Shaw AFB, SC
Education/Certifications: Bachelor’s Degree (Will accept Associate’s and 4 additional years of experience or High School Diploma with 8 additional years of experience)
Years of Experience: 3+ years’ experience supporting RMF; 7+ years’ experience in DoD cyber
Clearance Level & Investigation: Secret
IA Cert Level (DoD 8570.01): IAM III
The Cyber Security Engineering Lead primarily performs Cyber Security Engineering Management at Shaw AFB. This role provides guidance to the AO and Information Assurance Program Manager (IAPM) in protecting, detecting, characterizing, countering, and mitigating unauthorized activity and vulnerabilities on DoD information networks and systems. The CSE Lead assists in developing and implementing cybersecurity programs and provides recommendations for, and coordination of, administrative policies and procedures. This role develops and maintains process to identify and track cybersecurity requirements, identify possible solutions, manage cybersecurity actions, and document decisions and certification efforts.
Qualifications:
The Cyber Security Engineering Lead must have the following minimum qualifications:
- Minimum of 3 years of experience with RMF/ Risk Management Framework and 7 years’ experience with DoD cyber working with NIPRNET, SIPRNET, and CPN-X (or other CENTCOM CX network environment) supporting DoD Cyber.
- DoD 8570.01 M compliance for IAM Level III.
- Background must include 3 years’ experience supporting RMF and 7 years of cybersecurity and technical experience with DoD networks.
- Must hold a Secret clearance.
- Bachelor’s Degree required – may substitute additional years of experience in lieu of advanced degree
- Additional 4 years of experience with Associate’s Degree
- Additional 8 years of experience with High School Diploma
Responsibilities:
- Validate cybersecurity compliance; review documentation for accuracy and completeness.
- Advise and assist organizations in preparation of RMF documentation, Connection Approval Process (CAP), and ATO requests for existing and proposed system or network changes.
- Provide oversight of PM and Programs of Record (POR) cybersecurity compliance; coordinate certification and accreditation efforts for PM or POR systems.
- Ensure effective dissemination, reporting, compliance, and verification processes and procedures.
- Provide oversight of security violation reporting and incident handling.
- Audit configuration management and change control processes for compliance; advise AO on potential risk for network changes.
- Conduct cybersecurity inspections, assessments, tests, and audits as required.
- Coordinate Computer Network Defense (CND) policies and procedures across SWA AOR.
- Maintain repository for all organizational or system-level cybersecurity-related documentation.
- Support development of CSE Management Deliverables, including weekly report on status of projects and recommendations for improvement, and progress on and status of IA ITSM ticket queue.
- Oversees efforts of CSE team to define and validate technical security requirements for proposed IT systems, and document system security design approaches and/or determine if system design approaches meet mission security requirements.
- Integrates cybersecurity considerations into systems engineering and design processes and ensures that cybersecurity portions of overall system design are reflected in system engineering and design documents, test plans, procedures, and reports.
- Ensures that cybersecurity boundaries (e.g., crypto boundary, authorization boundary, classification boundary) clearly and consistently identified in all program documents and drawings.
- Performs network security management services that include assisting Government with managing access restrictions to network facilities/resources, as well as protecting confidentiality, authenticity, and integrity of network management data (e.g., routing tables, access lists, and audit data protection).
- Oversees efforts of Cyber Network Defense team.