Virgin Orbit, LLC

Information Systems Security Manager (ISSM)

Job Locations US-CA-El Segundo
Req No.
2022-7226
Category
Facilities
Type
Regular FT
Classification
Exempt

Location:

El Segundo, CA

Bonus:

Yes

Job Type:

Full-Time

Who we are

Virgin Orbit National Systems (previously known as VOX Space) provides the national security community of the USA and allied nations with responsive, dedicated, and affordable launch services for small satellites bound for Low Earth Orbit. Headquartered in El Segundo, California, Virgin Orbit National Systems can provide study, analysis, integration, and launch services using Virgin Orbit's LauncherOne, while ensuring our customer’s critical information is protected.

Your Mission

Virgin Orbit National Systems is currently seeking to hire a Information Systems Security Manager that will assist with security measures necessary for implementing and modifying the VO-NS computer environment, cybersecurity program plans and requirements. S/he is responsible for helping with the day-to-day execution and compliance with specific Foreign Ownership, Control or Influence (FOCI) mitigation measures in collaboration with the Defense Counterintelligence Security Agency (DCSA). The ISSM will help idenitfy VO-NS alternative information security objectives. The ISSM will also perform basic cybersecurity duties in support of day to day activities. This position is based in El Segundo, CA.  Knowledge of NISS, Classification Management, and Insider Threat Program Requirements.

  • The Ideal Virgin Orbit National Systems Information Systems Security Manager(ISSM) applicant works closely with Security Manager, Facility Security Officer (FSO), Contract Program Security Officer (CPSO), and manages the assigned information technology teams to support innovative Space and Launch technology with the Configuration Control Board Chair.
  • Evaluates and applies NIST 800-53 Security Framework compliance concepts
  • Leads development and deployment of program information security threat and risk mitigation to protect sensitive information, as per applicable Government guidance’s
  • Creates Risk Management Framework documents, artifacts to support classified information security, cyber policies, procedures, and guidelines for business goals
  • Manages and performs security compliance continuous monitoring access control account management and access enforcement.
  • Leads and participates in weekly security audit assessments with Virgin Orbit National Systems ISSO and our SYSADMIN
  • Prepares, reviews, and presents technical network and anomaly reports for organizational protection levels
  • Identifies root causes, prioritizes threats and recommends software, firmware, and cyber-corrected actions for risk mitigation
  • Provides advisory to senior business program managers for contract proposal information security program team
  • Explores the enterprise and industry for evolving developments regarding data-at-rest and IAAS cloud computing methods to support industry best practices in-depth.
  • Continuously develops the company’s FOCI Electronic Communications Plan to address mitigations as a living document

What you bring

If you want to join us, you’d better have all of these…

  • Applicant (U.S. Citizenship Required)
  • Active U.S. Top Secret Security clearance with current SSBI in last 24-months
  • Excellent people skills, experience leading dynamic environments.
  • Active certification DoD 8570.01m IAM Level III (CISSP, GSLC, or CISM) in good standing.
  • 7+years of experience as an (ISSM) supporting multi-level classified programs
  • 4+years of experience as an (ISSO) supporting network classified programs
  • 4+years of experience working within Special Access Programs
  • Bachelors of Science Degree, fields of study in Cyber, or Information technology sector
  • 10-14 years of prior relevant related work experience or an equivalent combination of technical, formal education and experience or Graduate Degree in Computer Sciences

 Desired Skills/Experience

  • Ability to communicate and engage at both a technical and people-orientated manner, demonstrating efficient and engaging people skills
    • Ability to simplify the complex for non-technical audiences and business stakeholders
    • Current hands-on with Government 700 ICD standard series and the ODAA Manual requirements supporting sensitive environment implementation.
  • Hands-on experience with Risk Management Framework (RMF) process for multiple agencies template product development and product maintenance for assigned systems
  • Strong knowledge of a FOCI mitigation company evaluations and compliance
  • Experience utilizing security-relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include
  • In-depth knowledge of Security Architecture, Computer Network Defense, threat detection, and Insider threat from a  cyber perspective
  • Experience with WSUS Server, Windows, Windows Server 2016/2019, Active Directory and/Azure Directory, group policy, EDR, NESSUS, ACAS, NIDS, DISA STIGs, SCAP, SIEM and, various vulnerability scanning software tools, audit reduction, technical training in network design, test and evaluation training, and HBSS
  • Familiar with AWS EC-2, CMMC Compliance,
  • Experience with National Industrial Security Program and Operating Manual (NISPOM) to protect Unclassified CUI and Classified environments
  • Experience writing policies and implementation of RMF for a flexible data platforms.
  • Experience working both independently and in team environments, managing multiple projects or cross organizational programs

… and you should probably have a bunch of these, too.

  • Familiarity with RMF duties and requirements a plus.
  • COMSEC custodian certification desired.

*The Employer retains the right to change or assign other duties to this position.

 

Physical and/or Additional Requirements

  • Must be able to work all shifts and available for overtime as well as weekends when needed.
  • Domestic and International travel will be required for this role. In addition to, candidate will require a valid passport.

ITAR Requirements:

To conform to U.S. Government space technology export regulations, applicant must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by ITAR (22 CFR §120.15) or eligible to obtain the required authorizations from the U.S. Department of State.

 

Personal Requirements:

The Virgin Orbit National Systems organization has a relaxed and informal culture that encourages individuality and innovation.  You will be motivated, enterprising and enthusiastic.  Company culture is such that you need to be able to “check your ego at the door,” be a self-starter and possess a sense of humility.  You will be helping to start Virgin Orbit National Systems from the ground up, so you will be flexible in day-to-day work assignments.  You will work well under customer time pressure and thrive on being given challenges and responsibility.  You will communicate clearly and be confident and persuasive. You will have a high level of integrity and understand the need of complete confidentiality. 

 

Clearance Requirements:

Position requires you have a current clearance, or are able to pass an appropriate background check for a TS/SCI.

 

Virgin Orbit National Systems is an Equal Opportunity Employer; employment with Virgin Orbit National Systems is governed on the basis of merit, competence and qualifications and will not be influenced in any manner by race, color, religion, gender, national origin/ethnicity, veteran status, disability status, age, sexual orientation, marital status, mental or physical disability or any other legally protected status.