Intermediate Information Assurance Specialist with Security Clearance
Overview This position supports the US Army Futures Command (AFC), Combat Capabilities Development Command (CCDC), Command, Control, Computers, Communications, Cyber, Intelligence, Surveillance, and Reconnaissance (C5ISR) Center, Intelligence, and Information Warfare Directorate's (I2WD) Operations Division Network Branch located at Aberdeen Proving Ground, Maryland.
Requirements includes communication and systems support, information assurance, automation, computer network, telephone control, support for software development and integration, procurement and inventory support to the C5ISR Center and their tenant organizations.
Responsibilities Provide necessary C5ISR Center business network infrastructure security and management support to protect information and information systems from unauthorized access and to protect the data within systems.
Provide Risk Management Framework (RMF) support, and Automated Information System Accreditation support to C5ISR Center and their tenants to include, security risk Assessment support IAW AR 25-1, perform risk analysis of resources, controls, vulnerabilities, threats and the impact of losing systems' capabilities on the mission objective; facilitate decisions to implement security countermeasures or mitigate risk; implement countermeasures; and periodically review programs.
Manage the RMF process in accordance with AR 25-2.
Prepare and review RMF packages in eMASS at the direction of the Organization ISSM (O-ISSM) and Chief Information Security Officer (CISO) for all C5ISR Center investments registered in eMASS.
Provide guidance, interpret policy, and support C5ISR Center information system owners (ISO) and ISO staff responsible for executing an Assess-only or Assess and Authorize package for a C5ISR Center owned system.
Provide guidance and oversight of RMF and Army G-2 accreditations for C5ISR Center and their tenant activities.
All Army networks/systems must be properly accredited by an accreditation authority in order to operate.
Provide all Cybersecurity SCAN results immediately to TPOC.
Begin remediation plan upon discovery breach of unmitigated or unacknowledged vulnerability.
Provide Cybersecurity training support and certification programs for network managers, systems administrators, and other IT professionals.
Monitor and assist in the formal Cybersecurity certification programs for system and network administrators, other cybersecurity professionals, and users; training for scanning personnel; and cybersecurity workstation/server implementation training/guidelines.
Perform cybersecurity inspections of C5ISR Center laboratories and systems at the direction of the Chief Information Officer (CIO) and CISO.
Manage and assist the input of training records for inclusion in the Army Training and Certification Tracking System (AT&CTS).
Provide IAVA compliance and compliance monitoring of all network connected assets.
Implement and manage a Defense In Depth for the total network and/or enclaves within the network to include such items as:
scanning, remediation, host and network intrusion detection/prevention, firewalls, proxy servers, web cache, virus programs, vulnerability scanning, content filtering, remote dial-in protection, Host Based Security Services, RMF, DoD Instruction 5200.
40, accreditation guidance and advice IAW AR 25-2 and Cybersecurity Best Business Practices (BBP's).
Manage the IAVA program for C5ISR Center and their tenant activities.
Maintain firewall configurations and alerts; monitor attacks; and review audit logs.
Institute procedures for anti-virus system maintenance, virus detection/prevention, contact received from the Regional Computer Emergency Response Team (RCERT), and incoming RCERT advisories or patches.
Detect and report malicious and unauthorized activities.
Report IAVM numbers in the required applicable and current database systems.
Support C5ISR Center Network Branch Technical Review Board (TRB), and represent Cybersecurity components in the quarterly C5ISR CENTER Configuration Control Board (CCB).
When applicable, provide DoD public key infrastructure (PKI) support including directory support, certification validation, registration, interface to related Army systems, hosting of PKI-enabled servers, and required key management services as well as PKI solutions for e-mail, web applications, file transfer, and Virtual Private Networks.
Develop and execute the C5ISR Center Cybersecurity program IAW AR 380-5, AR 25-2, and other appropriate DoD/Army guidance, to include preparing security awareness policy and Local Network Security Policy for government approval and recommending other guidance as needed.
Recommend a secure remote access policy for C5ISR Center and their tenants IAW Army parameters.
Develop Continuity of Operations Plan (COOP) and Disaster Recovery (DR) documentation.
Develop contingency service level agreements (SLA) as appropriate.
Provide Certificate of Networthiness (CoN) support and C5ISR Center software request form assistance to users.
Provide Army Portfolio Management (APMS) support as well as answer all APMS data calls.
Provide equipment management support by approving various C5ISR Center forms such as the equipment support form, removable media and maintaining the media control register.
Assist with the ADAM database on SIPRNet and provide guidance to adhere to Two-Person Integrity (TPI), media custodians, and data transfer agent practices.
Approve and create C5ISR Center network accounts.
Monitor and assist in the formal Cybersecurity certification programs for system and network administrators, other Cybersecurity professionals, and users; training for scanning personnel; and Cybersecurity workstation/server implementation training/guidelines.
Establish and publish upon approval Cybersecurity policies and Standard Operating Procedures (SOPs) as required.
Manage and utilize tools, such as Host-Based System Security (HBSS), Assured Compliance Assessment Solution (ACAS), and System Center Configuration Manager (SCCM) to provide infrastructure protection on C5ISR Center systems.
Provide a full-time Information Assurance Security Officer (IASO) if requested at the C5ISR Center location on Joint Base McGuire-Dix-Lakehurst to perform all IA functions listed above and for rapid incident response purposes.
Required Experience/Qualifications Security Clearance:
Top Secret/SCI with Poly Minimum
Experience:
6 Years or Graduate of Military Advanced Course, Staff College, and CISSP Education:
BA/BS; or AA; or two-year Tech School with 6-years' experience.
Certifications:
Security
Preferred Experience/Qualifications Supported the US Army or other Federal Agency.
