- Entry level
- No Education
- Salary to negotiate
- Colorado Springs
Description: Perform reoccurring cyber hygiene activities to ensure system security controls are operating and monitoring mission integrity.
Assessing known systems vulnerabilities and verifying system hardening and patching activities to ensure compliance with the most current applicable Security Technical Implementation Guides (STIGs)/Security Requirements Guides (SRGs) and related checklists
Preparing documentation (artifacts and bodies of evidence) to support assessment and authorization (A&A) activities necessary to ensure system sustained Approval to Operate (ATO)
Assisting in defining of cyber requirements and design solutions, providing guidance and direction related to security technologies, performing analysis on cybersecurity collected data and test results, identifying and implementing cybersecurity design, and preparing and maintaining engineering and security related documentation
Performing and providing vulnerability assessment results and recommendations to the NISSC Cyber Security personnel
Position is located at CMAFS with occasional on-site support at PAFB and Lockheed Martin. Standard work week is Monday through Friday. Must be willing to work in a mixed (Government and contractor) crew environment and adhere to a mission-critical schedule. Must be willing to support on-call duty based upon a rotating schedule with other MAC SMEs.
Must possess Top Secret/SCI DoD clearance.
Must have excellent technical cybersecurity and communications skills to effectively interface with internal and external customers at all levels. Must be able to work in a high visibility environment and quickly respond to customer direction/requests. Familiarity with military customs and courtesies desired.
Experience with performing assessments of various operating systems with DISA STIGs and SRGs
Experience with IA vulnerability testing and related network and system test tools; e.g., ACAS and Security Content Automation Protocol (SCAP)
Technical experience with ITW/AA mission and/or systems (e.g. CCIC2S, MARS, AME, CPS, SYSOPS, MWMS, MWNS, CPS C&D, CMP)
Understanding of DoD RMF Certification and Accreditation Processes, assessing and validating compliance with IA controls and developing and maintaining associated certification and accreditation documentation
Must possess DoDI 8570.01-M IAT Level-II compliant Professional Certification (e.g. Security + CE, CISSP, GSEC, etc.)
Working knowledge of operating systems security features and settings (e.g. Windows, Unix, and Linux)
Proven ability to make sound decisions and implement all aspects of information systems security as it applies to NISPOM Chapter 8, NIST SPs, and other government doctrine.
Professional demeanor, good interpersonal skills, and ability to excel in a high-paced multi-tasked environment
Demonstrated ability to act independently, prioritize tasks, and manage to schedule
Strong communication skills with the ability to communicate effectively in both oral and written modes,
Must be a U.S. Citizen and in possession of current TS/SCI clearance
Candidate must meet minimum certification requirement for DoD Directive 8570, “Information Assurance Training, Certification, and Workforce Management”. This position requires a minimum certification associated with IAT Level II, which may be met with A+, Network+, Security+ or higher.
Must have 5 years applicable experience with Command and Control Systems with a minimum of 3 years of experience supporting ITW/AA Cybersecurity and/or Operations.
Familiar with NIST Risk Management Framework as described in NIST Special Publication 800-37
Experience with information security toolsets such as HBSS
Experience with network and system security administration, including operating system security configuration and account management best practices for LINUX, Microsoft, Juniper or CISCO systems
Self-starter requiring limited direction and supervision
Ability to support periodic travel
About the company