Information Systems Security Engineer (ISSE) Information System Security Officer (ISSO) for Modeling and Simulation Systems at Corps Solutions in Twentynine Palms, California

Job Description:

Information Systems Security Engineer (ISSE) Information Systems Security Officer (ISSO) Twentynine Palms, CA The ISSE / ISSO for Modeling and Simulation Systems is responsible to the Project Manager for the overall cybersecurity of the enterprise. The ISSO reports to and receives work direction from the Project Manager. The ISSE reports to and receives work direction from the Project Manager through the local Company Site Lead. The ISSE / ISSO for Modeling and Simulation Systems will perform the following duties: ESSENTIAL DUTIES AND RESPONSIBILITIES

• Ensure all BSCs/CASTs comply with cybersecurity policy.
• Implement cybersecurity solutions in compliance with the RMF, NIST, DoD and Marine Corps policies and standards to establish or sustain ATOs for information systems and networks.
• Provide Cyber Security oversight, direction, and guidance to the BSC/CAST workforce in support of attaining and maintaining ATOs through the RMF process.
• Develop and maintain education and training programs for BSC/CAST workforce to effectively maintain operational networks and cybersecurity readiness.
• Provide instructions and training to BSC/CAST workforce on cyber security and information assurance reporting, Develop and deliver Monitor and report compliance with Marine Corps Cyber Operations Group (MCCOG) issued Marine Corps Enterprise Network (MCEN) Operational Directives (OPDRS) for all BSC/CAST IT systems, information systems, and network resources.
• Maintain and update a continuous Plan of Action and Milestones (POA&M) for reporting to ISSO on the implementation of patches / updates on all client, server, and system security vulnerabilities using both automated scanning tools and manual compliance checks.
• Run and review vulnerability and compliance scans performed at the BSC/CAST on all networks and services through the use of current DoD Assured Compliance Assessment Solution (ACAS), or other approved solution(s).
• Provide cybersecurity reports and provide daily status updates (upon request) to the Government representative for all client, server, and network infrastructure software patches and updates, security vulnerabilities and fix actions, current security vulnerability POAMs, and action required in response to Operational Directive (OPDRS).
• Ensure sufficient Patch Management processes are implemented using IBM Big Fix, or Microsoft client management solutions (e.g., MS SCCM) to minimize cybersecurity vulnerabilities and comply with Operational Directives (OpDirs) in support of day-to-day operations and training events and exercise.
• Implement Information Assurance Vulnerability Alerts (IAVAs), OpDirs, Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs), patches, and industry best practices to ensure cybersecurity compliance of BSC/CAST information, C2 and simulation systems.
• Prepare and maintain A&A related documentation (i.e., Site Inventory, software baseline, equipment lists, Ports, Protocols, and Services Management (PPSM), self-assessment / test plans, etc.), POA&Ms, Security Plan (SSP), Vulnerability Scans, Security Assessment Report (SAR), Contingency Plans, Information Assurance Vulnerability Management (IAVM) Plans, Cyber Security Waiver Requests, Cyber Security Waiver Extension Requests, and Federal Information Security Management Act (FISMA) related reporting requirements within Marine Corps Certification and Accreditation Support Tool (MCCAST).
• Configure and implement Host Based Security System (HBSS) policy to achieve compliance with other USMC C2 information systems (e.g., AFATDS, JADOCS, TBMCS, TCS, etc.).
• Install, operate, maintain, and troubleshoot HBSS client and server elements and modules to support day-to-day operations and training events and exercises.
• Draft written reports to designated Government representative reporting and correcting BSC/CAST cybersecurity security violations.
• Ensure personnel accessing information systems have the proper IA certification to perform privileged or cyber security functions per DoD 8570, Information Assurance Workforce Improvement Program; (DoD 8140) and the SECNAV M-5239.2, Department of the Navy Information Assurance (IA) Workforce Management Manual to Support the IA Workforce Improvement Program; and USMC HQMC ECSM 024, Cyber Security Workforce Program Management.
• Maintain current and historical documentation of all BSC/CAST DoD Information Assurance Certification and Accreditation Process (DIACAP) and RMF Assessment and Authorization (A&A) packages.
• Ensure that Marine Corps Certification and Accreditation Support Tool (MCCAST) packages are accurate and complete before submitting for signature.
• Review vulnerability and compliance scanning of all BSC/CAST networks and services through the use of current DoD Assured Compliance Assessment Solution (ACAS) or other government provided solution. Ensures anonymity is denied to the maximum extent possible.
• Provide consistent reporting environment to maintain and track IT assets and ensures systems are securely managed regardless of location by providing patch coverage across operating systems and applications for improved defense against the latest vulnerabilities.
• Assess and manage risks associated with information technology resources.
• Evaluates threats, risks, and vulnerabilities and develop countermeasures to ensure continuation in the event of an IT services disruption.
• Design and deploy Security Information and Event Monitoring (SIEM) capabilities across BSC/CAST information systems in order to ensure compliance, system monitoring, and reporting requirements.
• Provide network engineering and systems administration support to the Battle Simulation Centers (BSC) and Combined Arms Staff Trainers (CAST) with tasks such as: planning, installation, operation, and maintenance to support day-to-day operations and training events and exercises.
• Maintains military modeling/simulation systems and associated workstations by configuring and troubleshooting each system and respective workstation per supporting technical documentation in a classroom training and Combat Operations Center collective staff training environment.
• Conduct on-site instruction and technical assistance as required to include field training environments and will, on occasion, participate as a member of a mobile training team.
• Provide planning, engineering, installation, operation, maintenance, database development, system administration and instructional expertise to support CIS training, systems integration and operations in a combat operations center, logistics operation center and tactical air command center environment to support a variety of training supported events and exercises.
• Install, operate and maintain UNIX and Windows XP/Vista/Windows 7/2010/2013 environments.
• Perform other related duties incidental to the work described.
• Develop and maintain cross-boundary network solutions (e.g., firewalls, access control lists, etc.) between multiple networks or enclaves of various Mission Assurance Categories (MAC) and classification levels to enable the controlled interconnection of training systems, experimental systems, domain services, or coalition partners with BSC/CAST networks.
• Install, configure, optimize, maintain and operate network servers, hubs, routers, and switches.
• Provide end-user IT support for all BSC/CAST operating systems, peripherals, and applications.
• Install, test, maintain, and upgrade network operating systems software and hardware.
• Perform IT related customer support functions including installation, configuration, troubleshooting, customer assistance, and/or training, in response to customer requirements.
• Research and provide recommendations for audio visual, computer, computer network infrastructure equipment, and supporting training technology and peripheral equipment to support the BSC/CAST training environment.

