Access Authorization, Air Force, Auditing, Best Practices, CCNP - Cisco Certified Network Professional, CISSP - Certified Information Systems Security Professional, Computer Hacking, Computer Security, Configuration Management, Consulting, Content Development, Emerging Technology, Firewalls, Forensic Science, Incident Response, Information Systems Security Engineering (ISSE), Information Technology/Systems Audit, Information/Data Security (InfoSec), Internet Security, Leadership, Malware, Network Performance/Analysis, Network Routers, Network Switching, Online Training, Operational Support, Procedure Development, Project Planning, Public Key Infrastructure (PKI), Reporting Skills, Risk Management, Security Analysis, Security Architecture, Security Attacks, Security Monitoring, Security Patches, Staff Training, Systems Administration/Management, Systems Analysis, Systems Engineering, Technical Consulting, Technical Leadership, Traceability, Training Program, Training/Teaching Curriculum, U.S. National Institute of Standards and Technology (NIST), VMWare Certified Professional (VCP), VPN (Virtual Private Network), Vulnerability Scanners, Web Infrastructure
Overview
--------
Astrion has an exciting opportunity coming up for an Information Systems Security Engineer (ISSE) to join our team and support the 39th Information Operations Squadron (39 IOS) located at Hurlburt Field, FL. We are preparing to hire for Journeyman, Senior, and SME levels. We anticipate a start date in March/April 2026.
Cyber Operations Formal Training Support III (CyOFTS III)
--------------------------------------------------------
CyOFTS III is a Cyber Schoolhouse program supporting delivery, development, and sustainment of cyber training across operationally relevant mission sets. The team supports instruction, curriculum and content development, training operations, and program execution at multiple Air Force and joint training locations.
Required Qualifications / Skills
-------------------------------
- Active Top Secret clearance
- IAT/M Level II certification
- Education and Experience will depend on the labor category level
- Previous Information System Security experience is required
Responsibilities
----------------
### Perform Information Systems Security Engineer duties consistent with the labor category and required RMF experience
- Support security architecture and security engineering activities aligned to DCWF work roles (Security Architect; Information Systems Security Developer; Cyber Defense Infrastructure Support Specialist)
- Support security control assessment and ISSM coordination activities aligned to DCWF work roles (Security Control Assessor; Information Systems Security Manager)
### Maintain and apply required IAT/M certification level (II or III) within the scope of assigned duties
- Stay up to date on emerging technologies, exploits, vulnerabilities, and hacker techniques and provide briefings and reports to leadership
- Train staff on, and oversee the use of, information security standards, policies, and best practices while performing duties outlined in national standards including, but not limited to: CNSSI 4009, NIST 800-37, and NIST 800-160
### Understand system engineering and cybersecurity concepts and methodologies at the professional level with knowledge equivalent to:
- Certified Information Systems Security Professional, Cisco Certified Network Professional, VMWare Certified Professional, or similar certifications
### Create, draft, and maintain Security Assessment and Authorization packages along with assisting and consulting in the development of information security procedures
- Provide artifacts for RMF packages including, but not limited to: Security Plans, Security Assessment Reports, Security Controls Traceability Matrix, and Plan of Action and Milestones
### Ensure systems comply with Cybersecurity and Information Assurance and Cybersecurity standards and best practices including, but not limited to:
- Endpoints, Switches, Routers, Firewalls, and Servers
### Assist and consult in technical management including, but not limited to:
- Business/Mission Analysis, System Requirements Definitions, System Architecture, Defense in Depth, Zero Trust, Domain Separation, and Disaster Recovery
### Assist/consult in technical processes including, but not limited to:
- Project Planning, Configuration Management, Risk Management, and Information Management
### Ensure proper implementation of technical security controls and measures including, but not limited to:
- STIGs, AAA, VPN, Public Key Infrastructure (PKI), Identity, Credential, and Access Management (ICAM), and Security Patches
### Ensure all systems are properly logging events to include but not limited to:
- the Security Incident and Event Monitor (SIEM) used for live monitoring and alerts
### Perform system audits, vulnerability scans, and threat assessments on all networks including, but not limited to:
- System Analysis/Forensics and Anomaly Detection
### Perform incident response activities and conduct investigations of information security breaches to identify vulnerabilities and evaluate the damage including, but not limited to:
- Provide Intelligence, Provide Reports and Malware