Information System Security Management (ISSO) with Security Clearance
Credence Management Solutions
2024-11-05 21:37:35
Hampton, Virginia, United States
Job type: fulltime
Job industry: I.T. & Communications
Job description
Responsibilities include, but are not limited to the duties listed below Specific support tasks are as follows: Shall operate in accordance with guidance directed in DODM 5105.21, ICD 704, ICO 705, and AFMN 14-103. Interface with the ACC/A2 SSO office for all matters relating to SCI materials, access, and security. Administer the SCI security program to include SCI security oversight of division SCIF. Properly account for control, transmit, transport, package, and safeguard SCI; provide for destruction of SCI by authorized means and in accordance with this Manual and DD Form 254, as appropriate. Disseminate SCI only to persons authorized access to the material and having an established need to know. Serve as the official channel for certifying and receiving SCI visitor clearances and access. Maintain the Defense Information System of Security to accurately reflect all personnel under their cognizance. Conduct or otherwise manage SCI personnel, information, physical, and technical security (e.g., TEMPEST and TSCM) actions and procedures in accordance with this manual. Provide guidance and assistance for processing SCI position and eligibility requests. Report and investigate all unauthorized disclosures of classified intelligence information in accordance applicable guidance and manuals as listed above. Maintain continuing liaison, as required, with non-SCI security officials. Shall maintain SCIF access roster. Validate clearances for non-badged visitors. Update SF Form 700, Container Combo Form, as needed, complete form for combo change, ensure Container Maintenance Record AFTO 36/Optional form 89 is maintained in the container, and ensure inspection is accomplished every 5 years minimum. Approve all new media within the SCIF, ensure there is a need for the new media, check the classification markings, ensure the new media is labeled and brought into accountability. If media is destroyed, ensure media log reflects destruction and/or transfer of media. Shall ensure no unmarked media is lying around the facility. Ensure the SCIF Badge is worn at all times by all personnel within SCIF. Will ensure all systems have "Computer Virus Reporting Procedures" posted on or next to each system. Ensure all systems are marked with "Program" Stickers. Will ensure every system has a classification/accountability label on the outside of each computer identifying the hard drive. Additionally, a duplicate label must be on the hard drive itself. The label must not cover the serial number of the drive and the serial number is part of the label. Shall ensure the computer screen banners match the overall classification of the operating system. If a system banner does not match contact the unit ISSO to have it updated immediately. Will ensure cell phones and unauthorized media are PROHIBITED within the facility. Update Alarm Access Record (As required) - Review and update with new personnel and delete everyone who no longer needs access, then email to alarm shop. Will shall ensure accountability of all your secure phones and associated secure cards. Ensure the Security Management contacts sign on the exterior and interior of facility is updated and current in cases of emergency contact. Ensure all security approval letters for your copiers and shredders are displayed above each device. Will inspect all flashing lights which indicate the presence of uncleared personnel within the facility and notify Facility Custodian if repair is needed. Perform a monthly update of all SF Form 702, Security Container Check Sheet, on main entrance door and all safes. Maintain one month. Perform monthly update and change the SF Form 701, Activity Security Checklist, used to conduct end of the day checks. Conduct monthly random entry/exit checks. Conduct quarterly alarm tests with the Law Enforcement Desk and test all sensors (door and motion) within your facility. Will conduct quarterly verification of the audible alarm on emergency exit doors. Ensure all SCIF occupants complete and maintain initial and recurring security training. Gather data, analyze compliance, and report results on the condition and progress of ACC Cybersecurity programs, security plans, POA&Ms, Assessment and Authorization (A&A) workflow tools data, patch management, Information Assurance Vulnerability Alerts (IAVA), DoD 8140 certifications, Federal Information System Modernization Act (FISMA) compliance tasks, and Authorizations to Operate (ATOs). Will interact with unit ISSOs/ISSMs and commanders to provide Cybersecurity guidance, complete assessment reports, and provide solutions to commanders on how to improve their Cybersecurity programs. Assist in developing and providing on-the-job work center training to Government, Contractor, and military personnel on various IT security tools, policies, and procedures required to protect resources and meet standards. Support cybersecurity trainers with updated information and materials for their area of responsibility or compliance with USAF, DoD, IC, and other national agency standards. Education, Requirements and Qualifications Active Top Secret security clearance with Sensitive Compartmented Information (TS/SCI) required. Over 10 years of experience and a MA/MS degree. Excellent written and verbal communication skills Working Conditions and Physical Requirements Job may require the employee to be: In a stationary position 50% of the time. Able to ascend/descend stairs as required. Able to move equipment not to exceed 25 lbs as needed. Availability to travel CONUS/OCONUS if required.