Security Specialist II (INFOSEC & Visitor and Access Control)

Type: Full Time

Location: Newport, RI

Overtime Exempt: Yes

Reports To: ARMADA HQ

Security Clearance Required: Active Top Secret

The Security Specialist II (INFOSEC & Visitor and Access Control) shall manage and perform the following:

Duties & Responsibilities:

INFOSEC

• The Security Specialist II (INFOSEC), hereinafter INFOSEC, shall conduct information security and access control tasks.
• On a daily basis, using Government Furnished Information (GFI) and upon notification in the tasking inbox, the INFOSEC shall conduct inventories at designated safe or secure room locations to verify the presence or absence of TS materials. The INFOSEC shall provide an inventory report to the Information and Industrial Security Program Manager detailing areas of compliance and non-compliance.
• Upon receipt of Government notification, INFOSEC shall provide guidance on tracking, transporting, transferring, and safeguarding requirements for TS material. The Government estimates two (2) to four (4) occurrences per month. The INFOSEC shall prepare and deliver a CNSI logistics transportation plan to the Information and Industrial Security Program Manager.
• The INFOSEC shall enter, update, and extract data from Base Inventory Tracking system (BITS) database and other Information Systems (IS) (CDRL A008). The Information Security Specialist shall provide inventory control issue reports to the Information and Industrial Security Program Manager (CDRL A009).

CNSI Inventory Control (Secret (S) and Confidential).

• The INFOSEC shall conduct CNSI inventory tasking.
• On a daily basis, using GFI, and upon notification in the tasking inbox, the contractor shall conduct inventories at designated safe or secure room locations to verify the presence or absence of confidential and secret materials. The INFOSEC shall provide an inventory report to the Information and Industrial Security Program Manager detailing areas of compliance and non-compliance. The INFOSEC shall provide weekly and monthly reports regarding inventory control issues to the Information and Industrial Security Program Manager.
• Upon receipt of GFI, INFOSEC shall provide instructions and information to NUWCDIVNPT employees and other INFOSEC personnel regarding the safeguarding of classified national security information and drafting and issuing Security Violation Notices for mishandled, mismarked, or other inappropriate handling of classified material whether onboard the command, or while being mailed or shipped. The Information Security Specialist shall provide weekly and monthly reports regarding security violation, notices for mishandled, mismarked, or other inappropriate handling of classified material to the Information and Industrial Security Program Manager.

• Upon receipt of GFI, the INFOSEC shall track security violations in the Information Security Database to reflect changes in status. The INFOSEC shall prepare and deliver a quarterly report containing an updated status report of all security violations to the Information and Industrial Security Program Manager.

Courier Card Program.

• In accordance with Applicable Documents (AD), and using GFI, INFOSEC shall conduct courier card tasking. The Government anticipates INFOSEC will process approximately 250 courier cards per year.
• In accordance with AD, prior to issuing new courier cards, INFOSEC shall provide written guidance to couriers on safeguarding classified information while traveling within the Continental United States (CONUS) or traveling Outside (OCONUS) by providing the Acknowledgment Declaration and obtaining the courier's signature to verify receipt. The INFOSEC shall file the signed Acknowledgment Declaration in the filing system of record.
• On a daily basis, the contractor shall issue and receive returned Government courier cards and courier letters to or from NUWCDIVNPT employees. The INFOSEC shall track all NUWCDIVNPT courier cards or courier letters issued or returned to into the Courier Card Database. The Government estimates five (5) to ten (10) occurrences per week.
• On a daily basis and using GFI, INFOSEC shall track the expiration dates of all courier card holders in the Courier Card Database. The INFOSEC shall provide a monthly report to the Information and Industrial Security Program Manager containing lists of all courier card holders and all courier cards expiring within 30 days.
• In accordance with ADs, the contractor shall conduct foreign visitor control tasking. Upon receipt of GFI, INFOSEC shall review requests for visits by foreign nationals for completeness, and process visits in accordance with NUWCDIVNPT and higher-level directives. The Information Security Specialist shall conduct training with NUWCDIVNPT employees tasked with escorting foreign visitors.
• The INFOSEC shall update and maintain metrics on foreign visitors within the Foreign Visitors Database. The INFOSEC shall provide recommendations to correct commonly occurring errors on Foreign Visitor Request Forms.

