Information Systems Security Officer

Active Top Secret Clearance Required
Information System Security Officer (ISSO)/Technical Security Requirements. The contractor shall perform the following duties related to Information Assurance/Technical Security IAW DoD JSIG and applicable DoD, DAF, ACC, and Wing applicable AIS security polices and regulations:

• Manage, update, and accomplish AIS RMF BOE and BOE associated requirements. Ensure development and implementation of procedures IAW Configuration Management policies and procedures for evaluation of AIS security program
• Perform analysis of network security, based upon RMF JSIG, National Industrial Security Program Operating Manual (NISPOM) Chapter 8, and other sources as added or updated, advise customers on AIS certification and accreditation issues
• Perform AIS risk assessments and make recommendations to customers, Wing Information System Security Manager (ISSM), and System Owner
• Participation in AIS Configuration Control Board
• Advise Wing ISSM and System Owner on security testing methodologies and processes
• Evaluate AIS certification documentation and provide written recommendations for accreditation to Wing ISSM and System Owner
• Review AIS security to accommodate and/or recommend changes to policy or technology
• Evaluate Information Technology (IT) threats and vulnerabilities to determine whether additional safeguards are needed and report these threats or vulnerabilities to Wing ISSM and System Owner
• Develop and maintain a formal Information Systems Security Program
• Recommend changes/updates to the Wing Information Assurance Standard Operating Procedure (IA SOP) to the Wing ISSM when applicable to support unique AIS requirements
• Review and evaluate all certification/accreditation support documentation for proof of acceptable AIS and network security procedures and based upon review, provide written documentation for accreditation to the Wing ISSM, to include External Information Systems (EIS)
• Ensure all personnel have the requisite security clearances, authorization, need-to-know, and are aware of their security responsibilities before granting access to AIS
• Ensure approved procedures are in place for clearing, purging, declassifying, and releasing system memory, media, and output
• Ensure all accreditation documentation, to include Cyber Program required documentation is loaded to Core File Share IAW Wing IA SOP
• Conduct and coordinate AIS security inspections, tests, and reviews
• Ensure proper protection or corrective measures have been taken when an incident or vulnerability has been discovered within the applicable computer or network system
• Ensure that data ownership and responsibilities are established for each AIS, to include accountability, access rights, and special handling requirements
• Ensure development and implementation of an information security education, training, and awareness program, to include attending, monitoring, and presenting AIS security training. Manage Media Custodian Training, User

• Nellis AFB, Nevada, United States

Compétences linguistiques

• English