Information Security Analyst

Purpose and Scope:

Provide technical services required to maintain, operate, and support unclassified and classified and standalone/closed communication systems. Responsible for maintaining applicable communications network records. This position is in support of the Air Force Contract Augmentation Program (AFCAP) and is located at Ascension Island Auxiliary Airfield (AAAF).

Essential Responsibilities:

• Provide technical services and hands-on configuration of IT and technical services on all seven layers of the Open System Interconnect model to include systems as needed.
• Review, validate and redline all CSIRs IAW AFTO 00-33A-1001 Para 5.7.1 or as requested by the Government CSIR Manager.
• Participate in the Cybersecurity Program (formerly known as the Information Assurance (IA) Program) and perform General Cybersecurity Support Activities and Communication Management for the successful operation of Communication and Air Force IT assets IAW technical orders and other applicable directives to include Time Compliance Technical Orders (TCTO), Time Compliance Network Orders (TCNO), Maintenance Tasking Orders (MTO), Cyber Control Orders and Cyber Tasking Orders (CTO).
• Ensure all cybersecurity functions are performed and provide cybersecurity training to their personnel. Accomplish initial and annual Cybersecurity Awareness training and ensure all personnel requiring access to any DoD information system maintain currency with all DoD Cybersecurity Awareness training requirements.
• Establish a Cybersecurity Training Plan for COR coordination and approval within 90 days after award. Maintain, review, and update the Cybersecurity Training Plan at least annually or upon significant changes to governing documents.
• Comply with Federal Information Security Modernization Act of 2014 (FISMA) and provide reports as directed by the Government.
• Support the resolution of Negligent Discharge of Classified Information (formerly known as Classified Message Incident) IAW TASKORD 2017-030-003D and follow-on documentation.
• Support IA Audit or Inspector General inspections activities as directed by the Government, as well as any Government investigation of suspected wrongful use of U.S. Government computer assets.
• Monitor and take necessary action on trouble reports, AFCERT Compliance Messages, Information Assurance Vulnerability Alerts (IAVA), emerging threats, or other actions directed by the Government to secure the network.
• Ensure personnel with elevated (administrative) privileges accessing DoD information systems have and maintain the proper and current information assurance certification to perform cybersecurity functions IAW DoDI 8500.01 and AFMAN 17-1303.
• Ensure that communication systems are in compliance with assigned Mission Assurance Category (MAC) and Confidentiality Level IAW DAFI 31-101.
• Use National Security Agency (NSA)-approved cryptographic encryption devices to protect information IAW AFMAN 17-1302-O.
• Use NSA and Defense Information Systems Agency (DISA) hardening guidance (security readiness reviews, STIGs and security checklists) to configure hardware and software.
• Ensure all deliverables comply with: DISA, STIG, and Computer Network Defense (CND), which includes the need for source code scanning, the DISA Database STIG, and a Web Penetration Test to mitigate vulnerabilities.
• Ensure that all services meet requirements to include assessment and authorizations (A&A) IAW DoD Cyber Security RMF, DoDI 8500.01, and Intelligence Community directive (ICD) 503, or most current standard and guidance that are applicable.
• Support activities to make applications PK-enabled (PKE) in order to achieve standardized PKI-supported capabilities for digital signatures, encryption, identification and authentication.
• Provide capabilities to selectively monitor interactions and manage all active identities to include user, services, machines and services identity based on PKI.
• Conduct annual information technology security reviews IAW: FISMA and Title III of the Electronic Government (e-Gov) Act of 2002.
• Utilize the Action Request System (ARS), also known as REMEDY (or any Government- approved replacement system), for processing trouble tickets and maintenance for Mission Support Communications systems IAW Table AH-1.
• Perform Information Dissemination Management.
• Provide customer services to base-level users and Customer Support Associates to serve as focal points for network, to include Air Force IT services and problem resolution.
• Provide situational awareness and visibility of the base-level Command, Control, Communications, and Computers (C4) systems.
• Consolidate base-level network performance data, security data and analysis reports; pulling information from the Air Force Network Operations Command (AFNETOPS) hierarchy as needed and use the consolidated information to identify causes of service, performance and security flaws.
• Support the moves, relocations, additions to and changes from the baseline network.
• Load encryption keys in all network encryption devices IAW applicable directives.
• Operate, maintain and configure point-to-point, VPN and bulk encryption for network and long-haul circuits.
• Operate, process, configure and maintain all data, voice and video encryption equipment and encryption keying material required to perform Communications Security (COMSEC) duties IAW AFMAN 33-283 and applicable directives.
• Perform assessments, surveys, engineering support, installations, replacements (scheduled and unscheduled), troubleshooting, ticket escalation, outage resolution, maintain, operate and support of all the virtual and physical hardware and software infrastructure of the Communication and Air Force Information Networks assets
• Develop and maintain all systems, applications, security and network configurations by troubleshooting server and network performance issues to resolve problems.
• Test the LRP and COP quarterly to ensure that operational capability is confirmed with zero discrepancies allowed.
• Ensure outlined compliance standards are accomplished for communications infrastructure modified and/or installed.
• Operate and maintain the Alarm, Warning, Notification, Access Control and Video Systems.

