Cybersecurity ISSO (Journeyman)

Torch Technologies has an exciting opportunity for a Cybersecurity Engineer (ISSO) located Kettering, OH (Dayton/WPAFB area) to support our EPASS GB contract.As part of the AFLCMC/GB Business and Enterprise Systems Directorate (BES), the Depot Maintenance Systems Integration (DMSI) is six software applications integrated by a consolidated database. DMSI manages programmed and un-programmed repair, upgrade, or modification of major weapon systems. It identifies materials for pre-positioning and initiates cost-control measures for material usage. It establishes and maintains labor standards for planning and pricing. It supports depot capacity simulations to determine capability for surge planning and normal operation tempos.

As a Cybersecurity Engineer (ISSO) your duties will include the following, but are not limited to:

• Responsible for ensuring the appropriate operational securityposture is maintained for the assigned IT.
• Implements and enforce all AF cybersecurity policies, procedures, and countermeasures.
• Completes and maintains required cybersecurity certification IAW AFMAN 17-1303.
• Ensures all users have the requisite security clearances and need-to-know, complete annualcybersecurity training, and are aware of their responsibilities before being granted access to the IT according toAFMAN 17-1301.
• Maintains all authorized user access control documentation IAW the applicable AF Records Information Management System.* Ensures software, hardware, and firmware complies with appropriate security configuration guidelines, e.g., security technical implementation guides/security requirement guides.
• Ensures proper configuration management procedures are followed prior to implementation and contingent upon necessary approval.
• Coordinate changes or modifications with the system-level ISSM, SCA, and/or the Wing Cybersecurity office.
• Initiates protective or corrective measures, in coordination with the ISSM, when a security incident or vulnerability is discovered.
• Reports security incidents or vulnerabilities to the system-level ISSM and wing cybersecurity office according to AFI 17-203, Cyber Incident Handling;
• Initiates exceptions, deviations, or waivers to cybersecurity requirements.

• U.S. Citizenship
• Bachelor's or Master's Degree in a related field and at least three years of experience in the respective technical/professional discipline being performed, three of which must be in the DoD
• OR, seven years of directly related experience with proper certifications, five of which must be in the DoD.
• Candidate must possess and be able to maintain a T3/Secret Clearance
• Experience providing guidance on the following to include, but not limited to: Access Control, Configuration Management, System & Communications Protection, Contingency Planning, Incident Handling, System & Information Integrity, Security & Privacy Training & Awareness.
• Experience in Software development activities, software and tools related to Cybersecurity.
• Experience performing cybersecurity duties as outlined in DoDI 8500.01, AFI 17-130, and AFI 17-1301 for assigned AF IT.
• Experience validating, evaluating and analyzing finding results and developer adjudications using automated testing tools, e.g., Fortify, Checkmarx, SonarQube, and AppScan.
• Experience utilizing DoD tracking systems to input/document cybersecurity deficiencies, vulnerabilities, and change requests in the appropriate tracking system for each program, e.g., Jira, HP ALM, and eMASS.
• Experience with conducting information security continuous monitoring (ISCM) by maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions IAW approved ISCM strategy.
• At a minimum, the successful candidate will meet the requirements for and maintain a personnel certification associated with the DCWF ISSO work role (722) at an intermediate (journeyman) proficiency level as outlined in DoDI 8510.01, AFMAN 17-1305 and AFI 17-101 for assigned systems/applications:
• ISC)2 CGRC/CAP
• CompTIA CASP+
• (ISC)2 CCSP
• CompTIA Cloud+
• (ISC)2 SSCP
• CompTIA Security+ CE
• (GIAC) GSEC

Schedule:(M-F; 8-5)

Work Location: Kettering, OH

Travel:<10%

Relocation Assistance Available: No

Position Contingent Upon Award of Contract: No