Sr. Information Security Specialist (Cyber Security Manager)

 

 

 

Position Title:

Sr. Information Security Specialist (Cyber Security Manager)

Location:

South Korea

Status:

Full Time

FLSA Category:

Exempt

 

We are actively seeking an experienced and highly motivated Sr. Information Security Specialist (Cyber Security Manager) to join our team. The position requires an understanding of security related system controls and an understanding of the various Government security policies including NIST SP 800-53A and DoD 8570. Under general direction, performs and leads support of Certification and Accreditation (C&A) or other IA/CND Compliance and Auditing processes and inspections for all enterprise systems and networks; ensures validity and accuracy review of all associated documentation.  Leads and performs compliance reviews of computer security plans, performs risk assessments, and validates and performs security test evaluations and audits.  Analyzes and defines security requirements for information protection for enterprise systems and networks.  Assists in the development of security policies.  Analyzes the sensitivity of information and performs vulnerability and risk assessments on the basis of defined sensitivity and information flow.  Professionally certified as Technical Level III as defined by DODI 8570 is a requirement.

 

Responsibilities

• Oversee IAVM, ESS (HBSS), ACAS, Firewall ACLs, CDS, RMF, and ISSO services performed by the cybersecurity team.
• Provide vulnerability assessment support, to include risk analysis of vulnerabilities, threats, and the impact of losing systems' capabilities on the mission objective; recommend decisions to implement security countermeasures or mitigate risk; implement approved countermeasures; and perform periodic reviews
• Utilize DOD applications and tools, such as Enterprise Mission Assurance Support Service (eMASS), to record such RMF activities as control implementation of all applicable Security Controls, as identified via information system security categorization IAW NIST SP 800-53 and CNSSI 1253. Security controls are broken down into individual, measurable, statements called “assessment procedures” or “Control Correlation Indicators” IAW DoDI 8510.01.
• Support the Government Capability Manager/Information System Owner (ISO) in ensuring that the information systems are configured IAW DISA STIGs, applicable patches, and other cybersecurity requirements.
• Collect required artifacts for review and provide recommendations for Assess Only Packet or Certificate of Networthiness (CoN) requests for all installation activities.
• Monitor and report Approval to Connect (ATC) and Authority to Operate (ATO) expiration dates quarterly, ensuring authorization milestones meet all DOD published regulations and policies to avoid disconnection
• Operate and maintain a Defense in Depth for the network and/or enclaves within the network IAW all DOD published regulations and policies.
• Other duties as assigned

 

Desired Skills

 

• Must have at least ten (10) years in Computer Network Defense (CND), or ten (10) years of experience in Information Assurance (IA) and Cyber Security
• Ability to organize, prioritize and meet deadlines
• Capable of conveying complex information in a simplistic manner
• Strong critical thinking and problem solving skills
• Strong self-starter requiring minimal supervision
• Able to take proactive measures to prevent problems rather than reactive by nature
• Strong verbal and written communication to effectively express concepts, plans, and proposals

 

Education and Certifications

• Bachelor’s degree in computer science, information technology, or another related field or at least 24 semester hours in a combination of computer science or information technology, mathematics, probability, statistics, mathematical logic, science, operations, research, or subject-matter courses requiring substantial competence in college-level mathematics or statistics.
• Must possess IAM I certifications IAW DoD 8570.01-M and BBP 05-PR-M- 0002 - GSLC, CISM or CISSP certifications
• Must possess and maintain an IAM - III level certification IAW AR 25-2

 

Clearance

• US Citizenship is required.
• Active US Government Top Secret SCI security clearance required.

 

Compensation

• Compensation is competitive and is commensurate with experience.
• All qualified applicants will receive consideration for employment without regard to race, color, religion, sex or national origin.
• Tribalco is an equal opportunity employer.

 

About Our Company:
 Tribalco is a global systems integrator providing C5ISR and tactical survival, rescue, and safety systems to military, federal civilian, and commercial customers around the world. Since 2004, Tribalco has delivered and supported innovative technologies that protect our nation from evolving cyber threats and improve the safety and survivability of our armed forces and critical infrastructure. Tribalco is a CMMI® Level 3 appraised organization and ISO 9001:2015 certified enterprise. As a named NSA CSfC Trusted Integrator, Tribalco is at the forefront of technology advancement in engineering and deploying NSA compliant solutions that enable customers to securely access and share classified data across commercial networks, often in extremely challenging environments. Tribalco is headquartered in Maryland and maintains offices in Florida, California, South Korea, Germany, Hawaii, Japan, the Middle East, and Africa. For additional information, please visit www.tribalco.com.