Yesterday
Top Secret
Unspecified
Unspecified
IT - Security
China Lake, CA (On-Site/Office)
Position Description
-- Implement and enforce Information System (IS), Platform Information Technology (PIT), Standalone, and Test Measurement and Diagnostic Equipment (TMDE) system cyber security policies and procedures as per current DoN, DoS, DoA, DISA, and NIST best cyber hygiene practices;
-- Research and define, as necessary, cyber security related documentation/policy for CLR resident IS assets based on owning organization requirements, i.e. DoA, DoS, DoD, DoN, etc. in conjunction with CLR and NAWCWD Leadership;
-- Ensure that all users have the requisite security clearances, access authorization, awareness, and training of their cyber security responsibilities for U.S. Government Agency and DoD IS and PIT systems under their purview before being granted access to those systems;
-- In coordination with the CLR Security Manager, initiate protective or corrective measures when a cyber-security incident or vulnerability is discovered. Ensure that processes are executed for proper reporting and cleanup of each occurrence.
-- Ensure authorized users have and understand a process for reporting all cyber security related events, potential threats, and vulnerabilities to the ISSO;
-- Use government furnished COTS tools to monitor cybersecurity threats and act on them accordingly with support from branch head and security;
-- Track and manage cybersecurity training events and annual training requirements for all CLR employees;
-- Ensure that all DoD IS cyber security related documentation is current and accessible to properly authorized individuals;
-- Maintain current and accurate Risk Management Framework (RMF) assessments, authorizations, and documentation throughout each fiscal year and execute regular, schedule and unscheduled assessments.
Other duties include:
-- The incumbent will serve as the Information System Security Manager (ISSM) for the China Lake Range Department.
-- Track the operational security posture of CLR for information systems and track that the systems are operated, maintained, and disposed of in accordance with security policies and procedures.
-- Coordinate proposed changes to the system and analyze any potential security impact or risk associated with those changes.
-- Review and implement operational information systems security implementation policy and guidelines.
-- Responsible for CLR approval to operate systems and oversee ISSOs' maintenance of approvals. Respond to, resolve, and/or elevate all security-related incidents in conjunction with CLR Security Officer, NAWCWD/NCIS/NAVAIR security entities, or others as appropriate.
-- Ensure that all users have a valid need-to-know, appropriate clearance, and compliant with certification requirements if needed for access. -- Conduct periodic reviews of information systems to include vulnerability assessments and identify risk level and recommend corrective action and protective measures.
-- Serve as member of the Change Control Board (CCB).
-- Maintain awareness for CLR IT security posture, including oversight of security inspections, audits, and corrective actions.
-- Promote awareness of cyber security issues among management and ensure sound security principles are reflected in organizations' vision and goals.
-- Maintain applicable DoDM 8140.03 for DCWF role of 722 - Information Systems Security Manager proficiency level Intermediate or other requisite security certifications.
--Incumbent must be willing and able to work flexible hours as CLR mission may dictate;
--Incumbent must be willing and able to commute to remote test sites as CLR mission may dictate;
--Eligible to obtain and maintain a TOP SECRET or higher clearance
Minimum Salary
$84,366
Maximum Salary
$156,323
-- Implement and enforce Information System (IS), Platform Information Technology (PIT), Standalone, and Test Measurement and Diagnostic Equipment (TMDE) system cyber security policies and procedures as per current DoN, DoS, DoA, DISA, and NIST best cyber hygiene practices;
-- Research and define, as necessary, cyber security related documentation/policy for CLR resident IS assets based on owning organization requirements, i.e. DoA, DoS, DoD, DoN, etc. in conjunction with CLR and NAWCWD Leadership;
-- Ensure that all users have the requisite security clearances, access authorization, awareness, and training of their cyber security responsibilities for U.S. Government Agency and DoD IS and PIT systems under their purview before being granted access to those systems;
-- In coordination with the CLR Security Manager, initiate protective or corrective measures when a cyber-security incident or vulnerability is discovered. Ensure that processes are executed for proper reporting and cleanup of each occurrence.
-- Ensure authorized users have and understand a process for reporting all cyber security related events, potential threats, and vulnerabilities to the ISSO;
-- Use government furnished COTS tools to monitor cybersecurity threats and act on them accordingly with support from branch head and security;
-- Track and manage cybersecurity training events and annual training requirements for all CLR employees;
-- Ensure that all DoD IS cyber security related documentation is current and accessible to properly authorized individuals;
-- Maintain current and accurate Risk Management Framework (RMF) assessments, authorizations, and documentation throughout each fiscal year and execute regular, schedule and unscheduled assessments.
Other duties include:
-- The incumbent will serve as the Information System Security Manager (ISSM) for the China Lake Range Department.
-- Track the operational security posture of CLR for information systems and track that the systems are operated, maintained, and disposed of in accordance with security policies and procedures.
-- Coordinate proposed changes to the system and analyze any potential security impact or risk associated with those changes.
-- Review and implement operational information systems security implementation policy and guidelines.
-- Responsible for CLR approval to operate systems and oversee ISSOs' maintenance of approvals. Respond to, resolve, and/or elevate all security-related incidents in conjunction with CLR Security Officer, NAWCWD/NCIS/NAVAIR security entities, or others as appropriate.
-- Ensure that all users have a valid need-to-know, appropriate clearance, and compliant with certification requirements if needed for access. -- Conduct periodic reviews of information systems to include vulnerability assessments and identify risk level and recommend corrective action and protective measures.
-- Serve as member of the Change Control Board (CCB).
-- Maintain awareness for CLR IT security posture, including oversight of security inspections, audits, and corrective actions.
-- Promote awareness of cyber security issues among management and ensure sound security principles are reflected in organizations' vision and goals.
-- Maintain applicable DoDM 8140.03 for DCWF role of 722 - Information Systems Security Manager proficiency level Intermediate or other requisite security certifications.
--Incumbent must be willing and able to work flexible hours as CLR mission may dictate;
--Incumbent must be willing and able to commute to remote test sites as CLR mission may dictate;
--Eligible to obtain and maintain a TOP SECRET or higher clearance
Minimum Salary
$84,366
Maximum Salary
$156,323
group id: 90707755S
The Naval Air Systems Command is mission ready. We make an impact, advancing Naval Aviation solutions and delivering cutting-edge capabilities in support of the warfighter.
