Job Requirements
San Antonio, TX
Top Secret Polygraph not specified
Early Career (2+ yrs experience)
$100,000 - $85,000
Job Description
INFORMATION SYSTEMS SECURITY OFFICER
San Antonio, TX
Location Type: Not Specified
Location Summary: San Antonio, TX
Salary Range: $85,000 - $100,000
Clearance Required: Top Secret - SCI
Clearance Eligible: Top Secret - SCI
Polygraph: None
PL Years Exp: 1 - 5
SUMMARY
This position assists the organization in executing the cognizant security authority required to conduct cyber development operations in a classified environment and to meet the information assurance requirements to operate multiple development networks. The position administers and secures temporary and permanent closed development networks, maintains at least 95% network availability during the workweek, and supports Risk Management Framework authorization for Optimus.
Note: This position is on-site (not eligible for remote) but also located in downtown San Antonio!
GENERAL QUALIFICATIONS
- Hold an active Top Secret clearance
- IAT Level II certification
- DoD or Air Force experience preferred
- 3 or more years of direct information assurance, network administration, or security management experience
- Experience administering classified or closed development networks
- Proven dependability on critical initiatives, with a high level of integrity and accountability
EDUCATION
High School Diploma or equivalency.
DESIRED EDUCATION
Associates Degree (or higher) with a major in Information Technology or Cyber related field.
CERTIFICATION(S)
Required Certificate(s) - Only One of the following is required:
- CompTIA Security+
- CompTIA CySA+
KEY DELIVERABLES
- Network Availability Report. Documents network uptime against the 95 percent availability standard across the temporary and permanent closed development networks.
- Outage Restoration Record. Captures each network outage, the restoration actions taken, and time to restore against the one business day standard, with after-action notes.
- RMF Authorization Package. The eMASS body of evidence supporting Optimus authorization, including the system security plan, control implementation, and supporting artifacts.
- Plan of Action and Milestones (POA&M). Tracks open security findings and weaknesses with assigned remediation actions and target dates.
- Vulnerability Scan Report. Results of security vulnerability scanning (ACAS or Nessus), with findings, severity, and remediation status.
- Audit Log and Intrusion Review Record. Documented review of audit logs and intrusion detection alerts, including anomalies identified and dispositions.
- Facility Open and Close Log. Record of safe and facility opening and closing at the start and end of the duty day, supporting the facility security assistance task.
KNOWLEDGE
Knowledge in DoD Risk Management Framework (NIST SP 800-37) and NIST SP 800-53 security controls
Knowledge in DoD 8140 and 8570.01-M IA workforce certification requirements
Knowledge in DISA Security Technical Implementation Guides (STIGs)
Knowledge in network protocols, administration, and closed development network operations
Knowledge in OPSEC, industrial security (32 CFR Part 117, NISPOM), and physical and facility access control
SKILLS
Skilled in network administration and availability monitoring across multiple security domains
Skilled in RMF and eMASS authorization package preparation and maintenance
Skilled in security vulnerability scanning (ACAS or Nessus), intrusion detection, and audit log review
Skilled in DISA STIG application and system hardening
Skilled in security tool development and deployment
Skilled in incident triage and outage restoration
Skilled in classification review of inbound and outbound correspondence
Skilled in completing DD 2875 (SAAR) and TASS forms, and new hire in-processing
Skilled in OPSEC and Anti-Terrorism Officer training and implementation
Skilled in visitor escort, EAL maintenance, access badge preparation, entry and exit inspections, and document accountability database upkeep
TASKS
Provide Network Administration and Monitoring: Administer testing, development, and operational networks per industry best practices and maintain at least 95% availability during the workweek.
Manage Security Tool Development and Facility Security Assistance: Develop and deploy network security tools, and assist in opening and closing safes and facilities at the end of the duty day.
Conduct Network Outage Restoration: Restore full network functionality no later than one business day following any outage.
Manage Security Compliance and RMF Authorization: Achieve and maintain RMF authorization for Optimus per DoD timelines.
Perform Vulnerability and Intrusion Monitoring: Conduct security vulnerability scanning, intrusion detection, and audit log monitoring.
