Information Assurance Lead

Overview

The Plans and Programs functional group is focused on CAOC wide programs and processes. This area is responsible for gathering and managing end user requirements for communications and IT capabilities, working with the CM team and technical SMEs for review and action, along with the support of all plan management activities. This includes assisting the Functional Area Agreements Coordinators for drafting, reviewing, processing, and maintaining MOUs, MOAs, and SLAs. Works with the SMEs from the other functional areas to review changes and provides information to other teams on approved changes. This includes ensuring all changes follow the Authorized Service Interruption (ASI) Coordination Process, ensuring identification, scheduling, coordination, and approval based on SPIN-C and DoD, USAF, USAFCENT directives. Cybersecurity/ IA and Cyber Mission Defense collectively provide the procedures and processes, derived from AFCENT ACCC IA standards and core services, to ensure the overall cybersecurity of the network and critical AFCENT operational data.

As a dynamic systems integrator, SMS offers proven solutions in engineering, operations, cybersecurity, and digital transformation. With expertise in modernizing and optimizing legacy infrastructure and systems, ensuring operational efficiency, and designing, implementing, and managing secure environments, SMS supports business and mission goals with proficiency, quality, and integrity.

SMS has been serving the advanced information technology needs of the federal government since 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions for more than 45 years. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. For additional information on SMS, visit www.sms.com.

Submit your resume today!

Responsibilities

• Support management, administration and implementation of cybersecurity Information Assurance programs.
• Serve as the information security subject matter expert.
• Implement processes and controls in support of cybersecurity programs to ensure compliance with DoD, USAF and USAFCENT directives and policy.
• Plan, implement, upgrade, and monitor security measures for the protection of communications and IT systems and information.
• Draft, review and coordinate local IA policies, procedures and operating instructions, and provide recommendations for revisions.
• Identify and manage cybersecurity risks and implement controls to ensure the security and delivery of mission critical services.
• Monitor and detect cybersecurity events and implement appropriate response and recovery actions.
• Manage cybersecurity incident management handling, response, escalation and reporting.
• Maintain cybersecurity posture.
• Ensure all IT hardware/software products are configured IAW with Security Technical Implementation Guidance (STIG) and other relevant security configuration and implementation guidance.
• Ensure no unauthorized hardware/software is installed or used on Enterprise and AOC networks and systems.
• Utilize standard software tools to perform vulnerability scans of network equipment and software.
• Assist network, systems, and client administrators implement corrective actions.
• Develop, update, and maintain certification and accreditation documentation, including but not limited to DoD Risk Management Framework (RMF) artifacts, Plan of Action and Milestones (POA&Ms), waivers, and vulnerability mitigation plans.
• Assess the impact of changes on certification and accreditation packages.
• Process and coordinate system access authorization requests, software approval requests, firewall and proxy exemption requests/waivers, and other IA-related documents.
• Ensure IA-related documentation is current and accessible to authorized individuals.
• Research security issues affecting network/systems hardware and software.
• Ensure unit and individuals complies with IA standards and guidance.
• Promote information security awareness.
• Assist with the sensitive and/or classified hard drive and removable media tracking, sanitization and destruction.
• Assist with the operation, management and administration of unit Communications Security (COMSEC) and Emissions Security (EMSEC), and Operations Security OPSEC) programs.
• Perform technical support and O&M activities for information assurance-related technical problems or requirements.
• Attend and participate in cybersecurity and CM meetings.
• Develop and submit a Cybersecurity Monthly Status Report, IA advisories, and ad-hoc reports.

Qualifications

• Bachelor’s degree and min. 5 yrs. exp.• IAM Level 3 Certification. • Clearance: Top Secret/SCI.

SMS is a dynamic systems integrator established in 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions for more than 47 years. Our ability to hire and retain quality people in a rapidly evolving IT market is proven through our employee retention rate averaging over 3 years. At SMS, we place a high value on quality of service, customer satisfaction, and best-of-breed policies and practices, resulting in CMMI Level 3 certification and ISO registrations including 9001:2015, 20000-1:2018, and ISO/IEC 27001:2013. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. 

SMS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.