What are the responsibilities and job description for the Communication Security Subject Matter Expert position at Geodesicx, Inc.?
Qualifications
Education
Education
- Associate’s degree (Engineering Technology, Math, or Science)
- HS Diploma or GED
- Active Top-Secret SCI Clerance
- 25% with valid passport
- COMSEC Related Military Occupational Specialty (MOS)
- USMC Transmission Systems Operator (MOS 0621)
- USMC Transmissions Chief (MOS 0629)
- USMC Information Security Technician (MOS 0681)
- USMC Communications Chief (MOS 0699)
- Army Radio Operator (25C)
- Army Nodal Network Systems Operator (25N)
- Army Satellite Communications Systems Operator (25S)
- Formal COMSEC Training (Military/Government/Civilian)
- USMC Security Manager Resident Course or equivalent
- Army Management Client Course or equivalent
- Five (5) years with degree/formal training
- Seven (7) years with HS/GED of practical application/experience
- Knowledge of COMSEC equipment, keying material processes, and the EKMS/KMI COMSEC program as a whole
- Must be technically competent in data privacy, protection and encryption
- Understand controlling authority roles and responsibilities as well as equipment account roles and responsibilities.
- Knowledge and experience with strategic level DoD and NSA security policies and procedures, associated classification guides pertaining to cryptographic algorithms, equipment, and COMSEC keying material.
- Understanding of encryption algorithms (e.g., Internet Protocol Security [IPSEC], Advanced Encryption Standard [AES], Generic Routing Encapsulation [GRE], Internet Key Exchange [IKE], Message Digest Algorithm [MD5], Secure Hash Algorithm [SHA], Triple Data Encryption Standard [3DES])
- Understanding of Cryptographic Key Short Title meaning, functions, and usage within integrated, inline and edge-type encryption devices/components.
- Familiar with EKMS/KMI COMSEC Documentation language with the ability to effectively articulate the information when required.
- Knowledge of cyber threats/vulnerabilities, cyber security principles, and risk management processes
- Collaborate with internal and external stakeholders and provide problem resolution i.e. balancing customer demands with COMSEC compliance.
- Assist the Waveforms Project Officer with EKMS/KMI COMSEC services across the Ground Radios Project to include implementing threat mitigation practices, communicating/mediate with vendors, and complete tasks that support crypto modernization transition efforts
- Train personnel in COMSEC procedures and the use of related equipment, as required.
- Provide SME support to the Waveforms Project to include providing gap analysis to identify cryptographic gaps in tactical/strategic systems and perform capability gap identification and analysis, based upon National Security Agency (NSA)-published guidance memos, detailing cryptographic equipment & algorithms that are reaching their end-of-life.
- Conduct analysis of KMI COMSEC documentation, operations, and practices within the Ground Radio Project and provide recommendations for process improvements, as needed.
- Assist with research and implementation of enterprise system-wide network solutions/capabilities/enhancements to support customer business/mission goals and objectives
- Provide analysis/data to support capability gaps and identified vulnerability assessments to include inputs that address the needs for (inline/edge/integrated) encryption devices transitioning to new processes and/or algorithms.
- Coordinate with COMSEC material controlling authorities, COMSEC account holders/managers, and individual users of cryptographic keying material to determine if short titles are properly being implemented into authorized communication architectures.
- Evaluate and report on new/emerging network/communication technologies to enhance capacity, performance and reliability of the network
- Evaluate and recommend changes and/or technology upgrades to address performance, standardization and industry best practices
- Conduct analysis and provide inputs regarding outreach, education, training, and awareness of new technologies and activities pertaining to cryptographic modernization practices, short titles changes, algorithm updates, and COMSEC capabilities.