DCWF WORK ROLE(S)
Information Systems Security Manager
San Antonio, TX
Location Type: Not Specified
Location Summary: San Antonio, TX
Salary Range: $85,000 - $100,000
Clearance Required: Top Secret - SCI
Clearance Eligible: Top Secret - SCI
Polygraph: None
PL Years Exp: 1 - 5
SUMMARY
This position assists the organization in executing the cognizant security authority required to conduct cyber development operations in a classified environment and to meet the information assurance requirements to operate multiple development networks. The position administers and secures temporary and permanent closed development networks, maintains at least 95% network availability during the workweek, and supports Risk Management Framework authorization for Optimus.
Note: This position is on-site (not eligible for remote) but also located in downtown San Antonio!
GENERAL QUALIFICATIONS
- Hold an active Top Secret clearance
- IAT Level II certification
- DoD or Air Force experience preferred
- 3 or more years of direct information assurance, network administration, or security management experience
- Experience administering classified or closed development networks
- Proven dependability on critical initiatives, with a high level of integrity and accountability
EDUCATION
High School Diploma or equivalency.
DESIRED EDUCATION
Associates Degree (or higher) with a major in Information Technology or Cyber related field.
CERTIFICATION(S)
Required Certificate(s) - Only One of the following is required:
- CompTIA Security+
- CompTIA CySA+
KEY DELIVERABLES
- Network Availability Report. Documents network uptime against the 95 percent availability standard across the temporary and permanent closed development networks.
- Outage Restoration Record. Captures each network outage, the restoration actions taken, and time to restore against the one business day standard, with after-action notes.
- RMF Authorization Package. The eMASS body of evidence supporting Optimus authorization, including the system security plan, control implementation, and supporting artifacts.
- Plan of Action and Milestones (POA&M). Tracks open security findings and weaknesses with assigned remediation actions and target dates.
- Vulnerability Scan Report. Results of security vulnerability scanning (ACAS or Nessus), with findings, severity, and remediation status.
- Audit Log and Intrusion Review Record. Documented review of audit logs and intrusion detection alerts, including anomalies identified and dispositions.
- Facility Open and Close Log. Record of safe and facility opening and closing at the start and end of the duty day, supporting the facility security assistance task.
KNOWLEDGE
Knowledge in DoD Risk Management Framework (NIST SP 800-37) and NIST SP 800-53 security controls
Knowledge in DoD 8140 and 8570.01-M IA workforce certification requirements
Knowledge in DISA Security Technical Implementation Guides (STIGs)
Knowledge in network protocols, administration, and closed development network operations
Knowledge in OPSEC, industrial security (32 CFR Part 117, NISPOM), and physical and facility access control
SKILLS
Skilled in network administration and availability monitoring across multiple security domains
Skilled in RMF and eMASS authorization package preparation and maintenance
Skilled in security vulnerability scanning (ACAS or Nessus), intrusion detection, and audit log review
Skilled in DISA STIG application and system hardening
Skilled in security tool development and deployment
Skilled in incident triage and outage restoration
Skilled in classification review of inbound and outbound correspondence
Skilled in completing DD 2875 (SAAR) and TASS forms, and new hire in-processing
Skilled in OPSEC and Anti-Terrorism Officer training and implementation
Skilled in visitor escort, EAL maintenance, access badge preparation, entry and exit inspections, and document accountability database upkeep
TASKS
Provide Network Administration and Monitoring: Administer testing, development, and operational networks per industry best practices and maintain at least 95% availability during the workweek.
Manage Security Tool Development and Facility Security Assistance: Develop and deploy network security tools, and assist in opening and closing safes and facilities at the end of the duty day.
Conduct Network Outage Restoration: Restore full network functionality no later than one business day following any outage.
Manage Security Compliance and RMF Authorization: Achieve and maintain RMF authorization for Optimus per DoD timelines.
Perform Vulnerability and Intrusion Monitoring: Conduct security vulnerability scanning, intrusion detection, and audit log monitoring.
DCWF WORK ROLE(S)
Information Systems Security Manager
group id: 91133722
