Information Assurance Support
MicroTech · Sumter, SC · 1 mo ago
Information TechnologyFull-time
Responsibilities
- Serve as the information security subject matter expert, and implement processes and controls in support of cybersecurity programs to ensure compliance with AFI 17-130, Cybersecurity Program Management, and other governing DoD, USAF and USAFCENT directives and policy;
- Plan, implement, upgrade and monitor security measures for the protection of communications and IT systems and information;
- Draft, review and coordinate local IA policies, procedures and operating instructions, and provide recommendations for revisions;
- Identify and manage cybersecurity risks; and implement controls to ensure the security and delivery of mission critical services;
- Monitor and detect cybersecurity events; and implement appropriate response and recovery actions;
- Manage cybersecurity incident management handling, response, escalation and reporting IAW SPIN-C and other IA applicable regulations;
- Maintain cybersecurity posture IAW SPIN-C and applicable DoD, AF and USAFCENT directives and policy;
- Ensure all IT hardware/software products are configured IAW with Security Technical Implementation Guidance (STIG) and other relevant security configuration and implementation guidance;
- Ensure no unauthorized hardware/software is installed or used on Enterprise and AOC networks and systems;
- Utilize standard software tools to perform vulnerability scans of network equipment and software; and assist network, systems and client administrators in implementing corrective actions required when vulnerabilities are detected;
- Develop, update and maintain certification and accreditation documentation, including but not limited to DoD Risk Management Framework (RMF) artifacts, Plan of Action and Milestones (POA&Ms), waivers, and vulnerability mitigation plans;
- Assess the impact of changes on certification and accreditation packages, and advise the government accordingly;
- Process and coordinate system access authorization requests, software approval requests, firewall and proxy exemption requests/waivers, and other IA-related documents;
- Ensure IA-related documentation is current and accessible to authorized individuals;
- Research security issues affecting network/systems hardware and software, and provide recommended solutions;
- Ensure unit and individuals are in compliance with USAFCENT ACCC IA standards and guidance;
- Promote information security awareness;
- Absorb and respond to sensitive and/or classified hard drive and removable media tracking, sanitization and destruction;
- Operate, manage and administer unit Communications Security (COMSEC) and Emissions Security (EMSEC), and Operations Security (OPSEC) programs, as required;
- Perform technical support and O&M activities;
- Attend and participate in cybersecurity and CM meetings, as required;
- Develop and submit a Cybersecurity Monthly Status Report;
- Develop and submit IA advisories and ad-hoc reports, as required by the government.
Qualifications
- Bachelor's degree in Computer Science or related field, and 5+ years’ work experience;
- AND DoD 8140 DCWF 722, Intermediate Level (GLSC or CISM) certification. (CISSP) certification within 1 year of hire.
- DISA ACAS (Assured Compliance Assessment Solution) Certification (active/ or obtained within 1 year of hire / notification)
- Active Top Secret clearance with SCI eligibility required