Visitor and Access Control:

• The Visitor and Access Control, hereinafter VAC shall conduct visitor control tasking. The VAC shall provide visitor and access control, at NUWCDIVNPT Monday - Friday, during the normal business hours of 0700-1530.
• On a daily basis, the VAC shall monitor facsimile and the electronic inbox and Defense Information Service for Security (DISS) or any future replacement system for incoming visit requests. The VAC shall review visit requests for completeness. For incomplete visit requests, the VAC shall notify the requestor of identified discrepancies. For complete visit requests, the VAC shall enter visit request data in the VAC Check-In/Check-Out (CCICO) system provided as GFI. The Government estimates approximately 15,000 visitor requests per year.
• Upon receipt of GFI, the VAC shall review form SECNAV 5512/1 for completeness. For incomplete forms, the VAC shall notify the requestor of identified discrepancies. For complete forms SECNAV 5512/1, the VAC shall forward to the Naval Station Newport Pass and Identification (ID) Office. Upon receipt of adjudicated forms (SECNAV 5512/1) from the Pass and ID Office, the VAC shall record the adjudication results in the Visitor Control Database (GFI) and notify the requestor's sponsor, as identified on SECNAV 5512/1. The Government estimates approximately 5,000 submissions annually.
• On a daily basis, the VAC shall perform visitor access control services at the NUWCDIVNPT's Visitor Control Center including verifying identities, issuing visitor badges, and briefing visitors on prohibited items regulations.
• On a daily basis and upon receipt of GFI, the VAC shall update the Lenel database to reflect changes in access control for designated spaces. The Government estimates an average of 35 to 50 transactions each day.
• On a daily basis, the VAC shall collect ID cards, badges, and passes returned to the NUWCDIVNPT Visitor Control Center.
• On a daily basis, the VAC shall update CCICO, provided as GFI, to reflect returned items by departing NUWCDIVNPT VAC. The Government estimates 750 to 1,000 returned items per year.
• On a daily basis, the VAC shall check-in and record all personnel and visitors entering NUWCDIVNPT Building 80 at the Visitor Control Check-in Desk. The VAC shall verify that visitors meet all requirements for access to NUWCDIVNPT. The Government estimates 20,000 personnel and visitors checking in annually.
• The contractor shall manage and perform the following Site Security Manager SSM) services:
• Manage user administration and user security.
• Monitor CAC cardstock and consumables including ordering, management, and accountability.
• Verify policy and procedure compliance.
• Site administration and security (including maintaining site's address information for the Real-time Automated Personnel Identification System (RAPIDS) Site Locator).
• Verify and monitor documentation and training compliance.
• Installation of new hardware components.
• Validation of the identity of individuals whose fingerprints cannot be captured.
• Document overrides in the event a CAC recipient does not have proper identification documents.
• Use of the automated card management system.
• The VAC shall perform the following Verifying Official (VO) services:
  • Serve as the primary individual responsible for issuing CAC/ID Cards.
  • Protect the privacy and confidentiality of data on the RAPIDS terminal screen.
  • Verify and scan source documents for adding and updating sponsors and family members.
  • Verify the identity of card recipients required by the Joint Inter-Service Instruction before entering applicant data in RAPIDS.
  • View and scan documents that establish benefit or ID card eligibility before entering data into the Defense Enrollment Eligibility Reporting System (DEERS) or issuance of ID cards.
  • Suspend an individual's commissary, exchange, or Morale, and Welfare and Recreation (MWR) privileges as necessary.
  • Use the RAPIDS workstation to issue the CAC and Public Key Infrastructure (PKI) Certificates.
  • Update DEERS as necessary to reflect any change in the personnel category of the CAC recipient. This step automatically issues or revokes certificates as needed.
  • Update DEERS and terminate a CAC, revoking PKI certificates as requested from the Local Registration Authority or other authorized sources.
  • Generate and scan the DD Form 1172-2.
  • On a monthly basis the VAC shall provide a report inclusive of CAC issuance totals, Government, Contractor CACs, and Military ID Cards (if issued), (CDRL B001).
• Other duties as assigned.

Minimum/General Experience:

The INFOSEC must have the experience, education, or training that demonstrates the ability to follow directions, to read, understand, and retain a variety of instructions, regulations, and procedures.

• Must demonstrate the ability or have endorsements that indicate the ability to learn and perform the cited position's duties.
• Must demonstrate knowledge of security classification methods, concepts, eligibility for access to classified or sensitive information and the process for granting personnel security clearances/accesses, and knowledge of commonly applied security principles, concepts, and methodologies in carrying out information, personnel, and physical security programs related to the protection of SCI.
• The INFOSEC should have knowledge of the methods of performing such duties as conducting inspections and investigations, collecting, and analyzing information, etc., and skill in weighing the impact of variables such as critical personnel qualifications, variations in building construction characteristics, access and entry restrictions, equipment availability, and other issues that influence the course of actions taken in resolving security questions and issues.
• Experience in the fields of physical, industrial, information and personnel security participating in SAP Security Compliance Inspections and Self-Inspections; reporting, documenting, and investigating security incidents; reviewing and applying governing policy including Executive Orders, DoD Security Directives, and the JAFAN Series; and communicating orally and in writing with staff and supervisors.

Minimum Education:

• Bachelor's to Ph.D. level degree.

Disclaimer:

The above information has been designed to indicate the general nature and level of work to be performed. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of the contractor assigned to this position. Applying: If you feel you have the knowledge, skills and abilities for this position visit our careers page at www.armadausa.com.

Special Notes: Relocation is not available for these jobs.

ARMADA provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. ARMADA complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

Must be able to successfully pass a background check, and pre-employment drug testing. Job offers are contingent upon results of background check and drug testing.