MYMIC, LLC

  • Security Specialist 4

    Job Locations US-SC-Charleston
    Posted Date 1 month ago(1 month ago)
    ID
    2018-1201
    # of Openings
    1
    Category
    Information Technology
  • Overview

    Job Title:  Security Specialist 4

    Location:  Charleston, SC

    Clearance:  Top Secret (verifiable in JPAS)

    Type: FT, Salaried (Exempt)

    StatusPosition is contignent upon contract award (base year plus 4 option years)

     

    Naval Facilities Engineering Command Information Office Support

     

    SCOPE:

     

    For this project, Space and Naval Warfare Systems Center Atlantic (SPAWARSYSCEN Atlantic) requires contractor support in service of initiatives that share the common goal of using accurate information collected from across the Naval Facilities Engineering Command (NAVFAC) enterprise to visualize information that drives greater visibility of performance related to execution of initiatives within NAVFAC’s 6 Business Lines: Capital Improvements, Environmental, Expeditionary, Public Works, Asset Management, and Contingency Engineering. 

     

    The scope of work will focus on the following:

     

    • Working toward the dedication to standards and governance processes as well as a focus on transparency and openness to ensure end-users are appropriately informed, trained and included in capability delivery
    • Implementing a standardized, aligned, synchronized and innovative framework within the organization, linking systems, applications, processes and users to empower and manage quantum innovation across the organization
    • Operations and sustainment support to ensure the availability and functionality of NAVFAC software systems residing in on Premise Data Centers or an approved Cloud environment

    SPAWARSYSCEN Atlantic will provide technical and program management support of the NAVFAC IT and Operational Technology (OT) initiatives in the areas of program management, application cloud migration and deployment, systems modernization, cybersecurity, enterprise content management, and IT audit readiness.

     

     

    Responsibilities

    The Security Specialist shall support services in the following areas:

    • Ensure that all users have the requisite security clearances and supervisory need-to-know authorization, and are aware of their Information Assurance (IA) responsibilities before they are granted access to the DoD information system
    • Initiate protective or corrective measures when an IA incident or vulnerability is discovered Ensure that IA and IA-enabled software, hardware, and firmware comply with appropriate security configuration guidelines
    • Ensure that DoD information system recovery processes are monitored and that IA features and procedures are properly restored
    • Ensure that all DoD information system IA related documentation is current and accessible to authorized individual
    • Implement and assist in the enforcement of all DoD information system IA policies and procedures, as defined by its security Certification & Accreditation (C&A) documentation
    • Advise appropriate senior leadership or authorizing official of charges affecting the organization's IA posture
    • Collect and maintain data needed to meet system IA reporting
    • Ensure IA inspections, tests, and reviews are coordinated for the network environment Ensure IA requirements are integrated into the continuity planning for that system and/or organization(s)
    • Ensure protection and detection capabilities are acquired or developed using the information system security engineering approach and are consistent with organization-level IA architecture Evaluate and approve development efforts to ensure that baseline security safeguards are appropriately installed
    • Evaluate cost-benefit, economic, and risk analysis in decision-making process Participate in information security risk assessment during the Security Assessment and Authorization (SA&A) process
    • Participate in the development or modification of the computer environment IA security program plans and requirements
    • Prepare, distribute, and maintain plans, instructions, guidance, and standard operating procedures concerning the security of network system(s) operations
    • Provide system related input on IA security requirements to be included in statements of work and other appropriate procurement documents
    • Recognize a possible security violation and take appropriate action to report the incident Recommend resource allocations required to securely operate and maintain an organization’s IA requirements
    • Supervise or manage protective or corrective measures when an IA incident or vulnerability is discovered
    • Use Federal and organization-specific published documents to manage operations of their computing environment system(s)
    • Identify security requirements specific to an IT system in all phases of the system lifecycle
    • Ensure Plan of Action & Milestones (POA&Ms) or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc.
    • Assure successful implementation and functionality of security requirements and appropriate IT policies and procedures consistent with the organization's mission and goals
    • Support necessary compliance activities (e.g., ensure system security configuration guidelines are followed; compliance monitoring occurs)
    • Support the acquisition process as necessary, following appropriate supply chain risk management practices
    • Define and/or implement policies and procedures to ensure protection of critical infrastructure Providing access and insight to authoritative enterprise information
    • Working toward the dedication to standards and governance processes as well as a focus on transparency and openness to ensure end-users are appropriately informed, trained and included in capability delivery
    • Implement a standardized, aligned, synchronized and innovative framework within the organization, linking systems, applications, processes and users to empower and manage quantum innovation across the organization

    Qualifications

    Education: Bachelor’s degree. Applicable Discipline Certification (e.g. DISCO certification for Infosec Security Specialist).

     

    Clearance:  Must have current Top Secret clearance, verifiable in JPAS.

     

    Certification(s):  This position is categorized as a Privileged User and so must be IAT Level II certified IAW the DoD 8570.01-M manual.  This means a qualified candidate will have a Security+CE certification (or equivalent CISCO or ComptTIA certification) AND ALSO hold a certification for the Operating System/Computing Environment (OS/CE) or security related tool used within this environment.

     

    Experience: Ten (10) years of experience, to include: applicable security discipline principles, practices, and procedures.

     

     

    This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, national origin, protected veteran status or disability.

     

    Per EO 11246, this federal contractor and subcontractor will refrain from discharging, or otherwise discriminating against, employees or applicants who inquire about, discuss, or disclose their compensation or the compensation of other employees or applicants. An exception exists where the employee or applicant makes the disclosure based on information obtained in the course of performing his or her essential job functions.

     

    #S2 

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed