Information System Security Officer

Rapid Prototyping Research Center

Information System Security Officer

The George Mason University Rapid Prototyping Research Center, within the College of Engineering and Computing, seeks a proactive, organized, and self-reliant Information System Security Officer. George Mason University has a strong institutional commitment to the achievement of excellence and diversity among its faculty and staff, and strongly encourages candidates to apply who will enrich Mason’s academic and culturally inclusive environment.

About the Department:

The Rapid Prototyping Research Center (RPRC) focuses on providing its Department of Defense (DOD) sponsors a unique perspective on rapid prototyping that aligns with Section 804 in the FY17 National Defense Authorization Act. Specifically, rather than developing a new system to satisfy intractable problems on the battlefield, the RPRC integrates new technology into existing infrastructure. This unique approach reduces acquisition costs since the sustainment tail is in place. It also reduces the time to field intractable solutions to the battlefield from 10-14 years down to 1-3 years and provides assurance that the prototype involved is integrated with the latest technology, not dated technology due to lengthy acquisition delivery timelines.

About the Position:

This position supports the Principal Investigator(s) in guiding key stakeholders in formulating requirements, advising alternative approaches, and conduct feasibility studies to support decision-making. The ISSO will have the responsibility for ensuring the security of project specific information systems and data. They are responsible for identifying and managing risks, implementing security policies and procedures, and ensuring compliance with regulations such as HIPAA or General Data Protection Regulation (GDPR). Utilizing their knowledge of security standards and frameworks such as NIST, ISO 27001, or PCI DSS, they will manage the implementation of security controls, conduct security assessments, and provide guidance to other members of the team.

Responsibilities:

• The RPRC Information System Security Officer (ISSO) will be responsible to:
• Develop, implement, and maintain security policies, procedures, and controls to protect information systems and data’s confidentiality, integrity, and availability;
• Conduct security risk assessments, identify vulnerabilities and risks, and develop mitigation strategies;
• Monitor compliance with security policies, standards, and regulations, and report any non-compliance issues to management;
• Conduct security awareness and training programs for employees, contractors, and other stakeholders to promote a culture of security awareness;
• Respond to security incidents, conduct investigations, and implement remediation measures;
• Collaborate with other teams to ensure that security is integrated into developing, deploying, and maintaining information systems and data;
• Participate in security audits, assessments, and evaluations, and ensure that corrective actions are taken to address any identified issues;
• Stay up-to-date with the latest security trends, technologies, and regulations, and provide recommendations for improvement;
• Provide technical guidance and mentorship to team members on security best practices and standards; and
• Serve as the primary point of contact for security-related inquiries and incidents.

Required Qualifications:

• US Citizen with ability to obtain a TS clearance;
• Master’s degree or equivalent combination of education, training, and work experience, preferably in computer science, Information Security, or a related field;
• Substantial experience in information security, including experience as an Information System Security Officer or a similar role (generally 5+ years);
• Knowledge of security principles, standards, and regulations, such as NIST, FISMA, HIPAA, and PCI DSS;
• Experience in working with the Department of Defense (DoD), working within EMASS, and have a background in the Risk Management Framework (RMF);
• Experience with security technologies like firewalls, intrusion detection/prevention systems, encryption, and vulnerability scanners;
• Experience with security assessments, penetration testing, and incident response;
• Excellent communication and collaboration skills, with the ability to work effectively in a team environment; and
• Effective problem-solving skills, with the ability to identify and mitigate security risks.

Preferred Qualifications:

• Certification in information security, such as CISSP, CISM, or CISA; and
• Experience with cloud security.

Mason Engineering: The Future of Engineering is Here

The College of Engineering and Computing at George Mason University is comprised of the Volgenau School of Engineering and the School of Computing. The College is a fast-growing force for innovation in research and education. Ranked nationally in the top 100 in both undergraduate and graduate education, the College boasts 10,000 students in 37 undergraduate, master’s, and doctoral degree programs, including several first-in-the-nation offerings. Of the 302 full-time faculty who comprise the College, 93 are tenured, 75 are tenure-track, 82 are instructional faculty, and 52 are research faculty. As part of a nationally ranked research university, its research teams expended more than $70 million in sponsored research awards last year and has projects with over $400 million in current and anticipated awards. Located in the heart of Northern Virginia’s technology corridor, Mason Engineering stands out for its research in many leading areas including artificial intelligence, data analytics engineering, cybersecurity engineering, biomedical imaging and devices, autonomous systems, 5G communications, systems architectures, computational biomedicine, community-based healthcare, advanced materials and manufacturing, sustainable infrastructure, and more. The College highly encourages multidisciplinary research and provides faculty with opportunities to work with other disciplines.

George Mason University is the largest and most diverse public research university in Virginia, with an enrollment of 40,000 students studying in over 200 degree programs. Mason is an innovative, entrepreneurial institution with national distinction in a range of academic fields. It was classified as an R1 research institution in 2016 by the Carnegie Classifications of Institutes of Higher Education. Mason is located in the city of Fairfax in Northern Virginia at the doorstep of the Washington, D.C., metropolitan area, with unmatched geographical access to a number of federal agencies and national laboratories. Northern Virginia is also home to one of the largest concentrations of high-tech firms in the nation, providing excellent opportunities for interaction with industry. Fairfax is consistently rated as being among the best places to live in the country, and has an outstanding local public school system.

In conjunction with Amazon’s decision to establish a second headquarters in Northern Virginia, the Commonwealth of Virginia announced a multi-year plan to invest in the growth of degree programs in computing. George Mason University has committed to accelerate its plans to increase its capacity in engineering and computing. Some of the university’s exciting plans are the launch of the Institute for Digital InnovAtion, a university think tank and incubator to serve the digital economy, and the expansion of its Arlington Campus with a 360,000 square foot building¬–Fuse at Mason Square. Fuse will become the nexus of Mason’s transdisciplinary research, entrepreneurship, and academic program efforts in digital innovation, and will unite the public and private sectors in a collaborative alliance to address the world’s grand challenges.

Special Instructions to Applicants  

For full consideration, applicants must complete the online application at https://jobs.gmu.edu/ for position number F905AZ; and attach a cover letter, resume, a statement of what diversity and inclusion mean to you (to attach as ‘Other Doc’), and a list of three professional references with contact information. Full consideration will apply to applicants who submit their completed application by September 29, 2023; however, review of applications will continue until the position is filled.

George Mason University is an equal opportunity/affirmative action employer, committed to promoting inclusion and equity in its community. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any characteristic protected by law.