Minimum Position Knowledge, Skills and Abilities Required:

• Minimum of three (3) years' experience and expertise related to security and risk management for communication and IT resources.
• Be familiar with IT concepts, practices and procedures, and have certification IAW DoDI 8500.01 and industry standards.
• Solid communications skills, strong interpersonal skills.
• Strong ability to work as a member of a diverse, dynamic team.
• Outstanding problem-solving skills and sound judgment.
• Must have or be able to obtain and maintain a SECRET level US Government Clearance. Note: US Citizenship is required to obtain a SECRET Clearance.
• Possess a valid state issued driver's license and passport.
• Ability to successfully pass contract medical requirements and maintain requirements for duration of deployment.
• Prior overseas government contracting experience preferred.

Work Environment, Physical Demands, and Mental Demands:

• Must be able to meet the physical requirements dictated by project requirements.
• Ability to work in harsh working conditions, outdoors, and/or in extreme temperatures.
• Must be available to work outside the normal schedule if the need arises.
• Must be able to repeatedly lift up to 50 pounds and carry heavy objects routinely.
• Ability to climb, crawl, crouch, bend, stand for long periods, reach above shoulder level, extend arms at awkward angles, lift, and carry objects.
• Must be able to be alert for shifts of at least eight (8) hours.
• Personnel should be aware of moving on short notice and under adverse conditions.
• Ability to travel domestically and internationally

OTHER RESPONSIBILITIES

Safety - Amentum enforces a safety culture whereby all employees have the responsibility for continuously developing and maintaining a safe work environment. As appropriate, each employee is responsible for completing all training requirements and fulfilling all self-aid/buddy aid responsibilities, participating in emergency response tasks, and serving on safety committees and teams.

Quality - Quality is the foundation for the management of our business and the keystone to our goal of customer satisfaction. It is our policy to consistently provide services that meet customer expectations. Accordingly, each employee must conform to the Amentum Quality Policy and carry out job activities in compliance with applicable Amentum Quality System documents and customer contracts. Each employee must read and understand his/her Quality Management and Customer Satisfaction responsibilities.

Procedure Compliance - Each employee must read, understand, and implement the general and specific operational, safety, quality and environmental requirements of all plans, procedures and policies pertaining to job.

This position is pending contract award.

Amentum is proud to be an Equal Opportunity Employer. Our hiring practices provide equal opportunity for employment without regard to race, religion, color, sex, gender, national origin, age, United States military veteran's status, ancestry, sexual orientation, gender identity, marital status, family structure, medical condition including genetic characteristics or information, veteran status, or mental or physical disability so long as the essential functions of the job can be performed with or without reasonable accommodation, or any other protected category under federal, state, or local law. Learn more about your rights under Federal EEO laws and supplemental language at EEO including Disability/Protected Veterans and Labor Laws Posters .