Information Assurance Specialist

Develop JWICS accreditation documentation for certified hardware, software, and intelligence mission applications. Develop and maintain a formal site Sensitive Compartment Information (SCI) Information Systems (IS) security program under the guidance and direction of the site Information Systems Security Manager (ISSM). Operate, maintain, and dispose of SCI systems in accordance with DoD Joint Security Implementation Guide (DJSIG) and Air Force policies and procedures as outlined in the accreditation/certification support documentation package. Provide necessary system-related documentation for each site IS, to include accountability, access and special handling requirements in daily and Risk Management Framework activities to meet the requirements of the information assurance program. Monitor and report required Information System Security Officers (ISSOs) technical and security training under the ISSM guidance. Maintain procedures for clearing, purging, declassifying and releasing system memory, media and output. Coordinate and conduct IS security inspections, tests and reviews and ensure proper protection and corrective measures have been taken when an IS incident or vulnerability has been discovered. Report security incidents/violation to the local Special Security Office (SSO). Assist the Configuration Manager (CM) to establish a CM Plan and ensure CM policies and procedures are developed and followed to support the CM Plan. Assist the ISSM and ISSOs in ensuring proper decisions are made regarding the levels of concern for confidentiality, integrity and availability of the data, and the protection levels for confidentiality for the system. Assist with acquisition of software and hardware to support projects and requirements. Conduct periodic testing to evaluate the security posture of the IS by employing various intrusion/attack detections and monitoring tools. Review SCI system audit logs. Identify problems and resolve conflicts through persuasive discussions.Maintain currency in customer related IT and state-of-the-art network techniques. Review certification and accreditation (C&A) documentation and produce required C&A documentation. Maintain a repository for systems C&A documentation and modifications as required by the Delegated Authorizing Official and Chief Information Security Officer. Provide briefings and assist in the development of recommendations concerning long-range information system security objectives. Work with the SSO to ensure that all SCI systems are placed in approved SCI Facilities.

Qualifications

3+ years experience in information assurance or cyber security. Bachelor’s degree in a related field desired. Must be CISSP certified (or equivalent certification in compliance with DoD 8570 IAT Level III). Experience with the certification and accreditation process. Significant experience in vulnerability scanning and analysis, including the use of automated tools and vulnerability management systems. Knowledge of intrusion prevention and network access control tools/systems. Understanding of system audit principles and security risk assessment. Must have a solid understanding of network infrastructure and mission assurance. Familiar with Federal government and DOD standards for IA/security including DIACAP, FISMA, NIST, and OMB. Must have solid communications skills and be capable of working with all levels of an organization. Must be a US citizen and hold a Top Secret clearance with SCI access or eligibility (TS/SCI).

Applicants selected will be subject to a U.S. government security investigation and must meet eligibility requirements for access to classified information.

EOE/M/F/Vet/Disabled