Who are we?

MIT Lincoln Laboratory is a Federally Funded Research and Development Center (FFRDC) whose mission is research in support of National Security.

• Mission - The Security Services Department’s (SSD) overall mission is to identify and counter security threats to the MIT Lincoln Laboratory’s mission of development of game-changing technology in support of national security, including guarding against compromise by foreign intelligence agencies and insider threats.
• Culture – We foster an inclusive, opportunity-filled environment of empowered team members from diverse backgrounds.

What will you do?

• Provide information systems security support to several independent MIT Lincoln Laboratory programs.
• Assist in the security configuration and management of Special Programs classified systems and networks in a variety of traditional and virtual environments including Linux, Unix, Sun, Mac, and Windows.
• Assist the Information System Security Manager (ISSM) in the development and maintenance of System Security Plans (SSP) and associated artifacts such as the Plan of Action & Milestones (POA&M), Risk Assessment Report, and Continuous Monitoring Strategy.
• Ensure systems are operated, maintained, and disposed of in accordance with organization security policies and procedures.
• Collect, analyze, and store system audit records.
• Track audit findings and recommendations to ensure appropriate mitigation actions are taken.
• Conduct network, system, and application vulnerability scanning, configuration assessment, and remediation.
• Prepare for and participate in periodic organization compliance assessments.
• Ensure account management documentation is complete and updated.
• Maintain configuration management documentation (change tracking, maintenance logs, etc.).
• Serve as a member of the Configuration Control Board (CCB) as needed.

How you will grow?

You will find significant opportunities to do meaningful work in an environment intentionally designed to be one where you will learn, thrive and belong.

• Leadership: Room to advance on your team or to lead cross-functional projects.
• Growth Opportunities: Potential for lateral and vertical movement.
• Education/Training: Management training, mentorship, in-house and external courses.
• Exposure: Engagement with sponsors, stakeholders, Laboratory leadership and other Departments and Divisions.
• Community: Participation is encouraged for Laboratory social events, Employee Resource Groups (ERGs), clubs and study groups, volunteering and community service projects.

What you will need:

To work with MITLL, all employees must meet certain basic requirements.

• The ability to obtain and maintain a Top-Secret clearance with SCI.
• Must be a U.S. Citizen.

• Successfully pass a background check and consent to undergoing a government polygraph examination.

• Excellent written and verbal communication skills are required.

Ideally, you will have/Requirements:

The Laboratory values experiences from diverse backgrounds and occupations. The most successful candidates will have the following skills and qualifications.

• Strong interpersonal skills and be able to manage stress in a professional manner.
• 1-2 years of IT security experience in DoD Industrial Security is preferred.
• AS degree in Computer Science, Cybersecurity, Information Technology, Computer Information Systems, or related discipline is preferred.
• Possess a DoD 8570.01 IAM Level 1 baseline certification (e.g. CompTIA Security+ CE), or be able to obtain one within 6 months of hire.
  • Technical experience, skills, and course work completed toward an undergraduate degree, or industry IT security certifications may be considered in lieu of education.

Ideally, you will have/ Requirements (cont):

• Knowledgeable in computer security principles and policies, to include:
  • Risk Management Framework (RMF),
  • Security Technical Implementation Guides (STIGs)
  • Vulnerability management
  • Audit and Compliance tools
  • Accreditation documentation (Body of Evidence)
  • Incident Response
  • Hardware / Software Inventories
  • Multiple operating systems, to include:
    • Windows 10/11
    • Windows Server 2012/2016/2019/2022
    • Red Hat Enterprise
    • Linux
    • Ubuntu
    • Mac
• Experience with auditing information systems in virtualized environments.

Ideally, you will have/Requirements (cont.):

• Demonstrated understanding of the following:
  • NIST SP 800-53
  • NIST SP 800-37
  • Joint SAP Implementation Guide (JSIG)
  • Intelligence Community Directive (ICD) 503
  • DoD Manual 5205 volumes 1-4
• Strong technical skills and be able to respond to off-hours emergencies.
• Position requires occasional local and overnight travel.