Information System Security Officer - Senior

Astrion

Eglin Air Force Base, Florida

JOB DETAILS
SKILLS
Air Force, CISM - Certified Information Security Manager, CISSP - Certified Information Systems Security Professional, Change Requests/Orders, Communication Skills, Computer Security, Corrective Action, Cyberspace, Defense Information Systems Agency (DISA), DoD Acquisitions, Document Management, Documentation, GCIA - GIAC Certified Intrusion Analyst, GCIH - GIAC Certified Incident Handler, GIAC - Global Information Assurance Certification, GSLC - GIAC Security Leadership Certificate, ISACA (Information Systems Audit and Control Association), ISO (International Organization for Standardization), ISSMP - Information Systems Security Management Professional, Information Technology & Information Systems, Information/Data Security (InfoSec), Internet Security, Microsoft Office, Microsoft SharePoint, Presentation/Verbal Skills, Quality Assurance Methodology, Risk Management, Risk Management Framework (RMF), Security Analysis, Security Attacks, Security Monitoring, Strategic Planning, Systems Administration/Management, Technical Support, Technical Writing, Test Automation, Test Plan/Schedule, Test Tools, Testing, United States Citizen, United States Department of Defense (DoD), Willing to Travel, Writing Skills
LOCATION
Eglin Air Force Base, Florida
POSTED
6 days ago
Overview:

INFORMATION SYSTEM SECURITY MANAGER - SENIOR

LOCATION: Eglin AFB, FL

JOB STATUS: Full-time

CLEARANCE: Top-Secret

CERTIFICATION: 8570 IAM Level III / 8140 722-Advanced (CISSP, CISM, etc.)

TRAVEL: 5%

 

 

Astrion has an exciting opportunity for an Information System Security Manager - Senior located at the 45th Test Squadron, Cyberspace Test Range Flight (45TS/TGAE) on Eglin AFB, FL.

 

This position provides advanced cybersecurity management support to the Cyberspace Test Range Flight (TGAE) and includes the Command and Control Network (C2NET) family of Research, Development, Test, and Evaluation (RDT&E) enclaves connected to SIPR, DREN, and SDREN. C2NET serves as the secure test bed for test and evaluation activities undertaken by the 96th Cyberspace Test Group (96 CTG). Accordingly, TGAE provides for all the non-core information technology support across 96 CTG.

 

REQUIRED QUALIFICATIONS / SKILLS

  • Master’s Degree in a technical field and a minimum of 10 years of relevant technical experience is required. Additional relevant experience may be substituted for education.
  • US. Citizenship
  • Active Top-Secret clearance.
  • Must possess the ability to perform tasks independently and oversee the efforts of junior and journeyman contractor personnel within the technical/professional discipline.
  • Demonstrates advanced knowledge of their technical/professional discipline as well as possess a comprehensive understanding and ability to apply associated standards, procedures and practices in their area of expertise.
  • Experience performing cybersecurity duties as outlined in DoDI 8500.01, AFI 17-130, and AFI 17-1301.
  • Knowledge and experience with Risk Management Framework (RMF).
  • Familiarity with Defense Information Systems Agency (DISA) Secure Requirements Guides (SRGs) and Security Technical Implementation Guides (STIGs).
  • Proficiency in the use and integration of MS Office applications.
  • Must be able to effectively communicate orally and possess technical writing skills.
  • Experience utilizing DoD tracking systems to input/document cybersecurity deficiencies, vulnerabilities, and change requests in the appropriate tracking system for each program, specifically expertise with using eMASS.
  • Experience with conducting information security continuous monitoring (ISCM) by maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions IAW approved ISCM strategy.
  • Experience validating, evaluating and analyzing finding results using automated testing tools.
  • At a minimum, the successful candidate will meet the requirements for and maintain a personnel certification associated with the DCWF ISSM work role (722) at an advanced (senior) proficiency level as outlined in DoWI 8510.01, AFMAN 17-1305 and AFI 17-101 for assigned systems/applications:
    • ISACA CISM
    • United America Technologies CISSO
    • FITSI FITSP-M
    • GIAC GCIA
    • GIAC GCSA
    • GIAC GCIH
    • GIAC GSLC
    • GIAC GICSP
    • (ISC)2 CISSP-ISSMP
    • (ISC)2 CISSP

 

PREFERRED QUALIFICATIONS / SKILLS  

  • Experience working with STIG results in STIG Manager.
  • Creating, managing, and approving documentation artifacts in SharePoint.
  • Strong information technology background preferred.
  • Understanding of development test and evaluation processes, specifically the DoD Acquisition Lifecycle for program development and detailed knowledge of Air Force C2 test methodologies including AFI 99-103.

 

RESPONSIBILITIES

  • Serves as the primary cybersecurity technical advisor to the AO, PM and ISO.
  • Ensures the integration of cybersecurity into, and throughout, the lifecycle of the IT, on behalf of the AO and in accordance with DoWI 8510.0.
  • Completes and maintains required cybersecurity certification IAW AFMAN 17-1303.
  • Ensures all AF IT cybersecurity-related documentation is current and accessible to properly authorized individuals.
  • Supports the PM or ISO in maintaining current authorization to operate, approval to connect (if required), and implementing corrective actions identified in the plan of actions and milestones.
  • Coordinates, with the PM and AO, development of an ISCM strategy and monitors any proposed or actual changes to the system and its environment.
  • Continuously monitors the IT and environment for security-relevant events.
  • Assesses proposed configuration changes for potential impact to the cybersecurity posture.
  • Assesses the quality of security controls implementation against performance indicators.
  • Ensures cybersecurity-related events or configuration changes that impact AF IT authorization or adversely impact the security posture are formally reported to the AO and other affected parties, such as IOs, stewards, and AOs of interconnected IT.
  • Ensures all ISSOs and privileged users receive necessary technical training and obtain cybersecurity certification IAW AFMAN 17-1301, Computer Security (COMPUSEC), AFMAN 17-1303, and maintain proper clearances IAW DoWI 8500.01.
  • Ensures the AF IT is acquired, documented, operated, used, maintained, and disposed of properly IAW DoWI 5000.02 and DoWI 8510.01.

About the Company

A

Astrion

We are the transformative evolution of two prominent government services firms, ERC and Oasis Systems, each bringing with them a rich legacy of dedicated service to our nation’s Defense and Federal communities.

The company brings together 2,800 employees focused on Cybersecurity, Digital Solutions, Mission Support, and Systems Engineering serving customers in more than 36 states across the U.S. with Centers of Excellence in Washington DC, Huntsville, AL and Burlington, MA.

Our resources, deep expertise, and adaptable solutions will enable us to scale and expand development and engineering capabilities for Defense and Federal communities.

COMPANY SIZE
2,500 to 4,999 employees
INDUSTRY
Other/Not Classified
WEBSITE
https://astrion.us/about-us/