Personnel Cybersecurity III

Responsibilities include:

• Ensure personnel performing cybersecurity activities obtain, and remain current with, technical and/or management certifications to ensure compliance as directed by DoD 8140 and outlined in DoD 8570.01-M, Appendix3, Table 2, AFMAN 33-285 and as stipulated in Section H, Clause H101 of the overarching Application Services RFP.
• Support the system/application authorization and accreditation (A&A) effort, to include assessing and guiding the quality and completeness of A&A activities, tasks, and resulting artifacts mandated by governing DoD and Air Force policies (i.e., Risk Management Framework (RMF).
• Recommend policies and procedures to ensure the reliability of and accessibility to information systems and to prevent and defend against unauthorized access to systems, networks, and data.
• Conduct risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs.
• Promote awareness of security issues among management and ensuring sound security principles are reflected in organizations’ visions and goals.
• Conduct systems security evaluations, audits, and reviews.
• Recommend systems security contingency plans and disaster recovery procedures.
• Recommend and implement programs to ensure that systems, network, and data users are aware of, understand, and adhere to systems security policies and procedures.
• Participate in network and systems design to ensure implementation of appropriate systems security policies.
• Facilitate the gathering, analysis, and preservation of evidence used in the prosecution of computer crimes.
• Assess security events to determine impact and implementing corrective actions.
• Ensure the rigorous application of information security/cybersecurity policies, principles, and practices in the delivery of all IT services.
• Perform the Information System Security Engineer (ISSE) duties in an Information Assurance Workforce System Architecture and Engineering (IASAE) position as outlined in AFI 33-200, AFI 33-210 and AFMAN 33-285 for assigned systems. 
• Perform the Information System Security Manager (ISSM) duties as outlined in DoDI 8510.01 for assigned systems/applications.
• Perform the Information System Security Officer (ISSO) duties as outlined in DoDI 8510.01 for assigned systems/applications.
•  Other duties as assigned

Qualifications/ Technical Experience Requirements:

• Must Be U.S. Citizen
• Active TS required
• Bachelor’s Degree in Cybersecurity, Computer Science, Computer Engineering, or related field, or equivalent experience
• Minimum 3+ years of experience implementing Risk Management Framework (RMF)
• Experience working with Agile teams is a plus
• Ability to Integrate with other organizations/teams
• Ability to develop a highly effective working relationship with the customer
• Applicable DoD 8570.01 compliant certification
• CISSP certification