Information System Security Specialist III

About The Position

Requirements

• Information Assurance Technician (IAT) Level I certification (minimum requirement)
• Completion of required training in accordance with: o SECNAV M-5239.2 o DoD 8570.01-M (Dates of most recent training completion must be provided)
• Bachelor’s degree in a technical or managerial discipline, OR High school diploma (or equivalent) with additional years of relevant experience
• 5+ years of relevant experience in: o Cybersecurity o Systems engineering o Test & Evaluation (T&E) o Assessment & Authorization (A&A), formerly Certification & Accreditation (C&A)
• 7+ years of experience required in lieu of a college degree

Nice To Haves

• Experience with Information Assurance and cybersecurity tools, including: o DISA Enterprise Mission Assurance Support Service (eMASS) o Assured Compliance Assessment Solution (ACAS)
• Familiarity with Risk Management Framework (RMF) processes
• May be required to hold or obtain Security Control Assessor (SCA) qualification

Responsibilities

• Implement and maintain security controls in compliance with DoD and DON policies
• Support system security posture and continuous monitoring activities
• Assist in the development and maintenance of A&A packages
• Support RMF processes, including system categorization, control selection, and authorization
• Utilize tools such as eMASS and ACAS to track, assess, and report system vulnerabilities
• Ensure systems meet compliance standards and address identified risks
• Identify, assess, and mitigate cybersecurity risks and vulnerabilities
• Recommend corrective actions and track remediation efforts
• Prepare and maintain security documentation, including System Security Plans (SSPs)
• Provide reports on system security status and compliance metrics
• Work with engineers, program managers, and stakeholders to integrate security into system lifecycle
• Support audits, inspections, and security assessments