ISSO-Journeyman

Location:

China Lake, CA

Status:

Full Time

Job Description:

Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information.

Assess system vulnerabilities for security risks and propose and implement risk mitigation strategies.

May ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure.

May respond to computer security breaches and viruses.

Tasking Details:

Review and evaluate computer equipment and network architecture in an effort to ensure optimized digital security.

Identify areas of potential risk and develops plans and procedures to mitigate those risks.

Coordinate with system administrators to ensure computer systems are maintained and comply with basic security standards.

Perform risk and vulnerability assessments.

Document and maintain security policies and procedures.

Document and submit findings and recommendations as artifacts as defined in the Department of the Navy’s (DON’s) implementation of all steps of the Risk Management Framework (RMF) process.

Categorize the system, select, implement, and test security controls, and receive an Authorization to Operate (ATO) before use or interconnection in an operating environment.).

Coordinate with multiple stakeholders including the Sidewinder Technical Project Office (TPO) Director, Chief Engineer (CHENG), lab managers, communications security (COMSEC) manager, system administrators (SAs), configuration manager (CM), and authorized users.

Attend Sidewinder TPO meetings as well as Information Technology/Cybersecurity (IT/C) meetings and provide input and recommendations as the subject matter expert (SME) in cybersecurity.

Changes to information systems shall be assessed for security risk and impact and documented via an IT change control board (CCB) process. Shall evaluate changes as the cybersecurity SME and act as a voting member of the board.

Track work items and progress via Microsoft Teams list or other designated task tracking system and provide updates to stakeholders as required.

Write, update, and implement cybersecurity processes in accordance with Department of War (DOW), DON, Naval Air Systems Command (NAVAIR), and NAWCWD policies.

Monitor systems and initiate NAWCWD Cybersecurity Incident Response Plan (CIRP) procedures in the event of a suspected or known cybersecurity incident.

Monitor technological security trends to stay up-to-date on the latest best practices.

May consider a more junior level candidate.

Education and Work Experience Requirements:

Due to the sensitive nature of the work, U.S Citizenship is required.

Must be able to obtain and maintain a Security Clearance for duration of employment.

Edu/Exp: BA/BS 3-10 years OR AA/AS 5 OR No degree 7 years (Does not need to be specialized.)

IAT Level II: Examples are Sec , Linux , GSEC (GIAC Security Essentials), GICSP (Global Industrial Cyber Security Professional), CySA (Cyber Security Analyst), CISSP (Certified Information Systems Security Professional), CCNA (Cisco Certified Network Associate).

Salary: the expected pay range for this position is $99,840 to $145,600 but is subject to change.

Security Clearance:

Secret