Description: This position will perform the functions of multiple Information Assurance (IA) roles for Department of Defense (DoD) and Intelligence Community (IC) programs. Candidates must be knowledgeable of information technology and security principles. This is a multi-tasking environment that demands customer service, communication, and organizational skills.
Essential Functions: ?Perform oversight of the development, implementation and evaluation of information systems security program for assigned programs in compliance with NISPOM, DAAPM, ICD 503, and JSIG RMF. ?Prepare and maintain security Assessment and Authorization documentation (e.g., IA SOP, SSP, RAR, SCTM) including participation in system categorization. ?Ensure the development, documentation, and presentation of IS security education, awareness, and training activities for users and others, as appropriate. ?Apply cyber security standards, directives, guidance and policies to special programs classified computing environments. ?Perform tasks related to compliance of Continuous Monitoring (ConMon) Plans (e.g., audit log review, security patching, software and hardware configuration management). ?Investigate security incidents to include data spills, data integrity incidents, and malicious code incidents. ?Ensure system security measures comply with applicable government policies, provide configuration management and accurately assess the impact of modifications and vulnerabilities for each system. ?Conduct reviews and technical inspections to identify and mitigate potential security weaknesses, and ensure that all security features applied to a system are implemented and functional. ?On occasion, work extended hours (other than normal business hours) to support contractual requirements to meet customer needs. Accomplish other duties as assigned. Basic Qualifications: ?DoD Directive 8570.1 IAM Level I or higher certification. (CISSP preferred) ?Active Final SECRET security clearance (Top Secret preferred). ?Experience as an ISSO or ISSM implementing NISPOM Chapter 8, DAAPM, DIACAP/NIST RMF, JAFAN 6/3, DCID 6/3, ICD 503, and/or JSIG IS requirements. ?Experience with certifying compliance of various operating systems. ?Ability to work in a team environment as well as independently, demonstrate excellent problem-solving abilities, be well organized, flexible, and self-motivated. Desired Skills: ?Experience administering the system functions including security policies and account management of Microsoft Windows and Server as well as Linux/Unix-based systems. ?Knowledge of, or experience with \"mobile systems\" under RMF authorization and/or test event plans supported with transportation of systems, ideally with Navy afloat or shore locations. Associated topics: countermeasure, guard, loss prevention, metal detection, monitor, safety officer, secure, security officer, surveillance, university
* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.