Massachusetts Information Technology Jobs

The Security Services Department’s overall mission is to identify and counter security threats to the MIT Lincoln Laboratory’s mission of development of game-changing technology in support of National Security, including guarding against compromise by foreign intelligence agencies and insider threats. To accomplish this mission, this department formulates and implements policies, plans, and actions designed to protect facilities against threats of vandalism, accidental destruction, and sabotage; and safeguards personnel, classified and unclassified information systems, personal identifiable information, property, and other assets from exploitation and recruitment by foreign intelligence agencies.

We foster a diverse and inclusive culture where security professionals from a wide range of backgrounds are empowered to solve complex security problems in close collaboration with Laboratory research teams and Government counterparts. Our people are our most important resource, and we encourage a casual and flexible opportunity-filled working environment that is technology-focused. Where mission needs can be met, the Security Services Department encourages flexible schedules and hybrid remote work arrangements.

Who are we?

Who are we? MIT Lincoln Laboratory is a Federally Funded Research and Development Center (FFRDC) whose mission is research in support of National Security.

• Mission - The Security Services Department’s (SSD) overall mission is to identify and counter security threats to the MIT Lincoln Laboratory’s mission of development of game-changing technology in support of national security, including guarding against compromise by foreign intelligence agencies and insider threats. * Culture – We foster an inclusive, opportunity-filled environment of empowered team members from diverse backgrounds.

What will you do?

What will you do? ISSM candidate will provide expert management of all information security support to several independent Laboratory programs assigned. Primary focal point and have an in-depth knowledge of computer security principles, practices, and procedures in order to execute a comprehensive Information Security program to meet both internal and external requirements. Core responsibilities include:

• Lead and manage daily responsibilities of assigned Information Systems Security Officers (ISSO). * Will develop and maintain multiple System Security Plans (SSP) based on the Joint SAP implementation Guide; ensuring systems are operated, maintained, and disposed of according to the approved SSP. * Conduct security compliance audits and perform security vulnerability assessments on Laboratory information systems. * Establish and maintain configuration management policies and procedures. * Ensure users and ISSOs are subject to an effective information security education, training, and awareness program. * Implement and test IT security policies/procedures as part of a fully integrated IT security program. * Coordinate and participate in the investigation and mitigation of information system adverse incidents. * Assume ISSO responsibilities in the absence of the ISSO and must be able to respond to off-hour emergencies as needed. * Recommend resource allocations required to securely operate and maintain an organization's cybersecurity requirements. * Provide technical documents, incident reports, findings from computer examinations, summaries, and other situational awareness information to key stake holders * Recognize a possible security violation and take appropriate action to report the incident, as required. * Assist the Program Managers in the development and maintenance of System Security Plans (SSP) and associated artifacts such as the Plan of Action & Milestones (POA&M), Risk Assessment Report, and Continuous Monitoring Strategy * Lead and align information technology (IT) security priorities with the security strategy. * Prepare for and participate in periodic organization compliance assessments * Interpret patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program.

How will you grow?

How will you grow? You will find significant opportunities to do meaningful work in an environment intentionally designed to be one where you will learn, thrive and belong. * Leadership: Room to advance on your team or to lead cross-functional projects. * Growth Opportunities: Potential for lateral and vertical movement. * Education/Training: Management training, mentorship, in-house and external courses. * Exposure: Engagement with sponsors, stakeholders, Laboratory leadership and other Departments and Divisions. * Community: Participation is encouraged for Laboratory social events, Employee Resource Groups (ERGs), clubs and study groups, volunteering and community service projects.

What you need:

What you need: To work with MITLL, all employees must meet certain basic requirements. * Top-Secret clearance with SCI. * Must be a U.S. Citizen. * Successfully pass a background check and consent to undergoing a government polygraph examination. * Valid COVID-19 vaccination (to include a booster shot).

Requirements:

Ideally, you will have: The Laboratory values experiences from diverse backgrounds and occupations. The most successful candidates will have the following skills and qualifications.

• BS degree in Computer Science, Information Technology, Computer Information Systems, or related field required with a minimum of seven (7) years’ experience within Special Access and Sensitive Compartmented Information Programs. * Demonstrated capabilities in leading cross-functional teams and presenting ideas written and orally within a collaborative team environment is required. * Possess a DoD 8570.01-M IAM III baseline certification (e.g. ISC2 CISSP), or be able to obtain one within 6 months of hire * Technical experience, skills, and course work completed towards an Undergraduate Degree, or industry IT certifications may be considered in lieu of education or DoD security experience requirements * Demonstrated understanding of the following security frameworks is required: o NIST 800-53 / Risk Management Framework (RMF) o Joint SAP Implementation Guide (JSIG) o Intelligence Community Directive (ICD) 503 o National Industrial Security Program Operating Manual (NISPOM) Chapter 8 o DoD Manual 5205.07 Volumes 1- 4 * Experienced in auditing, configuration and vulnerability management * Experience and familiarity with multiple operating systems such as Windows Server 2012, 2016, 2019, and 2022 Windows 10 and 11, Red Hat Enterprise Linux, Ubuntu, Mac, etc. * Experience with virtualization and Cloud technologies is preferred * Ability to integrate information security requirements into the acquisition process; using applicable baseline security controls as one of the sources for security requirements; ensuring a robust software quality control process; and establishing multiple sources (e.g., delivery routes, for critical system elements). * Technical experience securing networks and systems utilizing DISA STIGs and/or SRGs is highly desired * Demonstrated experience with vulnerability scanning and auditing tools and processes is required * Excellent written and verbal communication skills are required

Competencies

Relevant Experience

Relevant Education/Certification/License

Communication Skills

At MIT Lincoln Laboratory, our exceptional career opportunities include many outstanding benefits to help you stay healthy, feel supported, and enjoy a fulfilling work-life balance. Benefits offered to employees include: • Comprehensive health, dental, and vision plans • MIT-funded pension • Matching 401K • Paid leave (including vacation, sick, parental, military, etc.) • Tuition reimbursement and continuing education programs • Mentorship programs • A range of work-life balance options • ... and much more!

Please visit our Benefits page for more information. As an employee of MIT, you can also take advantage of other voluntary benefits, discounts, and perks. Selected candidate will be subject to a pre-employment background investigation and must be able to obtain and maintain a Secret-level DoD security clearance. MIT Lincoln Laboratory is an Equal Employment Opportunity (EEO) employer. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, veteran status, disability status, or genetic information; U.S. citizenship is required.

Requisition ID: [[id]] #CJ

#ISSM #Cybersecurity #RMF, #SCI, #TS #CJ