Cybersecurity, Senior (ISSM)

Torch Technologies, Inc.Kettering, OH
1d
Match Resume

About The Position

Torch Technologies Thank you for your interest in employment with Torch Technologies. We are a 100% employee-owned, Certified Great Place To Work and named Best Places to Work in Huntsville/Madison County, headquartered in Huntsville, AL. Our team provides superior research, development, and engineering services to the Federal Government and Department of War. As one of the nation’s top 100 defense companies, the services we provide directly support the men and women who serve our country. Our corporate mission sums up the pride our employee-owners take in the work we do: “Lighting the Pathway of Freedom”. And, as a Certified Evergreen ESOP, we have made the commitment to grow and sustain our company for the next 100 years! Come grow with us! Torch Technologies has an exciting opportunity for a Cybersecurity Engineer, Senior (ISSM) located at Kettering, OH (Dayton/WPAFB area) to support our EPASS GB contract. As part of the AFLCMC/GB Business and Enterprise Systems Directorate (BES), the Stock Control System (SCS) is a web-based and mainframe wholesale and depot retail asset management system. It provides enhanced processing of stock control transactions and management information for Air Force and Marine Corps (USMC) operations. The system directly supports AF, USMC, and other service/agency customers. It provides worldwide combat readiness and sustainability for the warfighter through allocation, custody, and distribution of supply and equipment items supporting the full range of Air Force weapon systems such as F-35, F22, F-15, F-16, A-10, C-130, C-17, C-5, etc. The SCS FIAR RDT&E efforts are focused on modernizing and improving this Air Force capability. As a Cybersecurity Engineer, Senior (ISSM) your duties will include the following, but are not limited to: Provide the PMO/Capability Development Manager (CDM) cybersecurity support per DoDI 8500.01. Support includes assessing and continuously monitoring cybersecurity risk ensuring that legacy and new capabilities adhere to enterprise standards such as Risk Management Framework (RMF), Cybersecurity Framework (CSF), and National Institute of Standards and Technology (NIST) and per Authorization Official’s Information System’s Continuous Monitoring (ISCM) strategy. Completes and maintains required cybersecurity certification IAW AFMAN 17-1303; Ensures all AF IT cybersecurity-related documentation is current and accessible to properly authorized individuals; Supports the PM or ISO in maintaining current authorization to operate, approval to connect (if required), and implementing corrective actions identified in the plan of actions and milestones; Coordinates, with the PM and AO staffs, development of an ISCM strategy and monitors any proposed or actual changes to the system and its environment; Continuously monitors the IT and environment for security-relevant events; Assesses proposed configuration changes for potential impact to the cybersecurity posture; Assesses the quality of security controls implementation against performance indicators; Ensures cybersecurity-related events or configuration changes that impact AF IT authorization or adversely impact the security posture are formally reported to the AO and other affected parties, such as IOs, stewards, and AOs of interconnected IT; Ensures all ISSOs and privileged users receive necessary technical training and obtain cybersecurity certification IAW AFMAN 17-1301, Computer Security (COMPUSEC), AFMAN 17-1303, and maintain proper clearances IAW DoWI 8500.01; and, Ensures the AF IT is acquired, documented, operated, used, maintained, and disposed of properly IAW DoWI 5000.02 and DoWI 8510.01.

