What are the responsibilities and job description for the Cybersecurity III - Security Control Assessor position at Astrion?
Oasis Systems is looking for Cybersecurity III – Security Control Assessor Representatives - to join our team supporting the US Air Force HI EPASS Contract. The SCAR members can be located in one of 3 locations: Dayton, OH; Montgomery, AL; or San Antonio, TX
LOCATION: Dayton, OH; Montgomery, AL; San Antonio, TX
JOB STATUS: Full Time
TRAVEL: Minimal
REQUIRED QUALIFICATIONS (Education, Certifications, Experience, Skills)
SECURITY CLEARANCE: Secret
EDUCATION: MS or BS MA/MS in Information Systems, Cybersecurity or equivalent
CERTIFICATIONS: One of the following certifications is required:
- CISSP
- CASP
- CISM
- Or other equivalent Certification
EXPERIENCE LEVEL: 12-15 years of experience with degree; 20 years of related experience without degree
OTHER QUALIFICATIONS/SKILLS:
- At least 5 years of Information Assurance/Cybersecurity experience
- Ability to apply knowledge of Information Assurance policy, procedures, and workforce structure to develop, implement, and maintain a secure network environment.
RESPONSIBILITIES:
The SCAR Team members will do the following:
- Ensure that system and application policies and procedures for the network are followed.
- Review applications and systems plans, instructions, guidance, and standard operating procedures for the security of network systems operations.
- Participate in the Information System Assessment Process (SAR).
- Assess security requirements for hardware, software and services acquisitions specific to network environment/system cybersecurity programs.
- Ensure that cybersecurity-enabled software, hardware and firmware comply with appropriate network system security configuration guidelines, policies and procedures.
- Review cybersecurity plans for the network system.
- Test and validate controls.
- Use eMASS to review controls.
- Review Plan of Actions and Milestones (POA&M) entries.
- Ensure that cybersecurity inspections, tests and reviews are coordinated for the network system.
- Review the selected security safeguards to determine that security concerns identified in the approved plan have been fully addressed.
- Provide leadership and direction to network system personnel by ensuring that cybersecurity awareness, basics, literacy and training are provided.
- Advice the AO, AODR, and application/system owner of any risks or vulnerabilities discovered.
- Prepare Security Assessment Reports
Who We Are
Oasis Systems is a premier provider of customer-driven, cost-effective and quality Engineering Services; Enterprise Systems and Applications; Human Factors Engineering; Information Technology and Cyber Security; Professional Services; and Specialized Engineering Solutions to the Department of Defense, FAA, NRC and other federal agencies.
We strive to be an exciting and welcoming company that attracts, develops, motivates and retains the most talented, skilled and dedicated people in the industry; where they are encouraged to achieve personal excellence, purpose, and their full potential and career aspirations; while supporting mission-critical national security technologies and programs.
Oasis Systems is an equal opportunity employer and does not discriminate in hiring or employment on the basis of any legally protected characteristic including, but not limited to, race, color, religion, national origin, marital status, gender, sexual orientation, ancestry, age, medical condition, military veteran status or on the basis of physical handicap which, with reasonable accommodation, render the application to satisfactorily perform the job available.