EDUCATION & EXPERIENCE

• High school diploma.
• At least one year of experience in cybersecurity.
• At least three years of experience in IT, which should include successful experience as a project team member.
• Well versed in USMC and DoD cyber security compliancy, instructions, policies and regulations.

CORE SKILLS/COMPETENCIES Required Knowledge, Skills and Abilities

• Proficient in Microsoft Word, Outlook, Excel, PowerPoint, Visio, Project, and SharePoint.
• Documented experience and solid understanding of DoD enterprise network policies with a strong security mindset.
• Excellent interpersonal and communication skills with the ability to interact with others and senior management.
• Able to read, write, and communicate effectively in English.
• Strong analytical and problem-solving skills.
• Excellent organizational, planning and prioritization skills.

WORKING CONDITIONS

• Work is conducted on site, in a government facility.
• Required to sit or stand for extended periods of time and maintain focus.
• May be required to lift, carry and move computer and associated equipment.
• Be able to work an unstable schedule, to include holidays and weekends in support of exercises. Exercises often require shifts of 12-14 hrs per day, 7 days a week for the duration of the exercise, which normally are 1-3 weeks in length.

SPECIAL POSITION NOTATIONS

• May require occasional CONUS and OCONUS travel for up to three weeks at a time (or longer).
• Qualification as an authorized company driver is required. All authorized company drivers must have a valid driver's license, current automobile insurance, and a driving record that is acceptable to the company's auto insurance provider.
• Daily travel in local area during workday (including use of personal vehicle).
• Must meet current DoD Cyber Security Workforce program requirements for Information Assurance Technical (IAT) Level II or higher.
• Must possess and maintain training and certifications sufficient to be granted privileged access to Marine Corps information technology (IT) and information systems (IS) through documented completion of required training and certification.
• Must possess and maintain CompTIA CySA+ certification.

SECURITY CLEARANCE

• A NATO-Secret security clearance is required for this position.

ESTIMATED COMPENSATION

• $75,000-$95,000

PI239175784

Apply Now