Requirements

  • U.S. Citizenship
  • Master's or Doctorate Degree in a related field and 10 years of experience in the respective technical/professional discipline being performed, five years of which must be in the DoW OR Bachelor's Degree and 12 years of experience in the respective technical/professional discipline being performed, five of which must be in the DoW OR 15 years of directly related experience with proper certifications as described in the PWS labor category performance requirements, eight of which must be in the DoW.
  • Must have the knowledge, experience and recognized ability to be considered highly skilled in their technical/professional field.
  • Must possess the ability to perform tasks independently and oversee the efforts of junior and journeyman contractor personnel within the technical/professional discipline.
  • Demonstrates advanced knowledge of their technical/professional discipline as well as possess a comprehensive understanding and ability to apply associated standards, procedures and practices in their area of expertise (Program Office, Enterprise and Staff Level Support interface).
  • All Cybersecurity professionals should possess experience providing guidance on the following to include, but not limited to: Access control. Configuration management. System and communications protection. Contingency planning. Incident handling. System and information integrity. Security and privacy training and awareness; and, Software development activities, software and tools related to Cybersecurity.
  • Experience performing cybersecurity duties as outlined in DoDI 8500.01, AFI 17-130, and AFI 17-1301 for assigned AF IT.
  • Experience validating, evaluating and analyzing finding results and developer adjudications using automated testing tools, e.g., Fortify, Checkmarx, SonarQube, and AppScan.
  • Experience utilizing DoD tracking systems to input/document cybersecurity deficiencies, vulnerabilities, and change requests in the appropriate tracking system for each program, e.g., Jira, HP ALM, and eMASS.
  • Experience with conducting information security continuous monitoring (ISCM) by maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions IAW approved ISCM strategy.
  • Must have and maintain an active Secret security clearance.
  • At a minimum, the successful candidate will meet the requirements for and maintain a personnel certification associated with the DCWF ISSM work role (722) at an advanced (senior) proficiency level as outlined in DoWI 8510.01, AFMAN 17-1305 and AFI 17-101 for assigned systems/applications: · ISACA CISM · United America Technologies CISSO · FITSI FITSP-M · GIAC GCIA · GIAC GCSA · GIAC GCIH · GIAC GSLC · GIAC GICSP · (ISC)2 CISSP-ISSMP · (ISC)2 CISSP

Nice To Haves

  • Certified SCRUM Master
  • Other Agile Certifications
  • Working knowledge of the Agile Development methodology
  • Experience using any, or all, of the following tools: CheckMarx SonarQube Jira Confluence Mavin Jenkins Bitbucket

Responsibilities

  • Provide the PMO/Capability Development Manager (CDM) cybersecurity support per DoDI 8500.01.
  • Support includes assessing and continuously monitoring cybersecurity risk ensuring that legacy and new capabilities adhere to enterprise standards such as Risk Management Framework (RMF), Cybersecurity Framework (CSF), and National Institute of Standards and Technology (NIST) and per Authorization Official’s Information System’s Continuous Monitoring (ISCM) strategy.
  • Completes and maintains required cybersecurity certification IAW AFMAN 17-1303
  • Ensures all AF IT cybersecurity-related documentation is current and accessible to properly authorized individuals
  • Supports the PM or ISO in maintaining current authorization to operate, approval to connect (if required), and implementing corrective actions identified in the plan of actions and milestones
  • Coordinates, with the PM and AO staffs, development of an ISCM strategy and monitors any proposed or actual changes to the system and its environment
  • Continuously monitors the IT and environment for security-relevant events
  • Assesses proposed configuration changes for potential impact to the cybersecurity posture
  • Assesses the quality of security controls implementation against performance indicators
  • Ensures cybersecurity-related events or configuration changes that impact AF IT authorization or adversely impact the security posture are formally reported to the AO and other affected parties, such as IOs, stewards, and AOs of interconnected IT
  • Ensures all ISSOs and privileged users receive necessary technical training and obtain cybersecurity certification IAW AFMAN 17-1301, Computer Security (COMPUSEC), AFMAN 17-1303, and maintain proper clearances IAW DoWI 8500.01
  • Ensures the AF IT is acquired, documented, operated, used, maintained, and disposed of properly IAW DoWI 5000.02 and DoWI 8510.01.

Benefits

  • ESOP participation
  • 401(k) match and safe-harbor contribution
  • medical
  • dental
  • vision
  • life insurance
  • short-term disability
  • long-term disability
  • flexible spending accounts
  • Health Saving Accounts and Health Reimbursement Accounts
  • EAP
  • education assistance
  • paid time off
  • holidays

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Job Search Resources

Similar Cybersecurity, Senior (ISSM) job opportunities

🔥 New JobCybersecurity Engineer, Senior (ISSM)
Torch Technologies, Inc.
Torch Technologies, Inc. • Kettering, OH1d • Onsite
🔥 New JobCybersecurity Engineer, Senior (ISSM)
Torch Technologies, Inc.
Torch Technologies, Inc. • Kettering, OH1d • Onsite
Cybersecurity – Information System Security Manager (ISSM)
Boeing
Boeing • Berkeley, MO10d
Cybersecurity - Information System Security Manager (ISSM)
Boeing
Boeing • Mesa, AZ13d
Cybersecurity – Information System Security Manager (ISSM)
Boeing
Boeing • Berkeley, MO9d
Cybersecurity - Information System Security Manager (ISSM)
Boeing
Boeing • Mesa, AZ11d
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service