Provide on-site Information System Security Officer (ISSO) and/or Information Assurance Officer (IAO) support to our F-35 customer.
Essential Job Functions :
Ensure proper Configuration Management procedures are followed prior to implementation and contingent upon an established approval process.Initiate requests for temporary and permanent exception, deviations, or waivers to IA requirements.Assure successful implementation and functionality of security requirements and appropriate IT policies and procedures that are consistent with the organization's mission and goals.Collect and maintain data needed to meet system IA reporting.Define and/or implement policies and procedures to ensure protection of critical infrastructure (as appropriate).Ensure plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc.Ensure that IA inspections, tests, and reviews are coordinated for both networked and standalone systems.Ensure that IA requirements are integrated into the continuity planning for the system and/or organization(s).Evaluate and approve development efforts to ensure that baseline security safeguards are appropriately installed.Evaluate cost-benefit, economic, and risk analysis in decision-making processes.Identify security requirements specific to an IT system in all phases of the System Life Cycle.Participate in an information security risk assessment during the Security Assessment and Authorization process.Participate in the acquisition process as necessary, following appropriate supply chain risk management practices.Contribute to the development or modification of the computer environment IA security program plans and requirements.Prepare, distribute, and maintain plans, instructions, guidance, and SOPs concerning network system security operations.Provide system-related input on IA security requirements for statements of work and procurement documents.Recognize potential security violations and report incidents as required.Recommend resource allocations for secure operation and maintenance of the organization.Supervise or manage protective or corrective measures when an IA incident or vulnerability is discovered.Support compliance activities (e.g., ensure system security configuration guidelines are followed, conduct compliance monitoring).Coach and mentor junior staff.Required Skills :
Due to the sensitivity of customer-related requirements, U.S. Citizenship is required.
Bachelor's degree with 5 years of relevant experience or a Master's degree with 4 years of relevant experience. High school diploma plus 13 years of professional experience will also be considered.
Acquire and maintain security clearance and SSBI.
Knowledge of Federal, DoD, and U.S. Navy Guidance.
Experience with general IA Tools.
Knowledge of Federal, DoD, and USMC Guidance (DoDD 8500.1, DoDI 8500.2), DITSCAP, DIACAP, NIACAP, NIST, and Certification & Accreditation processes.
DOD 8140 IAT Level II certification (Security+, CySA+, and CCNA-Security).
Desired Skills :
Knowledge of Risk Management Framework.
Note: The duplicate DOD 8140 IAT Level II certification mention has been removed for clarity.
#J-18808-Ljbffr
