Job Description

Active Secret Security Clearance is required for this role.

Description:

• Develops and maintains an IS security program and policies for an assigned area of responsibility.
• Develops and oversees operational IS security implementation policy and guidelines.
• Monitors all available resources that provide warnings of system vulnerabilities or ongoing attacks. Monitors system recovery processes to ensure security features and procedures are properly restored and functioning correctly.
• Responsible for security assessments, tests, and reviews; ensuring proper measures are taken when an IS incident or vulnerability affecting classified systems or information is discovered.
• Ensures the application of configuration management policies and procedures for authorizing the use of hardware/software are followed.
• Ensures systems are operated, maintained, and disposed of in accordance with security policies and procedures as outlined in the SSP.
• Develops and updates the SSP, manages and controls changes to the system, and assesses the security impact of those changes.
• Ensures user activity monitoring data is analyzed, stored, and protected in accordance with the ITPSO policies and procedures.
• Develops and maintains POA&Ms in order to identify IS weaknesses, resources and timelines for corrective actions, and mitigate actions.
• Ensures all users have the requisite security clearances and authorization and are aware of their security responsibilities.

Responsibilities:

• This position assists in the security configuration and management of collateral classified systems and networks in a variety of traditional and virtual environments including Linux, Unix, Sun, and Windows.
• Assists the Information System Security Manager (ISSM) in the development and maintenance of System Security Plans (SSP) and associated artifacts such as the Plan of Action & Milestones (POA&M), Risk Assessment Report, and Continuous Monitoring Strategy.
• Ensures systems are operated, maintained, and disposed of in accordance with organization security policies and procedures.
• Collects, analyzes, and stores system audit records.
• Conducts network, system, and application vulnerability scanning, configuration assessment, and remediation.
• Prepares for and participates in periodic organization compliance assessments.
• Ensures account management documentation is complete and updated. Maintains configuration management documentation (change tracking, maintenance logs, etc.)
• Candidate must have strong interpersonal skills and be able to manage stress in a professional manner.
• Candidate must be knowledgeable in computer security principles and policies, including: the Risk Management Framework (RMF), Security Technical Implementation Guides (STIGs), National Industrial Security Program Operating Manual (NISPOM), and Defense Counterintelligence and Security Agency (DCSA) Assessment and Authorization Manual (DAAPM).
• Candidate must possess (and maintain) a DoD 8570.01-M IAM I baseline certification (Security+ etc)

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

• Dice Id: 10123373
• Position Id: SANSHI0716

Job Tags

Similar Jobs