Information Assurance Manager
Leidos is currently seeking an Information Assurance Manager in support of the AFINC II contract for the highly visible 26th Network Operations Squadron (26 NOS) at Montgomery, Alabama, which provides a world-wide support mission. The 26 NOS is responsible for the intranet support of the entire Air Force network. The mission of the 26 NOS is to operate and defend the Air Force (AF) Enterprise computer network consisting of the AF Wide Area Network (WAN) routers, AF Network Increment 1 (AFNET Inc 1) Gateways, and the 26 NOS Local Area Network (LAN) assets.
The Information Assurance Officer selected for this position works on a team that manages all the Air Force network boundary AFINC systems for the program to include updates, life cycle management, IAVMs, software patches, etc.
Assist Information Assurance Team with implementing and maintaining policies and procedures.
Ensure other IT support personnel monitor all available resources that provide warnings of system vulnerabilities or ongoing attacks.
Communicates with internal and external project team members to implement solution designs and changes to the organization’s processes, hardware, software, and data.
Coordinates with personnel on system security compliance and Information System Authority to Operate /Authority to Connect (ATO/ATC).
Ensure Configuration management policies and procedures for authorizing the use of hardware/software on an IS are followed.
Coordinate Information Security Reviews, Security Inspections, and Tests Results.
Assesses system security threats/risks.
Validates system security requirements definitions and analysis.
Assists PMO with assessment and authorization process as needed.
Monitor and manage Plan of Action and Milestones (POA&M) to address vulnerabilities and compliance issues.
Tracks and validates security incidents, which requires to investigating, documenting, reporting, and providing future protective and corrective measures in response to such incidents. Ensure proper measures are taken when an incident or vulnerability is discovered.
Provide expert knowledge in Vulnerability Management and ensure systems are up-to-date and secure.
Leads briefings on system security compliance and Information System Authority to Operate / Authority to Connect (ATO/ATC) compliance, expiration and actions.
Implements the Risk Management Framework (RMF) methodology.
Populates and maintains eMASS with compelling evidence and artifacts to support system accreditation actions.
Collaborates with the Program Managers, AF Intelligence Community Information Assurance Program Managers, ISSOs and configuration managers to maintain an effective risk assessment process.
Ensures data stewardship (confidentiality, integrity, and availability) is established for each IS, and specific requirements are enforced.
Manages the day-to-day operations and administration of the Information Assurance team.
Provides leadership and guidance to team members on best practices and expectations of the government customer.
Is responsible for the overall performance of the IA shop and ensuring high quality products and services are being provided.
Manage the System Network Access Program (SNAP) and Global Information Assurance Program (GIAP).
A vast understanding of NIST 800 Series Special Publications, FIPS 199, FIPS 200, FISMA, CNSSI, and NIST Cybersecurity Framework (CSF).
Assisting with Port, Protocols, and Services Management (PPSM) processes and workflows
Technical degree, Associates or, bachelor’s degree in computer science/Information Systems, Science/Engineering/Math
Bachelor’s degree preferred from an accredited university in Information Assurance, Information Security Systems, or related fields.
At least 5 - 7 years’ experience and be able to supervise and direct the work of others and can serve as a technical team lead. Note: If individual is IAT Level III, individual must have at least 7 years of experience.
8570 IAT level III certifications required: CISSP.
Professional CE/OS Certification: CCNA or Microsoft 365 Certified: Identity and Security
Have a working knowledge of system functions, security policies, technical security safeguards, and operational security measures.
Must have substantial understanding of eMASS and NIST RMF
Strong Troubleshooting and customer service skills
Strong written and verbal communication skills.
Experience with SPLUNK and ACAS is a plus.
Knowledge of CISCO and/or PALO Alto network devices a plus.
The employee may be expected to travel approximately five (5) percent of the time to domestic and foreign customer locations.
Clearance: DoD Secret or higher
Possess refined critical thinking skills, should be a motivated self-starter, and multi-task capable
Good communication and interpersonal skills; Ability to follow policies and procedures
Ability to communicate in a clear speaking voice as well as the ability to respond clearly to questions
Aptitude to address negative situations and resolve them in a positive manner
Approach work tasks as diplomatic, adaptive to a dynamic environment, dependable and reliable
ITIL certification a plus
Splunk Core Certified User or Splunk Core Certified Power User
Pay Range:Pay Range $81,250.00 - $146,875.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Original Posting Date:01/11/2024
While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.