Information Assurance Security Officer SecureInfo
GENERAL JOB SUMMARY:
Responsible for the development and administration of information systems security procedures, compliance, auditing, security plan development, perform self-inspections, certify systems in accordance with the NISCAP and DIACAP.
ESSENTIAL JOB FUNCTIONS:
Enforce IA policy, guidance, and training requirements per AR 25-2 and identified BBPs.
Ensure implementation of IAVM dissemination, reporting, and compliance procedures.
Ensure all users meet the requisite favorable security investigations, clearances, authorization, need-to-know, and security responsibilities before granting access to the IS.
Ensure users receive initial and annual IA awareness training.
Ensure log files and audits are maintained and reviewed for all systems and that authentication (for example, password) policies are audited for compliance.
Prepare, distribute, and maintain plans, instructions, and SOPs concerning system security.
Review and evaluate the effects on security of system changes, including interfaces with other ISs and document all changes.
Ensure that all ISs within their area of responsibility are certified, accredited and reaccredited.
Maintain and document CM for IS software (including IS warning banners) and hardware.
Pre-deployment or operational IASOs will ensure system recovery processes are monitored and that security features and procedures are properly restored.
Pre-deployment or operational IASOs will maintain current software licenses and ensure security related documentation is current and accessible to properly authorized individuals.
Tenant IASOs will support and assist tenant IAMs (or the installation IAM if no tenant IAM exists).
Report security violations and incidents to the servicing RCERT in accordance with Section VIII, Incident and Intrusion Reporting.
No Supervisory Responsibilities
Experience and Skills:
KNOWLEDGE, SKILLS AND ABILITIES REQUIRED:
Understanding of nCircle, Remedy, NIPPER, SyncSort, Retina and NMAP
EDUCATION AND EXPERIENCE:
High school diploma or equivlaent.
5 + years of practical working experience.
CAP, GSLC, CISM or CISSP required.
The work environment characteristics are representative of those of an employee encounters while performing essential functions of the job in a typical office/workstation situation. Able to work sitting or standing at desk and operate a computer via standard input devices such as using a keyboard and reading information on a monitor.
THE ABOVE STATEMENTS ARE INTENDED TO DESCRIBE THE GENERAL NATURE AND LEVEL OF WORK BEING PERFORMED BY INDIVIDUALS ASSIGNED TO THIS CLASSIFICATION. THEY ARE NOT INTENDED TO BE CONSTRUED AS AN EXHAUSTIVE LIST OF ALL RESPONSIBILITIES, DUTIES AND SKILLS REQUIRED OF PERSONNEL SO CLASSIFIED.
A REVIEW OF THIS CLASSIFICATION HAS EXCLUDED THE MARGINAL FUNCTIONS OF THE CLASSIFICATION THAT ARE INCIDENTAL TO THE PERFORMANCE OF FUNDAMENTAL JOB JUTIES. ALL DUTIES AND RESPONSIBILITIES ARE ESSENTIAL JOB FUNCTIONS AND REQUIREMENTS AND ARE SUBJECT TO POSSIBLE MODIFICATION TO REASONABLY ACCOMMODATE INDIVIDUALS WITH DISABILITIES TO PERFORM THIS JOB PROFICIENTLY. THE REQUIREMENTS LISTED IN THIS DOCUMENT ARE THE MINIMUM LEVELS OF KNOWLEDGE, SKILLS OR ABILITIES
||Alexandria, VA |