Cybersecurity & Infrastructure Support Spec

Responsibilities

MS&A ENVIRONMENT SUPPORT

• Provide daily operation support such as data transfer, equipment setup, checkout/adjustment, and software/hardware installation/maintain.
• Integrate possibly disparate modeling and simulation tools into the MS&A environment to support compatible operation in standalone or integrated modes with consistent scenarios.
• Maintain the MS&A environment (classified/unclassified).
• Work in this area can range from implementation of the networks to the activation of discrete data circuits using existing military or commercial communication systems.
• Typical hardware for the MS&A network include optical, Asynchronous Transfer Mode, Ethernet, Synchronous Optical Networks, digital and analog devices, servers, routers, bridges, hubs, concentrators, switches, and firewalls.
• The contractor shall be required to design and install MS&A network systems in compliance with COMSEC, Emission Security, and other IA guidelines specific to each system installed.
• Ensure disaster recovery / continuity of operations are addressed as part of the system architecture process and all issues are coordinated.
• Install new hardware and software upgrades and ensure license renewals and annual maintenances are kept current. Provide enterprise and off-site support to ensure the continuous availability of MS&A systems, manage and operate a configuration management program and ensure compliance with applicable directives, policies, and guidelines and generally accepted sound configuration management standards and practices.
• Design, test, and implement a robust, reliable, and secure information technology environment ensuring the availability, integrity, and confidentiality of data.

MS&A ENVIRONMENT HELP DESK SUPPORT

• Provide help desk support for MS&A IT systems.
• The help desk shall be the focal point for all customer contact including problem resolution, service resolution, service requests and general inquiries.
• Currently both contractor and Government personnel support the help desk.
• Provide the services during the core hours (0600 - 1800 Monday through Friday except federal holidays).
• On occasion, the Contractor may be requested to provide the services outside of core hours. (CDRLS: 002, 004)
• Manage user accounts for the ZA MS&A networks. Account management including creating, deleting, and modifying user accounts and setting user access privileges when formally requested by the government.
• Provide daily operation support such as data transfer, equipment setup, checkout/adjustment, and software/hardware installation/maintain.

CYBERSECURITY SUPPORT

• Complete annual reviews, updates, certifies and reaccreditations for all classified and unclassified network systems, stand-alone systems and Video Teleconferencing (VTC) systems, and mission systems.
• Keep up-to-date at all times the ZA VTCs, ZA MS&A networks - SDSL, UDSL, ZADISNet, TS-DSL, ZA DREN, ZA SDREN, and mission system project (System Security Authorization Agreement and/or DoD IA Certification, System Security Plan, DoD IA Certification and Accreditation Process, and RMF.
• Register all ZA VTCs, ZA Mission /MS&A Information Systems in the Enterprise Information Technology Data Repository/Enterprise Mission Assurance Support Service and perform updates as required.
• Assist the government official to schedule and conduct all Staff Assistance Visits annually or as required in ZA and all associated facilities.
• The Contractor shall also conduct the re-inspections of units with findings during the initial Staff Assistance Visit in order to close out the inspection process.
• Conduct an annual review of the applicable IA controls established for the SMC/ZA networks/systems and perform validation procedures on those controls IAW AFI 17-130, DoDI 8500.01, DoDI 8510.01 and the Federal Information Security Management Act reporting requirements. Deviations from the certification & accreditation posture shall be reported to the COR as soon as practicable, forwarded to the responsible office for action and documented in the monthly status report (subject to security and privacy restrictions).
• Conduct research and analysis to assess ZA IA security posture and impact of new systems, devices, and programs mandated by AF/AFSPC/USSF/Air Force Network Operations Center/DoD/ Defense Intelligence Agency (DIA)/Air Intelligence Agency (AIA).
• Conduct follow-up Internet Security Scan/Retina Scans to ensure vulnerabilities identified are mitigated.
• The Contractor will work with Integrated Network Operations and Security Center (I-NOSC) West (561 NOS)/DIA to document and/or remove negative findings.
• The Contractor will conduct initial scans for software and hardware devices pending network connections that are pending DAA Approval.
• Monitor and maintain the Vulnerability Management System by entering all closed Technical Compliance Network Orders into the Defense Information Systems Agency (DISA) database and closing out SCAP, and ACAS scan findings as identified by DIA, AIA, DISA and I-NOSC West.
• Track progress and provide status on all Classified Message Incident activities IAW established AF guidelines.
• Conduct research of regulatory requirements and assist Government in creating local operating instructions, policy memos, and supplements to AFIs.

Skills and Qualifications:

• Experience:
• At least 3 years of combined industry, federal government experience, or SETA/FFRDC supporting federal government acquisition with a focus on MS&A, Digital Engineering or programming.
• Must be well versed in programming languages and able perform all duties independently.

• Skills:
• Knowledge and use of C#, coding programs, CAMEO, Python, SysML, and/or Sparx Enterprise Architect (EA)

EDUCATION/CERTIFICATION:

• Bachelor's degree in related field such as Computer Science, Computer Engineer, or Cyber Security (substitution allowed)
• 5 years relevant experience in Information Assurance functions including but not limited to:
• DoD Certification & Accreditation process, RMF process, Portfolio Management & Information Technology Investment Portfolio Suite (ITIPS), EMASS, Xacta, monitoring and maintaining the Vulnerability Management System, CMI activities.
• Must have Sec + certification to meet 8570 compliance.
• TS/SCI required (may start with S clearance, must be able to obtain a Ts/SCI clearance)

Preferred:

CISSP certification

Travel: Yes-25%

Security Clearance: U.S. Citizen, TS/SCI eligible

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran