the direction of the ISSM.
Performs a risk analysis on any security-relevant changes to the classified systems; provides recommendations and technical support that highlight the risk posed by vulnerabilities based on current and potential threats. Identifies and analyzes anomalies that are inconsistent with the current approved security plan. Monitors system, firewall, and IDS logs to identify and investigates anomalous access and other suspicious activities.
System Certification and Accreditation:
Implements network security, application security, access control and other security-related policies. Ensures Configuration Management (CM) for security-relevant IS software, hardware, and application is documented and maintained. Provides Certification and Accreditation (C&A) support, coordinates and manages all aspects of the C&A process for DoD, DCSA, and other customer information systems security programs, ensures compliance with government and university security policies and procedures.
Bachelor’s Degree in Information Systems, Computer Science, Computer Engineering, or Information Security.
Must be a US Citizen. DoD SECRET security clearance is required at time of hire. Must also meet eligibility requirements and will be required to successfully complete an additional US Government security investigation for access to higher levels of classified information.
At least two years of experience as a Network Engineer, Network Administrator or System Administrator WITH the appropriate industry-recognized certifications.
Must have a current DOD Approved 8570 Baseline Information Assurance Technical (IAT) Level II or III Certification (Ref: http://iase.disa.mil/iawip/Pages/iabaseline.aspx)
Must possess a technical proficiency with network routing and switching protocols.
Must possess a background in incident handling, response, and intrusion detection (IDS).
Ability to communicate effectively, both written and oral, with senior officials and with technical and non-technical audiences.
Demonstrated ability to work independently, make critical decisions, and work effectively with all levels of the organization.
Must have experience working with DoD IA/Cybersecurity instructions (DIACAP or RMF).
Equivalent education/experience will substitute for all minimum qualifications except when there are legal requirements, such as a license/certification/registration.
DoD TOP SECRET security clearance at time of hire.
Experience working with Defense Information System Agency (DISA) Host Based Security System (HBSS) and DISA Assured Compliance Assessment Solution (ACAS).
Experience with creating detailed whitepapers on complex problems.
Experience in information system security and compliance programs at a research university.
Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM).
CONDITIONS OF EMPLOYMENT:
Application Process: The application process for UW positions may include completion of a variety of online assessments to obtain additional information that will be used in the evaluation process. These assessments may include Work Authorization, Cover Letter and/or others. Any assessments that you need to complete will appear on your screen as soon as you select “Apply to this position”. Once you begin an assessment, it must be completed at that time; if you do not complete the assessment you will be prompted to do so the next time you access your “My Jobs” page. If you select to take it later, it will appear on your "My Jobs" page to take when you are ready. Please note that your application will not be reviewed, and you will not be considered for this position until all required assessments have been completed.
Founded in 1861, the University of Washington is one of the oldest public institutions in the west coast and one of the preeminent research universities in the world. The University of Washington is a multi-campus university comprised of three different campuses: Seattle, Tacoma, and Bothell. The Seattle campus is made up of sixteen schools and colleges that serve students ranging from an undergraduate level to a doctoral level. The university is home to world-class libraries, arts, music, drama, and sports, as well as the highest quality medical care in Washington State and a world-class academic medical center. The teaching and research of the University’s many professional schools provide undergraduate and graduate students the education necessary toward achieving an excellence that will serve the state, the region, and the nation. As part of a large and diverse community, the University of Washington serves more students than any other institution in the Northwest.