Information Systems Security Officer

NTI CORPORATION
San Antonio, United States of America
10 days ago

Role details

Contract type
Temporary contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Junior
Compensation
$ 100K

Job location

San Antonio, United States of America

Tech stack

Audit Trail
CompTIA Security+
Computer Security
Databases
DevOps
Intrusion Detection and Prevention
Network Security
Network Control
Network administration
Network Protocols
Information Security Management System
Computer Network Operations
Information Technology
Nessus
Vulnerability Analysis

Job description

This position assists the organization in executing the cognizant security authority required to conduct cyber development operations in a classified environment and to meet the information assurance requirements to operate multiple development networks. The position administers and secures temporary and permanent closed development networks, maintains at least 95% network availability during the workweek, and supports Risk Management Framework authorization for Optimus. Note: This position is on-site (not eligible for remote) but also located in downtown San Antonio!, Network Availability Report. Documents network uptime against the 95 percent availability standard across the temporary and permanent closed development networks.

  • Outage Restoration Record. Captures each network outage, the restoration actions taken, and time to restore against the one business day standard, with after-action notes.
  • RMF Authorization Package. The eMASS body of evidence supporting Optimus authorization, including the system security plan, control implementation, and supporting artifacts.
  • Plan of Action and Milestones (POA&M). Tracks open security findings and weaknesses with assigned remediation actions and target dates.
  • Vulnerability Scan Report. Results of security vulnerability scanning (ACAS or Nessus), with findings, severity, and remediation status.
  • Audit Log and Intrusion Review Record. Documented review of audit logs and intrusion detection alerts, including anomalies identified and dispositions.
  • Facility Open and Close Log. Record of safe and facility opening and closing at the start and end of the duty day, supporting the facility security assistance task., Provide Network Administration and Monitoring: Administer testing, development, and operational networks per industry best practices and maintain at least 95% availability during the workweek. Manage Security Tool Development and Facility Security Assistance: Develop and deploy network security tools, and assist in opening and closing safes and facilities at the end of the duty day. Conduct Network Outage Restoration: Restore full network functionality no later than one business day following any outage. Manage Security Compliance and RMF Authorization: Achieve and maintain RMF authorization for Optimus per DoD timelines. Perform Vulnerability and Intrusion Monitoring: Conduct security vulnerability scanning, intrusion detection, and audit log monitoring.

Requirements

Hold an active Top Secret clearance

  • IAT Level II certification
  • DoD or Air Force experience preferred
  • 3 or more years of direct information assurance, network administration, or security management experience
  • Experience administering classified or closed development networks
  • Proven dependability on critical initiatives, with a high level of integrity and accountability, High School Diploma or equivalency., Associates Degree (or higher) with a major in Information Technology or Cyber related field.

CERTIFICATION(S) Required Certificate(s) - Only One of the following is required:

  • CompTIA Security+
  • CompTIA CySA+, Knowledge in DoD Risk Management Framework (NIST SP 800-37) and NIST SP 800-53 security controls Knowledge in DoD 8140 and 8570.01-M IA workforce certification requirements Knowledge in DISA Security Technical Implementation Guides (STIGs) Knowledge in network protocols, administration, and closed development network operations Knowledge in OPSEC, industrial security (32 CFR Part 117, NISPOM), and physical and facility access control, Skilled in network administration and availability monitoring across multiple security domains Skilled in RMF and eMASS authorization package preparation and maintenance Skilled in security vulnerability scanning (ACAS or Nessus), intrusion detection, and audit log review Skilled in DISA STIG application and system hardening Skilled in security tool development and deployment Skilled in incident triage and outage restoration Skilled in classification review of inbound and outbound correspondence Skilled in completing DD 2875 (SAAR) and TASS forms, and new hire in-processing Skilled in OPSEC and Anti-Terrorism Officer training and implementation Skilled in visitor escort, EAL maintenance, access badge preparation, entry and exit inspections, and document accountability database upkeep

Apply for this position