Job Description

ASRC Federal Cyber is seeking an Information System Security Officer at Fort Greely, Alaska.

The current job duties/responsibilities include:

• Manages major national/international infosec programs.
• Exercise strong communication and project management skills to service stakeholders in respect to system security and the RMF.
• Provide Risk Management Framework (RMF) support and expertise to System Owners ensuring they maintain an appropriate operational cybersecurity posture.
• Use your expertise to analyze and ensure the security posture of systems hosted in cloud and on premises environments.
• Maintain documentation for Risk Management Framework Assessment and Authorization (A&A) in accordance with DOJ policies.
• Assess the impacts on system modifications and technological advances.
• Review systems in order to identify potential security weaknesses, recommend improvements to amend vulnerabilities, implement changes, and document upgrades.
• Ensure appropriate security controls and measures are in place to safeguard systems, applications, networks, and data.
• Anticipate cybersecurity risks to the organization and provide recommendations to reduce and/or mitigate risk to the organization.
• Advise functional expert management staff on cybersecurity issues pertaining to specific operating systems, hardware, technology, and methodology.
• Develop policies and procedures to ensure information systems reliability and accessibility and to prevent and defend against unauthorized access to systems, networks and data; designs and implements monitoring, tracking, and reporting procedures and develops and manages short and long range plans for addressing cybersecurity needs
• Determine information security requirements by evaluating organization business strategies and requirements, researching information security standards; conducting system security and vulnerability analysis and risk assessments, assessing industry architectures/platforms and relative security benefits, and identifying architecture/platform integration issues that prevent the strongest possible security posture.
• Manage employees to include hiring, ongoing performance and separations.
• Provide proactive advisement to the customer on the security of systems and cybersecurity practices, thought leadership, and successfully complete new system ATOs.
• Bachelor\xe2\x80\x99s degree and 5-7 years of relevant experience
• Must be able to obtain and maintain a Secret Clearance.
• Ability to pass pre-employment drug screen.
• 2+ years of experience applying the NIST Risk Management Framework to ensure the security of information systems.
• Experience using a GRC tool such as eMass, Xacta, CSAM, or similar (CSAM preferred)
• Experience managing the POA&M lifecycle and achieving new ATOs (Understand documents related to ATOs)

Preferred:

• Experience analyzing and ensuring the security posture of systems hosted in a cloud environment
• At least CompTIA Security+ce certification
• Great communication and organizational skills, preferably in the form of project management knowledge and skills
• Prior experience leading a team

Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled