ASRC Federal Cyber is seeking an Information System Security Officer at Fort Greely, Alaska.

The current job duties/responsibilities include:

• Manages major national/international infosec programs.

• Exercise strong communication and project management skills to service stakeholders in respect to system security and the RMF.

• Provide Risk Management Framework (RMF) support and expertise to System Owners ensuring they maintain an appropriate operational cybersecurity posture.

• Use your expertise to analyze and ensure the security posture of systems hosted in cloud and on premises environments.

• Maintain documentation for Risk Management Framework Assessment and Authorization (A&A) in accordance with DOJ policies.

• Assess the impacts on system modifications and technological advances.

• Review systems in order to identify potential security weaknesses, recommend improvements to amend vulnerabilities, implement changes, and document upgrades.

• Ensure appropriate security controls and measures are in place to safeguard systems, applications, networks, and data.

• Anticipate cybersecurity risks to the organization and provide recommendations to reduce and/or mitigate risk to the organization.

• Advise functional expert management staff on cybersecurity issues pertaining to specific operating systems, hardware, technology, and methodology.

• Develop policies and procedures to ensure information systems reliability and accessibility and to prevent and defend against unauthorized access to systems, networks and data; designs and implements monitoring, tracking, and reporting procedures and develops and manages short and long range plans for addressing cybersecurity needs

• Determine information security requirements by evaluating organization business strategies and requirements, researching information security standards; conducting system security and vulnerability analysis and risk assessments, assessing industry architectures/platforms and relative security benefits, and identifying architecture/platform integration issues that prevent the strongest possible security posture.

• Manage employees to include hiring, ongoing performance and separations.

• Provide proactive advisement to the customer on the security of systems and cybersecurity practices, thought leadership, and successfully complete new system ATOs.

Requirements :

• Bachelor’s degree and 5-7 years of relevant experience

• Must be able to obtain and maintain a Secret Clearance.

• Ability to pass pre-employment drug screen.

• 2+ years of experience applying the NIST Risk Management Framework to ensure the security of information systems.

• Experience using a GRC tool such as eMass, Xacta, CSAM, or similar (CSAM preferred)

• Experience managing the POA&M lifecycle and achieving new ATOs (Understand documents related to ATOs)

Preferred:

• Experience analyzing and ensuring the security posture of systems hosted in a cloud environment

• At least CompTIA Security+ce certification

• Great communication and organizational skills, preferably in the form of project management knowledge and skills

• Prior experience leading a team

ASRC Federal and its Subsidiaries are Equal Opportunity / Affirmative Action employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.