Computer & Information Management SME (ISSO) (TS)

About The Position

Requirements

• 10 years of applicable experience
• Bachelor’s degree in Computer Science or related field (preferred)
• ComTIA Security+ IAM Level II Certification
• Working knowledge of U.S. National Institute of Standards and Technology (NIST) Special Publication (SP) 800 series, Risk Management Framework (RMF) (formerly DIACAP), and Joint Special Access Program (SAP) Implementation Guide (JSIG)
• Must be able to effectively communicate with the customer and fulfill all duties and responsibilities as listed in the contract.
• Must be proficient in Microsoft Office suite including, but not limited to: Word, PowerPoint, Excel, and Outlook.
• Top Secret Clearance
• This position supports a U.S. Government Contract whose terms require Sawdey Solution Services to staff it only with U.S. Citizens.

Responsibilities

• Align tasking and priorities to the RMF schedule, established by the Information System Security Manager (ISSM).
• Provide High-Performance Computing (HPC) system support & networking for HPC systems in the Above Secret realm
• Perform monthly security scans and prepare POAMs based on results
• Engage in meetings with users to address user issues as needed
• Perform verification of documentation and preparation system certification monthly
• Work closely with government networking staff for advisement as needed
• Develop SOP for adding users so we get consistency on systems (Initial Creation/then review Quarterly)
• Verify controls - RMF Continuous Monitoring Maintenance Log - add all changes/frequency related checks at frequencyrequired
• Configure and perform annual review on Storage capacity for audits
• Perform Hardware updates as needed, and to be reviewed annually
• Software updates as needed, and to be reviewed annually
• Ports Protocol Services Management as needed/reviewed annually
• Follow Software evaluation process as directed by ISSM for software that needs approval to add to the systems.
• Provide the ISSM with support in filling out the software package checklist, build the VM and perform a scan load scan once the software approval is received.
• Hardware support includes tech refresh planning, execution, ordering, installation, inventory management, and deposal at end of life. (For above-secret HPCs)
• Provide Automated Data Processing Equipment (ADPE) Custodian services. (For above-secret HPCs)
• Provide Information System Security Officer (ISSO) services in accordance with the National Industrial Security Program Operating Manual (NISPOM)
• Provide Information System Security Manager (ISSO) services for the Secret Processing Facility (SPF).
• Monitor staffs’ completion of required information technology security awareness training or similar seminars and report results to the AFRL/IZ security manager.
• Report equipment failures involving above-secret HPC functional systems and information technology to the appropriate repair agency as well as the AFRL/IZH staff.
• Provide SIPRNet Administrator services and, on a mission-required occasional basis. (For above-secret HPCs)
• Manage and track all software other than that implemented on the DOD High Performance Computing Modernization Program-controlled hardware and notify the Government of any required purchase, maintenance, or disposal actions. (For above-secret HPCs)
• Respond to and provide periodic scheduled maintenance and emergency remedial or mitigation services during non-duty hours.
• Develop procedures in coordination with the government security representatives to ensure that all security and cybersecurity requirements are met and transitions between security levels are accomplished effectively and correctly.
• The contractor shall support the AFRL/RC management team during Normal Operations (in-garrison operations) as well as during the execution of a Continuity of Operations Plan (COOP) to ensure RC personnel have the communications equipment and connectivity necessary to establish and maintain operations.
• Perform other duties, as assigned.