Jacobs IA Policy & Compliance Certified Professional in Scott AFB, Illinois
IA Policy & Compliance Certified Professional
The Senior IA Policy & Compliance Certified Professional performs and leads support of Certification and Accreditation (C&A) or other IA/CND Compliance and Auditing processes and inspections for all enterprise systems and networks; ensures validity and accuracy review of all associated documentation. The selected candidate will lead and perform compliance reviews of computer security plans, performs risk assessments, and validates and performs security test evaluations and audits. This includes the analysis and definition of security requirements for information protection for enterprise systems and networks. This role assists in the development of security policies and analyzes the sensitivity of information and performs vulnerability and risk assessments on the basis of defined sensitivity and information flow. The Senior IA & Compliance Certified Professional will be professionally certified as Technical Level III as defined by DODI 8570 is a requirement.
Responsibilities include, but are not limited to:
Provide Security Operations Management support for USTRANSCOM
Maintain and enhance the USTRANSCOM Security Operations Management using Government-furnished security mechanisms and equipment located at Scott AFB, IL; Defense Enterprise Computing Center (DECC)—St. Louis, MO; Joint Enabling Capabilities Command (JECC)—Norfolk, VA; Ramstein AFB, GE; Hickam AFB, HI; and McConnell AFB, KS, O’Fallon IL, and Fairview Heights, IL.
Maintain and enhance Government-furnished security mechanisms hosted in cloud service provider environments
Perform cyber security defense; intrusion detection monitoring and incident management; cyber threat analysis; Communications Security (COMSEC) management, and Emissions Security (EMSEC) management
Provide support on-site 24/7 during periods of major exercises, contingencies, and emergencies as requested by the government with a minimum of 24 hours notification prior to the need of support
Support the Cyber Security Service Provider (CSP) in maintaining plans and procedures to augment existing personnel to surge operations in response to major incidents
Maintain continuous situational awareness over the ESM applicable to assigned Performance Work Statements (PWS) tasks
Ensure documentation and deliverables meet the requirements of the most current ESM in effect
Act as subject matter expert (SMEs) for Security Operations Management associated activities
Attend meetings or conferences held at USTRANSCOM and/or other locations as identified by the Government, and provide meeting/conference minutes if requested by the Government
Provide cyber security services to USTRANSCOM
Perform all work in accordance with all applicable laws, e.g., Clinger Cohen Act (CCA); regulations and national standards, e.g., National Institute of Standards and Technology (NIST); Department of Defense, DISA, NSA, USCYBERCOM, and USTRANSCOM standards and instructions; best commercial practices; and the Information Technology Infrastructure Library (ITIL)
The selected candidate should possess the following:
Understanding of network and host-based security devices to include, but not limited to, Intrusion Prevention Systems (IPS), Intrusion Detection Systems (IDS), firewall, proxy servers, sensors, switches, routers, hubs), and their role in moving packets securely from source to destination
Understanding of security requirements and best practices applicable to physical, virtual, and cloud (Infrastructure as a Service [IaaS], Platform as a Service [PaaS], Software as a Service [SaaS]) based environments
Knowledge of information security technologies to include, but not limited to, cryptography, biometrics, forensic analysis, vulnerability assessment, Security Information and Event Management (SIEM)
Understanding of Federal and DoD computer security directives, e.g., Security Technical Implementation Guides (STIGs), Electronic Communications Privacy Act, the Health Insurance Portability and Accountability Act (HIPAA), the Federal Information Security Management Act (FISMA), and Digital Millennium Act
Thorough understanding of National Institute of Standards and Technology (NIST) SP 800-37 and 800-39, and commercial best practices. Desired knowledge of applicable DoD, USCYBERCOM, and USTRANSCOM security guidelines and best practices
Thisposition requires a Bachelors degree with 8 years of experience or a total of 12years of related experience. An IAT Level III certification is required. Theminimum of an interim Secret level DoD Security Clearance is required.
Requiressitting for extended periods of time at a desk (90%). Requires sitting at acomputer terminal for long periods of time (90%). There is a possibility thatdue to parking availability and location of work area walking moderate to longdistances can sometimes be required.
Inside office/cubicle environment. Requires ability to interactprofessionally with co-workers and all levels of management (100%).
Equipment and Machines
Requiresability to operate a personal computer, a telephone, copier, and other generaloffice equipment (100%). Ability to conduct evaluation of third and fourthgeneration or current state of the art computer hardware and software and itsability to support specific requirements, interfacing with other equipment andsystems.
Attendanceis critical. Work hours are normally 8 hours per day and 5 days per week,Monday through Friday. Being prompt is important to provide continuous andon-going service to customers. Attendance is important to maintain continuityof service. Work outside of normal duty hours may be required with as little asone hour advance notice. Overtime is infrequent, but important when required(1%).
Other Essential Functions
Must beable to communicate effectively, both verbally and in writing. Must be able tointerface with individuals at all levels of the organization. Must be able toobtain unescorted access to work areas. Grooming and dress must be appropriatefor the position and must not impose a safety risk/hazard to the employee orothers. An IAT Level III certification is required. The minimum of an interimSecret level DoD Security Clearance is required.
Jacobs is an Equal Opportunity Employer and employment selection decisions are based on merit, qualifications, and abilities. Jacobs does not discriminate in employment opportunities or practices on the basis of: race, color, religion, gender, national origin, age, sexual orientation, gender identity, disability, veteran status, or any other characteristic protected by country, regional, or local law.
Primary Location United States-Illinois-Scott AFB
Travel Yes, 25 % of the Time
Req ID: I2S0003TP