Classified Cyber Security Sr/ISSO/Ocala

About The Position

Requirements

• Ability to obtain and maintain a Secret clearance (Interim Secret required to start).
• Bachelor's degree in Cybersecurity (or related discipline) or similar experience.
• DoD 8570/8140 IAT Level II baseline certification (CCNA- Security, CySA+ , GICSP, GSEC, Security+ CE, CND, SSCP) or ability Ability to obtain within 6 months of employment.
• Experience with developing, reviewing, and maintaining RMF artifacts.
• Experience with classified information system auditing and investigations.

Nice To Haves

• Collateral: previous experience supporting classified information systems; SAP: Previous experience supporting SAP/SCI classified information systems
• Knowledge of system accreditation requirements and NIST 800-53 (DAAG/JSIG) RMF implementation
• Experience implementing/validating STIG application, system hardening, analysis, and vulnerability management
• Knowledge of other security disciplines and how they impact and interact with information system security
• Demonstrated technical experience in Windows, Linux operating systems and command line use
• Demonstrated technical experience with industry standard Information Assurance tools (Splunk, Nessus/Tenable/ACAS, STIGViewer/SCAP Compliance Checker/eSTIG, McAfee ePO, McAfee DLP)
• Understanding of network concepts and Type 1 encryption devices, such as TACLANE and boundary protection devices/firewalls
• Experience implementing new and complex technologies at multiple classification levels within large environments and at an Enterprise level
• Experience implementing new and complex technologies at multiple classification levels within large environments and at an Enterprise level
• Experience with scripting languages
• Ability to perform technical assessments for systems being presented to the government for authorization
• Ability to manage multiple projects in dynamic, demanding environments

Responsibilities

• Oversee day-to-day information system security operations including auditing the IS, hardware, and software implementations and RMF package authorizations.
• Carry out technical administration of IS in accordance with internal LM and customer security requirements, primarily Risk Management Framework (RMF).
• Upkeep, monitor, analyze, and respond to network and security events.
• Document compliance actions with the ISSM to address non-compliance in the allotted time frame.
• Ensure systems are operated, maintained, and disposed of in accordance with internal security policies and practices.
• Participate in internal/external security audits/inspections; performs risk assessments.
• Ensure records are maintained for workstations, software, servers, routers, firewalls, network switches, telephony equipment, etc. throughout the information system's life cycle.
• Evaluate proposed changes or additions to the information system, and advise the ISSM of their security relevance.
• Ensure configuration management (CM) for security relevant IS software, hardware, and firmware is maintained and documented.
• Assist in conducting investigations of computer security violations and incidents, reporting as necessary.
• Ensure proper protection and / or corrective measures have been taken when an incident or vulnerability has been discovered.
• Communicate, implement and manage a formal Information Security / Information Systems Security Program together with ISSM and Program Security.

Benefits

• Medical
• Dental
• Vision
• Life Insurance
• Short-Term Disability
• Long-Term Disability
• 401(k) match
• Flexible Spending Accounts
• EAP
• Education Assistance
• Parental Leave
• Paid time off
• Holidays