• Computer Security Analyst (ISSO)

    Job Location US-MA-Cambridge
    Posted Date 4 weeks ago(6/27/2018 12:41 PM)
    Requisition ID
  • Overview

    Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 1,700 employees of Draper tackle important national challenges with a promise of delivering successful and usable solutions. From military defense and space exploration to biomedical engineering, lives often depend on the solutions we provide. Our multidisciplinary teams of engineers and scientists work in a collaborative environment that inspires the cross-fertilization of ideas necessary for true innovation. For more information about Draper, visit www.draper.com.


    Our work is very important to us, but so is our life outside of work. Draper supports many programs to improve work-life balance including workplace flexibility, employee clubs ranging from photography to yoga, health and finance workshops, off site social events and discounts to local museums and cultural activities. If this specific job opportunity and the chance to work at a nationally renowned R&D innovation company appeals to you, apply now www.draper.com/careers.



    Equal Employment Opportunity

    Draper is committed to creating a diverse environment and is proud to be an affirmative action and equal opportunity employer.   We understand the value of diversity and its impact on a high-performance culture.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.   


    Draper is committed to providing access, equal opportunity and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation, please contact hr@draper.com.


    This position will perform the functions of the Information System Security Officer (ISSO) for multiple Department of Defense (DoD) and Intelligence Community (IC) programs.  The Computer Security Analyst will work under the direction of the Manager of Special Programs Information Systems Security, and will work closely with Information System Security Managers (ISSMs) to ensure the confidentiality, integrity, and availability of multiple classified computer systems.  Candidates must be knowledgeable of information technology and security principles.  This is a multi-tasking environment that demands technical proficiency, customer service, communication, and organizational skills.



    • Implements the information systems security program for assigned programs/systems in compliance with NISPOM, DCID 6/3, JAFAN 6/3, ICD 503, and JSIG RMF.
    • Apply cyber security standards including DISA STIGs, RMF security controls (SP 800-53, SP 800-171, CNSSI 1253), and Draper policies and procedures to special programs computing systems. 
    • Prepare and maintain security Assessment and Authorization (A&A) documentation (e.g., IA SOP, SSP, RAR, SCTM) including participation in system categorization.
    • Perform Continuous Monitoring of security controls, to include audit log review, security patching, compliance scanning, configuration management, account management, vulnerability management, control status reporting.
    • Participate in security incident response as necessary, including spill remediation, intrusion and malicious code detection and investigation, reporting, and mitigations to prevent reoccurrence.
    • Supports awareness and training objectives by leading group and individual training sessions, reviewing policies and materials, and suggesting program improvements.
    • Coordinate with and assist other Draper security and information systems stakeholders as required.
    • Perform other duties as assigned by the Manager of Special Programs Information Systems Security.



    Bachelor’s degree in Computer Science, Computer Engineering, Cybersecurity, or related discipline from an accredited college or university. 

    • Experience administering the system functions including security policies and account management of Microsoft Windows and Server as well as Linux/Unix-based systems.
    • DoD Directive 8570.1 IAM Level I or higher certification. (CISSP preferred)
    • 2-5 years’ experience as an ISSO, ISSM, or System Administrator implementing NISPOM Chapter 8, DIACAP/NIST RMF, JAFAN 6/3, DCID 6/3, ICD 503, and/or JSIG IS requirements
    • Ability to work in a team environment as well as independently, demonstrate excellent problem solving abilities, be well organized, flexible, and self-motivated.
    • Active SECRET security clearance or recently active SECRET clearance with last government background investigation within 5 years.
    • Willing to take a polygraph to obtain/maintain access to Sensitive Compartmented Information (SCI)



    • Able to use small tools and work in computer chassis or racks
    • Able to lift at least 30lbs on own



    Office environment

    Labs (electrical, chemical, mechanical)

    Data centers / server rooms



    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on social media

    Connect With Draper for Future Opportunities!

    If you don't find the right posting in our Career Opportunities, you may submit your resume for future consideration.