Information Security Specialist, Onsite

Position Overview

Center 5400 Integrated Military Systems is seeking an Information Security Specialist with robust expertise in security operations and Communications Security (COMSEC) to develop, maintain, and ensure compliance with comprehensive policies, processes, and procedures that protect the security of systems, communications, and information assets. This role is essential to ensuring that program operations consistently meet established standards, specifications, and agency guidelines. The primary focus of this position is the comprehensive security and compliance oversight of systems and communications in support of Center 5400's critical programs and missions, with particular emphasis on COMSEC program management.

• Developing, maintaining, and validating security policies, plans, processes, and procedures to ensure compliance with regulatory and agency standards.
• Conducting detailed inspections, audits, and process control analyses to enforce compliance and identify improvement opportunities.
• Providing expert interpretation of security policies and guidelines, offering strategic solutions to complex compliance challenges.
• Serving as the Primary COMSEC Custodian for Center 5400’s COMSEC account, ensuring secure management and accountability of communications security materials.
• Designing and delivering training and awareness programs to promote compliance with applicable security regulations.
• Leading system certification and accreditation planning, testing, and coordination activities.
• Analyzing security logs and intelligence from internal and external sources to detect and respond to potential threats.
• Staying current with industry best practices, emerging threats, and evolving regulatory requirements.
• Supporting incident response efforts and contributing to the development of IT, Communication Security, and cybersecurity policies and guidance.

• Bachelor’s degree in a relevant discipline; or an equivalent combination of directly relevant education and engineering or scientific experience that demonstrates the knowledge, skills, and ability to perform independent research and development.
• Implement, enforce, and manage COMSEC account, policies, procedures, and equipment to safeguard sensitive communications.
• Active DOE Q (or DOD equivalent) security clearance; U.S. citizenship required.

• Demonstrated exceptional interpersonal skills, including conflict de‑escalation, adaptability, and the ability to find common ground by effectively adjusting communication style to meet the needs of diverse situations and stakeholders.
• Excellent verbal and written communication skills, with proven ability to collaborate across multidisciplinary teams, engage stakeholders, and deliver training and awareness programs.
• Extensive experience serving as a COMSEC Custodian or managing communication security programs, ensuring compliance with applicable regulations and secure handling of sensitive materials.
• Ability to interpret and apply complex security policies and regulations across classified and unclassified environments, with interdisciplinary knowledge of information security domains.
• Familiarity with policy development and application, and use of the scientific method for continuous monitoring and analysis of data from information systems in support of active risk management.
• Experience with cybersecurity requirements, including developing and managing security plans, and familiarity with DOE/NNSA cybersecurity orders and standards such as NIST, ISO, and CNSS.
• Proven ability to apply security controls to information systems, conduct risk assessments, and manage vulnerabilities in accordance with industry best practices and frameworks such as NIST 800‑53.
• Relevant industry certifications (e.g., CISSP, CISM) and demonstrated commitment to continuous learning in emerging cybersecurity technologies and trends.
• Skilled in using monitoring tools, performance optimization, and incident response to maintain secure network environments.
• Strong understanding of secure network design, access controls, and cybersecurity platform development and certification processes.

Location:

Onsite. Required travel up to 25% of the time.

Salary Range: $74,700 - $144,400. Salary range is estimated; actual salary will be determined after consideration of the selected candidate’s experience and qualifications, and application of any approved geographic salary differential.

• Generous vacation, strong medical and other benefits, competitive 401(k), learning opportunities, relocation assistance and amenities aimed at creating a solid work/life balance.

* Benefits vary by job classification.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, and any other protected class under state or federal law.