Information Security Analyst
$74,000 - $146,000/Yr
Sanmina - Huntsville, AL
posted about 2 months ago
Full-time - Mid Level
Onsite - Huntsville, AL
Computer and Electronic Product Manufacturing
About the position
The Information System Security Officer (ISSO) position at Sanmina Corporation involves supporting classified Information Systems (IS) and ensuring compliance with the National Industrial Security Program (NISP). The role requires an experienced information security practitioner who will work closely with engineering and program development teams to provide security requirements, assist in the design and deployment of security technologies, and mentor junior team members. The ISSO will also be responsible for maintaining compliance with various security regulations and frameworks, including DOD, NIST, and DCSA requirements.
Responsibilities
- Support the Information System Security Manager (ISSM) in maintaining compliance with the National Industrial Security Program (NISP).
- Work with engineering and program development teams to provide security requirements for new applications and systems.
- Contribute to the design, documentation, and deployment of security technologies.
- Assist in the development of System Security Plans (SSPs) and Plans of Action and Milestones (POA&Ms).
- Document processes and procedures related to Cyber Security technologies.
- Perform architectural reviews and submissions to support program objectives.
- Mentor junior team members on security technologies and standards.
- Manage and track security project tasks, including security controls development and implementation.
- Conduct security assessments and risk analysis, including log auditing and vulnerability scanning.
- Interact with representatives of government agencies and SCI customers as required.
Requirements
- Bachelor's degree in Information Systems, Computer Science, or a Cyber-related discipline.
- Minimum 5 years of IT-related work experience in an ISSO position.
- DoD approved baseline IAM Level II related certifications (CAP, CASP+ CE, CISM, CISSP or Associate, GSLC, CCISO, or HCCISP).
- Familiarity with various host, network, and cloud-based security technologies.
- Experience with NIST SP 800 standards including 30, 53, 82, and 171.
- Experience with DISA STIGs and SCAP compliance checker.
- Ability to work with all levels of an organization up to the Executive Staff and external customers.
- Must be a U.S. citizen or national, U.S. permanent resident, or lawfully admitted into the U.S. as a refugee or granted asylum.
Nice-to-haves
- Experience in a DOD Information Security contractor security environment.
- Excellent troubleshooting skills across multiple operating systems including Windows and Linux/Unix.
- Experience with eMASS tools and maintaining POA&Ms, artifacts, and SSPs.
Benefits
- Equal Opportunity Employer - M/F/Veteran/Disability/Sexual Orientation/Gender Identity.
