EPASS GBS.062 Cybersecurity, Senior NEW

Torch Technologies has an exciting opportunity for a Cybersecurity Engineer (ISSM) located in Kettering, OH (Dayton/WPAFB area) to support our EPASS GB contract. This position is integral to the AFLCMC/GB Business and Enterprise Systems Directorate (BES), specifically focusing on the Foundation Logistics Information Technology Enterprise System (FLITES). The FLITES is a new system designed to manage Item Master data, providing comprehensive Item Catalog and Provisioning functions for logistics business systems. It aims to replace the legacy Item Management Control System (IMCS) suite, serving as the central repository for Item core business objects and standardizing cataloging processes across various Item types. The Air Force is committed to rapidly modernizing its enterprise logistics systems, and the FLITES will play a crucial role in this transformation by integrating with multiple logistics enterprise systems and enhancing the efficiency and effectiveness of legacy functionalities. The successful candidate will provide cybersecurity support to the Program Management Office (PMO) and Capability Development Manager (CDM) in accordance with DoDI 8500.01. This includes assessing and continuously monitoring cybersecurity risks to ensure compliance with enterprise standards such as the Risk Management Framework (RMF), Cybersecurity Framework (CSF), and National Institute of Standards and Technology (NIST) guidelines. As the Information Systems Security Manager (ISSM), the candidate will act as the primary cybersecurity technical advisor to the Authorization Official (AO), Program Manager (PM), and Information System Owner (ISO). Responsibilities include maintaining cybersecurity certification, ensuring documentation is current, supporting authorization processes, and monitoring security-relevant events within the IT environment. The ISSM will also be responsible for assessing configuration changes for their impact on cybersecurity posture, ensuring that all cybersecurity-related events are reported to the appropriate parties, and providing necessary training and certification for ISSOs and privileged users. The role requires a comprehensive understanding of cybersecurity standards and practices, as well as the ability to oversee junior personnel in the technical discipline. The candidate will be expected to validate and analyze cybersecurity findings using automated testing tools and maintain ongoing awareness of information security vulnerabilities and threats to support organizational risk management decisions.