Cybersecurity, Senior (ISSM)

Torch Technologies has an exciting opportunity for a Cybersecurity Engineer, Senior (ISSM) located Kettering, OH (Dayton/WPAFB area) to support three of our EPASS GB contract. As part of the AFLCMC/GB Business and Enterprise Systems Directorate (BES). The Logistics Management Data Bank (LMDB) is comprised of two sub-systems: Automated Budget Compilation System (ABCS) and Logistics Reassignment (LR). ABCS collects, organizes and integrates data from AF legacy systems to provide Financial Management reports for the Secretary of the AF (SAF). ABCS provides a system to adjust and track spares requirements regarding buy and repair budgets.

As an ISSM your duties will include the following, but are not limited to:

• Develops, tests, and operates firewalls, intrusion detection systems, enterprise anti-virus systems and software deployment tools.
• Safeguards the network against unauthorized infiltration, modification, destruction or disclosure.
• Researches, evaluates, tests, recommends, communicates and implements new security software or devices.
• Implements, enforces, communicates and develops security policies or plans for data, software applications, hardware, and telecommunications.
• Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.
• Provides recommendations to clients on information assurance engineering standards, implementation dependencies, and changing information assurance related technologies
• Provides the PMO/Capability Development Manager (CDM) cybersecurity support per DoDI 8500.01 to include assessing and continuously monitoring cybersecurity risk ensuring that legacy and new capabilities adhere to enterprise standards such as Risk Management Framework (RMF), Cybersecurity Framework (CSF), and National Institute of Standards and Technology (NIST) and per Authorization Official's Information System's Continuous Monitoring (ISCM) strategy.
• Ensures the integration of cybersecurity into, and throughout the lifecycle of the IT, on behalf of the AO and in accordance with DoDI 8510.01 for the following:
• Completes and maintains required cybersecurity certification IAW AFMAN 17-1303;
• Ensures cybersecurity-related events or configuration changes that impact AF IT authorization or adversely impact the security posture are formally reported to the AO and other affected parties, such as IOs, stewards, and AOs of interconnected IT;
• Ensures all ISSOs and privileged users receive necessary technical training and obtain cybersecurity certification IAW AFMAN 17-1301, Computer Security (COMPUSEC), AFMAN 17-1303, and maintain proper clearances IAW DoDI 8500.01; and,
• Ensures the AF IT is acquired, documented, operated, used, maintained, and disposed of properly IAW DoDI 5000.02 and DoDI 8510.01.

• U.S. Citizenship
• Bachelor's Degreeand 10years of experience in the respective technical/professional discipline being performed, five of which must be in the DoD OR
• 15 years of directly related experience with proper certifications as described in the PWS labor category performance requirements, eight of which must be in the DoD.
• Candidate must possess and be able to maintain a T3/Secret Clearance
• Must have the knowledge, experience and recognized ability to be considered highly skilled in their technical/professional field.
• Must possess the ability to perform tasks independently and oversee the efforts of junior and journeyman contractor personnel within the technical/professional discipline. Demonstrates advanced knowledge of their technical/professional discipline as well as possess a comprehensive understanding and ability to apply associated standards, procedures and practices in their area of expertise (Program Office, Enterprise and Staff Level Support interface).
• All Cybersecurity professionals should possess experience providing guidance on the following to include, but not limited to:
  • Access control.
  • Configuration management.
  • System and communications protection.
  • Contingency planning.
  • Incident handling.
  • System and information integrity.
  • Security and privacy training and awareness; and,
  • Software development activities, software and tools related to Cybersecurity.
• Experience performing cybersecurity duties as outlined in DoDI 8500.01, AFI 17-130, and AFI 17-1301 for assigned AF IT.
• Experience validating, evaluating and analyzing finding results and developer adjudications using automated testing tools, e.g., Fortify, Checkmarx, SonarQube, and AppScan.
• Experience utilizing DoD tracking systems to input/document cybersecurity deficiencies, vulnerabilities, and change requests in the appropriate tracking system for each program, e.g., Jira, HP ALM, and eMASS.
• Experience with conducting information security continuous monitoring (ISCM) by maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions IAW approved ISCM strategy.
• At a minimum, the successful candidate will meet the requirements for and maintain an IAM Level III Cybersecurity certification by possessing at least one of the following certifications as directed by DoD 8140 and outlined in DoD 8570.01 -M, Appendix3, Table 2,2 AFMAN 17-1303:
• ISACA CISM
• (ISC)2 CISSP
• GIAC GSLC

Preferred Qualifications:

• Certified SCRUM Master
• Other Agile Certifications
• Working knowledge of the Agile Development methodology
• Experience using any, or all, of the following tools:
  • CheckMarx
  • SonarQube
  • Jira
  • Confluence
  • Mavin
  • Jenkins
  • Bitbucket

Schedule:40 Hrs/week

Work Location: Kettering, OH

Travel:0-10%

Relocation Assistance Available:No

Position Contingent Upon Award of Contract:No