Identity Protection and Management Analyst

About The Position

Requirements

• Minimum of three (3) years’ experience in Information Technology.
• Strong expertise in the following technologies: Host Based Security System, Network and Host Intrusion Detection/Prevention, Security Information and Event Management, firewall technologies, malware detection and enterprise-level antivirus solutions/systems, encryption standards, and full packet capture.
• Demonstrated ability to document processes and procedures.
• One or more of the below IAT II certifications: CCNA Security CySA+ GICSP GSEC Security+ CE CND SSCP
• Must hold an ACTIVE Secret Clearance and any IAT II Certification.

Nice To Haves

• Familiarity with various network and host-based security applications and tools, such as network and host assessment/scanning tools, network and host-based intrusion detection systems, and other security software packages.
• An understanding of DOD information assurance policy and regulations.
• Experience with Public Key Infrastructure.
• Experience in developing and maintaining play books.

Responsibilities

• Support PKI Certificate Request Processing and Token Issuance services to DCMA: Facilitate the processing of requests for DoD and National Security Systems (NSS) PKI certificates for components of DCMA by serving as the Registration Authority (RA), Local Registration Authority (LRA), and Key Recovery Agent to include processing requests for revocation of certificates.
• Provide Registration Authority (RA), Local Registration Authority (LRA), and Key Recovery services for components of DCMA IAW the applicable DCMA / DoD CPS statements for NIPRNet and SIPRNet. This includes the issuance of hardware tokens, applications certificates, including Alternate Logon Tokens, SIPRNet Tokens, CodeSigning Certificates, and all other DCMA NIPRNet and SIPRNet certificate request needs. Establish, maintain, and execute a standard operating procedure IAW DoD and DCMA Policies and Certificate Practice Statements (CPS) within 90 calendar days of contact award, then review and update annually.
• Support the NIPRNet and SIPRNet Hardware Token Service, to include DoD PKI certificates on hardware tokens (the tokens themselves are GFE). Coordinate with the supported organization for the assignment and administration of Trusted Agents (TAs) and other roles as specified by the applicable CPS and/or Registration Practice Statements (RPS). Report on all token actions metrics via Monthly and Annually Metrics reports.
• Maintain and inventory and provide oversight for life cycle replacement of CPR IT assets, locations, and authorized operators, and act as technical support to field staff to address local implementation issues to include developing and maintaining installation procedures. Develop and maintain SOP for all DCMA CPR activity and installation procedures. Report CPR activity metrics via Monthly and Annually Metrics reports.
• Create and maintain an Artifacts Repository and dashboard of all DCMA audits and supporting documentation for each.