Job Description
COMSEC Custodian/ Information Security Analyst
Active TS/SCI is required to apply
Responsibilities:
- Communications Security (COMSEC) Custodians to support the Support personnel to staff the USDA NSSP Support Team.
- Personnel will serve as alternate Communications Security (COMSEC) Custodians and perform multiple COMSEC management tasks, support the operations and use of multiple classified communications conferencing devices, staff the classified computer network center daily M-F from 7:30 - 5:00pm
- Manage user classified network accounts, provide direct user support to classified communications systems users, assist with continuity communications capabilities, and support the Departments' subscriptions and testing of priority communications program.
- The COMSEC Custodian must have solid technical skills and experience for the receipt, custody, issue, safeguarding, accounting for, and, when necessary, the destruction of COMSEC material.
- The Custodian is responsible for the maintenance of up-to-date records and the submission of required accounting reports.
- This position will serve as an alternate COMSEC Custodian assisting the Government COMSEC Custodian and providing continuity of operations in the Government COMSEC Custodian's absence.
- The COMSEC Custodians shall provide a full spectrum of network infrastructure management services including implementation, technology integration, guidance for both scheduled and unscheduled maintenance, and assisting the Government to develop and document network infrastructure policies and procedures.
Duties include but are not limited to:
- Establishing and managing a comprehensive network infrastructure maintenance program for networks, systems, and services to include Key Management Infrastructure (KMI) certified, Homeland Security Data Network (HSDN), Classified Video teleconferencing Equipment (S-VTC) Operations, Secure Telephone Equipment Operator (vIPer, Iridium, S-VOIP), Microsoft Access Database Entry (office metrics, equipment tracking), Microsoft Office suite use (Teams, Outlook, Word, Excel, Access).
- Developing processes and checklists for testing and validating the operational status of network infrastructure systems and services provided to USDA NSSP.
- Developing and documenting an approved network infrastructure baseline and assist with maintaining configuration control and policy management of devices.
- Maintaining device configurations (including software) in accordance with cybersecurity Security Technical Information Guides (STIGs) and Communications Tasking Orders (CTOs).
- Developing and documenting lessons learned during troubleshooting that cover best practices, policies, and procedures on the systems/network environment related to this task.
- Performing trend analysis using historical data collected from the operational network to identify operational problems and areas for Utilizing these trend analyses to recommend network changes and improvements to the Government leads.
- Managing network IP (i.e., IPv4 and IPv6) and address space, including unicast and local multicast address assignments for supported networks.
- Managing the Voice and Video dial plan for supported
- Managing and developing implementation of DoD directed network efforts (802.1X, Comply to Connect, Zero Trust).
- Providing appropriately cleared personnel to act as a COMSEC Responsible Officer to perform the following activities:
- Add and remove COMSEC
- Manage COMSEC key
- Destroy COMSEC
- Manage COMSEC Digital Management Devices (DMDs).
- Control physical access to
- Supports the receipt, custody, issue, safeguarding, accounting for, and, when necessary, the destruction or COMSEC material
- Assists with shipping cryptographic products and key material weighing up to 50 pounds.
- Using the Distributed Information Security (INFOSEC) Accounting System (DIAS)
- Performing Field Tamper Recovery (FTR), upgrading cryptographic device firmware, and ensuring the interoperability of firmware versions between enterprise encryptors
- Knowledge of the General Dynamics TACLANE line of In-Line Network Encryptors (INE), to include the KG-175A, KG-175D and KG-175G
- Supporting the installation, deployment, use, and management of the General Dynamics GEM-X
- Supporting the High Assurance Internet Protocol Encryptor (HAIPE) Manager
- Planning and execution of Out-Of-Band-Key Transfer (OOBKT) for remote rekey of enterprise encryptors on multiple networks using GEM-X HAIPE Manager. Requires experience in Suite-A and Suite-B network environments, architecture and key material requirements
- Reading and interpreting complex network drawings and documentation as they relate to cryptographic requirements.
- Performing hands-on installation, maintenance, configuration and troubleshooting of COMSEC equipment, as required.
- Programming and operating approved key fill devices, including KIK-20 and KIK-30 and AN/CYZ-10
- Performing Over-The-Air-Transfer (OTAT) of key material to remote sites using the Utilizing General Dynamics Sectera vIPer and the L-3 Secure Terminal Equipment (STE)
- Providing training and COMSEC oversight to local and remote site personnel for the KG- 175A, KG-175D, KG-175G, KG-245X, Sectera vIPer, Sectera GSM, Sectera Wireline Terminal, STE, DTD, SDS (KIK-20) and RASKL (KIK-30)
- Providing incident response using multiple software applications, including Remedy and JIRA (U)
- Some positions may require shift work and/or an ability to work a non-standard work schedule to support the USDA mission.
Locations:
USDA Headquarters in Washington, DC. #SITEC2023
Required qualifications:
- An active TS/SCI clearance is required
- At least four years of previous hands-on experience working with COMSEC.
- COMSEC Custodian Course