Information Assurance; IA Lead

Trace Systems
Information Assurance (IA) Lead

US-SC-Shaw AFB

Job Overview:

Trace Systems is seeking a dynamic Information Assurance Lead to join our team in support of the AFCENT Combined Air Operations Center (CAOC) contract at Shaw AFB, SC. This role offers the opportunity to spearhead the management, administration, and implementation of mission essential cybersecurity and Information Assurance programs, ensuring the confidentiality, availability, and integrity of Enterprise and AOC networks, systems, and information.

The job responsibilities include, but are not limited to:

• Serve as the information security subject matter expert, and implement processes and controls in support of cybersecurity programs to ensure compliance with AFI 17-130, Cybersecurity Program Management, and other governing DoD, USAF and USAFCENT directives and policy;
• Plan, implement, upgrade and monitor security measures for the protection of communications and IT systems and information;
• Draft, review and coordinate local IA policies, procedures and operating instructions, and provide recommendations for revisions;
• Identify and manage cybersecurity risks; and implement controls to ensure the security and delivery of mission critical services;
• Monitor and detect cybersecurity events; and implement appropriate response and recovery actions;
• Manage cybersecurity incident management handling, response, escalation and reporting IAW SPIN-C and other IA applicable regulations;
• Maintain cybersecurity posture IAW SPIN-C and applicable DoD, AF and USAFCENT directives and policy;
• Ensure all IT hardware/software products are configured IAW with Security Technical Implementation Guidance (STIG) and other relevant security configuration and implementation guidance;
• Ensure no unauthorized hardware/software is installed or used on Enterprise and AOC networks and systems;
• Utilize standard software tools to perform vulnerability scans of network equipment and software; and assist network, systems and client administrators in implementing corrective actions required when vulnerabilities are detected;
• Develop, update and maintain certification and accreditation documentation, including but not limited to DoD Risk Management Framework (RMF) artifacts, Plan of Action and Milestones (POA&Ms), waivers, and vulnerability mitigation plans;
• Assess the impact of changes on certification and accreditation packages, and advise the government accordingly;
• Process and coordinate system access authorization requests, software approval requests, firewall and proxy exemption requests/waivers, and other IA-related documents;
• Ensure IA-related documentation is current and accessible to authorized individuals;
• Research security issues affecting network/systems hardware and software, and provide recommended solutions;
• Ensure unit and individuals are in compliance with IA standards and guidance; and promote information security awareness;
• Assist with the sensitive and/or classified hard drive and removable media tracking, sanitization and destruction;
• Assist with the operation, management and administration of unit Communications Security (COMSEC) and Emissions Security (EMSEC), and Operations Security (OPSEC) programs, as required;
• Perform technical support and O&M activities for information assurance-related technical problems or requirements;
• Attend and participate in cybersecurity and CM meetings, as required;
• Develop and submit a Cybersecurity Monthly Status Report (Deliverable: Monthly Technical Status Report);
• Develop and submit IA advisories and ad-hoc reports, as required by the government.
• Manage, guide and train other IA, cyber mission defense and other cyber security staff in support of DoD cybersecurity requirements.
• Global travel up to 10%.
• Other Duties as Required.

Qualifications:

• Active, in-scope US Government issued Top Secret clearance with SCI eligibility.
• Due to the nature of the work and contract requirements, US Citizenship is required.
• DoDM 8140 Information Assurance Management (IAM) Level 3 (CISSP, GLSC or CISM) certification.

Desired

Qualifications:

• Bachelor's degree in Computer Science OR related field, and 5+ years' work experience.

Trace Systems is an equal opportunity employer. Qualified candidates will be considered without regard to legally protected characteristics.