F-35 Information System Security Officer - Fort Smith, AR (Mid-Career)

About The Position

Requirements

• Final Transferable Secret security clearance; last Periodic Reinvestigation must be within the last five (5) years or enrollment in Continuous Vetting program.
• Ability to obtain and maintain Special Access Program (SAP) access.
• Possess a valid certification that meets or exceeds DoD 8570.01-M IAT II requirements.
• Prior experience in a cyber workforce role, as categorized by the NICE or DoD workforce frameworks.
• Prior experience as an ISSO, ISSM or related DoD Cyber Workforce Role on one or more F-35 information systems.
• Prior experience ensuring compliance with applicable laws, regulations, guidance and policies as they relate to DoD cybersecurity and SAPs (e.g., DoDI 8510.01, JSIG, DoDM 5205.07, NIST SP 800 series).
• Prior experience with the system authorization process, associated artifacts and their requirements (e.g., SSP, SCTM, Security CONOPs, SOPs).
• Must be a US Citizen for consideration.

Nice To Haves

• Meets: CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP
• Exceeds: CASP+ CE, CCNP Security, CISA, CISSP (or Assc), GCED, GCIH, CCSP

Responsibilities

• Ensuring required cybersecurity controls are implemented and validated, to include continuous monitoring actions for assigned systems.
• Supporting the development and maintenance of cybersecurity related plans and procedures.
• Monitoring for non-compliance, anomalous activity (i.e., threats), and effectively reporting such activity and associated risks.
• Ensuring POA&Ms or remediation plans are in place for vulnerabilities identified during monitoring activity, audits, inspections, etc. and implementing, or overseeing, corrective actions.
• Creating, collecting and retaining data to meet reporting requirements.
• Monitoring and correlating data (i.e., events) from a variety of sources (e.g., Splunk, ELA, ePO, ACAS, etc.) to identify and mitigate threats, vulnerabilities and non-compliance.
• Investigating, analyzing and responding to cyber events, incidents and non-compliance, including trend analysis, creating detailed written reports and briefing the appropriate parties.
• Identifying, implementing and enforcing requirements for the proper handling and storage of Government data and electronic media.
• Conducting self-inspections and preparing for customer inspections.
• Interacting professionally during the enforcement of security policy and procedures.

Benefits

• Medical
• Dental
• Vision
• Life Insurance
• Short-Term Disability
• Long-Term Disability
• 401(k) match
• Flexible Spending Accounts
• EAP
• Education Assistance
• Parental Leave
• Paid time off
• Holidays