Has the communication skills to effectively interface with senior military officials, managers, and subordinates.
Special Requirements/Security Clearance Top Secret/SCI with Poly.
Estimated Salary: $20 to $28 per hour based on qualifications.
Requirements includes communication and systems support, information assurance, automation, computer network, telephone control, support for software development and integration, procurement and inventory support to the C5ISR Center and their tenant organizations.
Responsibilities Provide necessary C5ISR Center business network infrastructure security and management support to protect information and information systems from unauthorized access and to protect the data within systems.
Provide Risk Management Framework (RMF) support, and Automated Information System Accreditation support to C5ISR Center and their tenants to include, security risk Assessment support IAW AR 25-1, perform risk analysis of resources, controls, vulnerabilities, threats and the impact of losing systems' capabilities on the mission objective; facilitate decisions to implement security countermeasures or mitigate risk; implement countermeasures; and periodically review programs.
Manage the RMF process in accordance with AR 25-2.
Prepare and review RMF packages in eMASS at the direction of the Organization ISSM (O-ISSM) and Chief Information Security Officer (CISO) for all C5ISR Center investments registered in eMASS.
Provide guidance, interpret policy, and support C5ISR Center information system owners (ISO) and ISO staff responsible for executing an Assess-only or Assess and Authorize package for a C5ISR Center owned system.
Provide guidance and oversight of RMF and Army G-2 accreditations for C5ISR Center and their tenant activities.
All Army networks/systems must be properly accredited by an accreditation authority in order to operate.
Provide all Cybersecurity SCAN results immediately to TPOC.
Begin remediation plan upon discovery breach of unmitigated or unacknowledged vulnerability.
Provide Cybersecurity training support and certification programs for network managers, systems administrators, and other IT professionals.
Monitor and assist in the formal Cybersecurity certification programs for system and network administrators, other cybersecurity professionals, and users; training for scanning personnel; and cybersecurity workstation/server implementation training/guidelines.
Perform cybersecurity inspections of C5ISR Center laboratories and systems at the direction of the Chief Information Officer (CIO) and CISO.
Manage and assist the input of training records for inclusion in the Army Training and Certification Tracking System (AT&CTS).
Provide IAVA compliance and compliance monitoring of all network connected assets.
Implement and manage a Defense In Depth for the total network and/or enclaves within the network to include such items as:
scanning, remediation, host and network intrusion detection/prevention, firewalls, proxy servers, web cache, virus programs, vulnerability scanning, content filtering, remote dial-in protection, Host Based Security Services, RMF, DoD Instruction 5200.
40, accreditation guidance and advice IAW AR 25-2 and Cybersecurity Best Business Practices (BBP's).
Manage the IAVA program for C5ISR Center and their tenant activities.
Maintain firewall configurations and alerts; monitor attacks; and review audit logs.
Institute procedures for anti-virus system maintenance, virus detection/prevention, contact received from the Regional Computer Emergency Response Team (RCERT), and incoming RCERT advisories or patches.
Detect and report malicious and unauthorized activities.
Report IAVM numbers in the required applicable and current database systems.
Support C5ISR Center Network Branch Technical Review Board (TRB), and represent Cybersecurity components in the quarterly C5ISR CENTER Configuration Control Board (CCB).
When applicable, provide DoD public key infrastructure (PKI) support including directory support, certification validation, registration, interface to related Army systems, hosting of PKI-enabled servers, and required key management services as well as PKI solutions for e-mail, web applications, file transfer, and Virtual Private Networks.
Develop and execute the C5ISR Center Cybersecurity program IAW AR 380-5, AR 25-2, and other appropriate DoD/Army guidance, to include preparing security awareness policy and Local Network Security Policy for government approval and recommending other guidance as needed.
Recommend a secure remote access policy for C5ISR Center and their tenants IAW Army parameters.
Develop Continuity of Operations Plan (COOP) and Disaster Recovery (DR) documentation.
Develop contingency service level agreements (SLA) as appropriate.
Provide Certificate of Networthiness (CoN) support and C5ISR Center software request form assistance to users.
Provide Army Portfolio Management (APMS) support as well as answer all APMS data calls.
Provide equipment management support by approving various C5ISR Center forms such as the equipment support form, removable media and maintaining the media control register.
Assist with the ADAM database on SIPRNet and provide guidance to adhere to Two-Person Integrity (TPI), media custodians, and data transfer agent practices.
Approve and create C5ISR Center network accounts.
Monitor and assist in the formal Cybersecurity certification programs for system and network administrators, other Cybersecurity professionals, and users; training for scanning personnel; and Cybersecurity workstation/server implementation training/guidelines.
Establish and publish upon approval Cybersecurity policies and Standard Operating Procedures (SOPs) as required.
Manage and utilize tools, such as Host-Based System Security (HBSS), Assured Compliance Assessment Solution (ACAS), and System Center Configuration Manager (SCCM) to provide infrastructure protection on C5ISR Center systems.
Provide a full-time Information Assurance Security Officer (IASO) if requested at the C5ISR Center location on Joint Base McGuire-Dix-Lakehurst to perform all IA functions listed above and for rapid incident response purposes.
Required Experience/Qualifications Security Clearance:
Top Secret/SCI with Poly Minimum
Experience:
6 Years or Graduate of Military Advanced Course, Staff College, and CISSP Education:
BA/BS; or AA; or two-year Tech School with 6-years' experience.
Certifications:
Security
Preferred Experience/Qualifications Supported the US Army or other Federal Agency.
Has the communication skills to effectively interface with senior military officials, managers, and subordinates.
Special Requirements/Security Clearance Top Secret/SCI with Poly.
Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
