Information Assurance Officer (IAO) Job at EHS Technologies
Qualified candidates should have extensive knowledge and experience with:
Information Systems Security Officer (ISSO) Support.
a. Ensure the successful execution of all certification and accreditation activities within the assigned technical department.
b. Ensure certification and accreditation support documentation packages for systems within the assigned technical department are developed, maintained, and updated as required.
c. Serve as member of the Configuration Control Board (CCB) for accredited information systems within the assigned technical department.
d. Conduct periodic reviews to ensure compliance with the authority to operate (ATO) and PIT Risk Approval (PRA) letters issued by the Designated Accrediting Authority (DAA).
e. Perform annual reviews in accordance with FISMA requirements and update DITPR-DON, DADMS, and all associated artifacts for systems and programs within the assigned technical department to ensure compliance and accurate reporting.
f. Develop a deep understanding of the customer'smission and capabilities as well as the environments and resources required to support them.
g. Ensure integration with customer requirements and policiesto leverage lessons learned for the efficient delivery of technical solutions.
h. Work with the customerITC to tailor the delivery of Cyber Security Program elements to ensure effective dissemination and implementation within the assigned technical department.
i. Meet with the customerInformation Technology Coordinator (ITC) regularly to ensure service level expectations are being met, communicate emergent issues, discuss policy changes, and identify areas for improvement.
j. Ensure information systems are operated, used, maintained, and disposed of in accordance with security policies and practices.
k. Report cyber security events / potential incidents to the Command ISSM in accordance with the customerpolicy and procedures.
l. Report Electronic Spillage (ES) of classified information in accordance with the customerpolicy and procedures.
m. Review Media Transfer Agent (MTA) appointments no less than quarterly and advise the customerISSM on activity levels and resource requirements.
n. Audit MTA transfer logs monthly to ensure compliance with local policy and CTO requirements; report non-compliance and policy violation to the customerISSM.
o. Follow procedures developed by the customerISSM, in accordance with configuration management policies and practices, for authorizing software use prior to its implementation on information systems. Changes or modifications to hardware, software, or firmware of information systems that affect the security posture of the system or network must be coordinated with the customerISSM prior to implementation.
p. Support the customerinformation assurance vulnerability management (IAVM) program requirements and ensure assets are STIG'd, patched, and maintained in compliance with the customerIAVM Program.
q. Enforce the customerand higher authority CS policies; effectively communicate them to the customerusers and immediately report policy violations to the ISSM. Assist, as directed, in adjudication and resolution of policy violations.
r. Interpret the customerCS policies and procedures and advise the assigned technical Department on applicability and intent to ensure compliance.
s. Coordinate with the ITC to develop strategic planning initiatives within the customer for the delivery of CS solutions.
t. Assist the ITC to ensure compliance with annual CS Awareness Training within the customer.
u. Work with system owners and administrators to determine requirements for, and complete, IT security exception requests as required.
v. Manage Alt Tokens, and the requirements for them, in both the RDT&E and NMCI environments.
w. Maintain access to SIPRNET resources and check NCDOC regularly for CTOs and CS Program announcements.
x. Assist the ITC in response to data calls associated with CS program elements.
y. Ensure audit readiness and execute activities necessary to prepare for Division inspections of the CS program.
Certification:
CASP or CAP or Security Plus or SSCP, Program Management Professional (PgMP)
Education:
Associate Degree from accredited University or CNSSI 4011/4012 Certificate
Military Training:
NEC-2779 or 2780 or 2781, CYBR2400, NETW4001, SSC- 6201-6206, AQD- GA1-9
US CITIZENSHIP, DoD SECRET SECURITY CLEARANCE REQUIRED
EHS Technologies Corporation is an Affirmative Action/Equal Opportunity Employer
Please Note :
www.bankofmontserrat.ms is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, www.bankofmontserrat.ms provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.
Information Systems Security Officer (ISSO) Support.
a. Ensure the successful execution of all certification and accreditation activities within the assigned technical department.
b. Ensure certification and accreditation support documentation packages for systems within the assigned technical department are developed, maintained, and updated as required.
c. Serve as member of the Configuration Control Board (CCB) for accredited information systems within the assigned technical department.
d. Conduct periodic reviews to ensure compliance with the authority to operate (ATO) and PIT Risk Approval (PRA) letters issued by the Designated Accrediting Authority (DAA).
e. Perform annual reviews in accordance with FISMA requirements and update DITPR-DON, DADMS, and all associated artifacts for systems and programs within the assigned technical department to ensure compliance and accurate reporting.
f. Develop a deep understanding of the customer'smission and capabilities as well as the environments and resources required to support them.
g. Ensure integration with customer requirements and policiesto leverage lessons learned for the efficient delivery of technical solutions.
h. Work with the customerITC to tailor the delivery of Cyber Security Program elements to ensure effective dissemination and implementation within the assigned technical department.
i. Meet with the customerInformation Technology Coordinator (ITC) regularly to ensure service level expectations are being met, communicate emergent issues, discuss policy changes, and identify areas for improvement.
j. Ensure information systems are operated, used, maintained, and disposed of in accordance with security policies and practices.
k. Report cyber security events / potential incidents to the Command ISSM in accordance with the customerpolicy and procedures.
l. Report Electronic Spillage (ES) of classified information in accordance with the customerpolicy and procedures.
m. Review Media Transfer Agent (MTA) appointments no less than quarterly and advise the customerISSM on activity levels and resource requirements.
n. Audit MTA transfer logs monthly to ensure compliance with local policy and CTO requirements; report non-compliance and policy violation to the customerISSM.
o. Follow procedures developed by the customerISSM, in accordance with configuration management policies and practices, for authorizing software use prior to its implementation on information systems. Changes or modifications to hardware, software, or firmware of information systems that affect the security posture of the system or network must be coordinated with the customerISSM prior to implementation.
p. Support the customerinformation assurance vulnerability management (IAVM) program requirements and ensure assets are STIG'd, patched, and maintained in compliance with the customerIAVM Program.
q. Enforce the customerand higher authority CS policies; effectively communicate them to the customerusers and immediately report policy violations to the ISSM. Assist, as directed, in adjudication and resolution of policy violations.
r. Interpret the customerCS policies and procedures and advise the assigned technical Department on applicability and intent to ensure compliance.
s. Coordinate with the ITC to develop strategic planning initiatives within the customer for the delivery of CS solutions.
t. Assist the ITC to ensure compliance with annual CS Awareness Training within the customer.
u. Work with system owners and administrators to determine requirements for, and complete, IT security exception requests as required.
v. Manage Alt Tokens, and the requirements for them, in both the RDT&E and NMCI environments.
w. Maintain access to SIPRNET resources and check NCDOC regularly for CTOs and CS Program announcements.
x. Assist the ITC in response to data calls associated with CS program elements.
y. Ensure audit readiness and execute activities necessary to prepare for Division inspections of the CS program.
Certification:
CASP or CAP or Security Plus or SSCP, Program Management Professional (PgMP)
Education:
Associate Degree from accredited University or CNSSI 4011/4012 Certificate
Military Training:
NEC-2779 or 2780 or 2781, CYBR2400, NETW4001, SSC- 6201-6206, AQD- GA1-9
US CITIZENSHIP, DoD SECRET SECURITY CLEARANCE REQUIRED
EHS Technologies Corporation is an Affirmative Action/Equal Opportunity Employer
Please Note :
www.bankofmontserrat.ms is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, www.bankofmontserrat.ms provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.