Information Systems Security Engineer
Posted by firstname.lastname@example.org on June 12, 2019
To apply to this job, click here.
The Information System Security Engineer (ISSE) reports to and receives work direction derivatives from the Information System Security Officer (ISSO) and Task Order Manager. The ISSE will perform the following duties:
ESSENTIAL DUTIES AND RESPONSIBILITIES
- Provide Cyber Security technical and management support to the Battle Simulation Centers (BSCs) and Combined Arms Staff Trainer Facilities (CASTs) located at II MEF (Camp Lejeune, NC).
- Implement cybersecurity solutions in compliance with the RMF, NIST, DoD and Marine Corps policies and standards to establish or sustain ATOs for information systems and networks.
- Provide Cyber Security oversight, direction, and guidance to the BSC/CAST workforce in support of attaining and maintaining ATOs through the RMF process.
- Develop and maintain education and training programs for BSC/CAST workforce to effectively maintain operational networks and cybersecurity readiness.
- Ensure BSCs/CASTs comply with cybersecurity policy.
- Provide instructions and training to BSC/CAST workforce on cyber security and information assurance reporting, Develop and deliver Monitor and report compliance with Marine Corps Cyber Operations Group (MCCOG) issued Marine Corps Enterprise Network (MCEN) Operational Directives (OPDRS) for all BSC/CAST IT systems, information systems, and network resources.
- Maintain and update a continuous Plan of Action and Milestones (POA&M) for reporting to ISSO on the implementation of patches / updates on all client, server, and system security vulnerabilities using both automated scanning tools and manual compliance checks.
- Run and review vulnerability and compliance scans performed at the BSC/CAST on all networks and services through the use of current DoD Assured Compliance Assessment Solution (ACAS), or other approved solution(s).
- Provide ISSO weekly reports and provide daily status updates (upon request) to the Government representative for all client, server, and network infrastructure software patches and updates, security vulnerabilities and fix actions, current security vulnerability POAMs, and action required in response to Operational Directive (OPDRS).
- Ensure sufficient Patch Management processes are implemented using IBM Big Fix, or Microsoft client management solutions (e.g., MS SCCM) to minimize cybersecurity vulnerabilities and comply with Operational Directives (OpDirs) in support of day‐to‐day operations and training events and exercise
- Implement Information Assurance Vulnerability Alerts (IAVAs), OpDirs, Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs), patches, and industry best practices to ensure cybersecurity compliance of BSC/CAST information, C2 and simulation systems.
- Prepare and maintain A&A related documentation (i.e., Site Inventory, software baseline, equipment lists, Ports, Protocols, and Services Management (PPSM), self-assessment / test plans, etc.), POA&Ms, Security Plan (SSP), Vulnerability Scans, Security Assessment Report (SAR), Contingency Plans, Information Assurance Vulnerability Management (IAVM) Plans, Cyber Security Waiver Requests, Cyber Security Waiver Extension Requests, and Federal Information Security Management Act (FISMA) related reporting requirements within Marine Corps Certification and Accreditation Support Tool (MCCAST).
- Configure and implement Host Based Security System (HBSS) policy to achieve compliance with other USMC C2 information systems (e.g., AFATDS, JADOCS, TBMCS, TCS, etc.).
- Install, operate, maintain, and troubleshoot HBSS client and server elements and modules to support day‐to‐day operations and training events and exercises.
- Draft written reports to designated Government representative reporting and correcting BSC/CAST cybersecurity security violations.
- Ensure personnel accessing information systems have the proper IA certification to perform privileged or cyber security functions per DoD 8570, “Information Assurance Workforce Improvement Program,” (DoD 8140) and the SECNAV M-5239.2, “Department of the Navy Information Assurance (IA) Workforce Management Manual to Support the IA Workforce Improvement Program,”" and USMC HQMC ECSM 024 “”Cyber Security Workforce Program Management”"
- Maintain current and historical documentation of all BSC/CAST DoD Information Assurance Certification and Accreditation Process (DIACAP) and RMF Assessment and Authorization (A&A) packages.
- Ensure that Marine Corps Certification and Accreditation Support Tool (MCCAST) packages are accurate and complete before submitting for signature.
- Review vulnerability and compliance scanning of all BSC/CAST networks and services through the use of current DoD Assured Compliance Assessment Solution (ACAS) or other government provided solution. Ensures anonymity is denied to the maximum extent possible.
- Provide consistent reporting environment to maintain and track IT assets and ensures systems are securely managed regardless of location by providing patch coverage across operating systems and applications for improved defense against the latest vulnerabilities.
- Assess and manage risks associated with information technology resources.
- Evaluates threats, risks, and vulnerabilities and develop countermeasures to ensure continuation in the event of an IT services disruption.
- Design and deploy Security Information and Event Monitoring (SIEM) capabilities across BSC/CAST information systems in order to ensure compliance, system monitoring, and reporting requirements.
EDUCATION & EXPERIENCE
- At least three years of experience in IT, which should include successful experience as an enterprise team member or lead.
- Well versed in USMC and DoD cyber security compliancy, instructions, policies and regulations.
- DoD 8570.1-M IAT Level II or higher required – Current DoD approved IA baseline certification (CCNA Security, CySA+, GICSP, GSEC, Security+ CE, SSCP); a minimum of one valid Computing Environment (CE)/Operating System (OS) Certificate (i.e. MS Windows Server 2012 R2 Cert, MS Windows 10 cert, a VMware 6.0 Cert); and at least 3 years in IA technology or a related area.
Required Knowledge, Skills and Abilities
- Proficient in Microsoft Word, Outlook, Excel, PowerPoint, Visio, Project, and SharePoint.
- Documented experience and solid understanding of DoD enterprise network policies with a strong security mindset.
- Excellent interpersonal and communication skills with the ability to interact with others and senior management.
- Able to read, write, and communicate effectively in English.
- Able to design and write clear communications and present training programs.
- Strong analytical and problem solving skills
- Excellent organizational, planning and prioritization skills
- Required to sit for extended periods of time and maintain focus
- Daily travel in local area during work day (including use of personal vehicle)
- May require CONUS and OCONUS travel for up to three weeks at a time (or longer).
SPECIAL POSITION NOTATIONS
- Active Secret Clearance Required
- Possess a completed Personnel Security Investigation that will qualify to be eligible for access to at least the Secret level, and the ability to be read-in for NATO level access.
- Must meet DoD 8570.1‐M Information Assurance workforce program requirements for Information Assurance Technical (IAT) Level II or higher.
- Must possess and maintain training and certifications sufficient to be granted privileged access to Marine Corps information technology (IT) and information systems (IS) through documented completion of required training and certification.
- Ability to obtain or have a Marine Corps Compliance and Authorization Support Tool (MCCAST) account is required. Must have system experience in: USMC MCCAST.
- Valid U.S. Passport
- Location: Camp Lejeune, Camp Lejeune, NC ,
- Salary: Not provided
- Clearance Required: Yes
- Spouse Friendly: No