What are the responsibilities and job description for the LEAD INFORMATION TECHNOLOGY SPECIALIST (INFOSEC/POLICY) position at NAVY EXCHANGE SERVICE COMMAND (NEXCOM)?
Incumbents of this position must be a U. S. citizen.
Job Summary
This position will be designated, in writing, as an Information Assurance Manager (IAM) in accordance with SECNAV M-5239.2. The incumbent provides technical expertise facilitating both application of established IA policies, best practices and interpretation of NEXCOM, DoN and DoD policy.
Job Description
The in cumbent represents NEXCOM as the Information Assurance Manager in all matters related to IA programs, policies and direction. The work of this position involves coordinating and integrating higher level (CJCSD, DoD, DoN, NETWARCOM) policies, directives and requirements and understanding the technical aspects of the computer security discipline with administrative matters such as, Department of Defense Information Assurance Certification and Accreditation Program (DIACAP) and risk management.
SECNAV M-5239.2, DoN, Information Assurance (IA) Workforce Manual requires incumbents of this position to possess, and maintain current, one of the following Certifications: GIAC Security Leadership Certification (GSLC), Certified Information Security Manager (CISM), or Certified Information Systems Security Professional (CISSP)
NEXCOM preferred certification is: GSLC Candidates without the required certification may be placed into this job, but must obtain the required certification within 6 months of appointment; failure to obtain this requirement will result in termination of employment.
This position is designated IT-1 (Critical - Sensitive) in accordance with SECNAV M-5510.30 and will require a favorable Single Scope Background Investigation (SSBI).
Candidates must be eligible for and obtain a Top Secret Clearance, within 6 months of appointment. Failure to obtain will result in termination.
The incumbent of this position is required to annually file a Standard Form 278 - Executive Branch Personnel Public Financial Disclosure Report.
Primary Location
United States-Virginia-Virginia Beach
Organization
NEXCOMHQ
Job
Security
Schedule
Full-Time (35 hours)
Unposting Date
Feb 8, 2025, 1:59:00 PM
Experience Consisting Of The Following
GENERAL EXPERIENCE: 3 years experience in administrative, technical or investigative work which demonstrated the ability and aptitudes required to perform technical, managerial or analytical work involving management information systems.
OR
SUBSTITUTION OF EXPERIENCE FOR EDUCATION: One year of related academic study above the high school level may be substituted for 9 months of experience up to a maximum of a 4 year bachelor's degree in a business/information systems discipline for 3 years of general experience.
AND
SPECIALIZED EXPERIENCE: Minimum of 5 years progressive experience in the following: Information Systems Security Policies and Procedures development; Information Technology hardware/software analysis experience.
Candidates must be U.S Citizens eligible for and able to obtain a Top Secret Clearance, within 6 months of appointment. Failure to obtain will result in termination.
SECNAV M-5239.2, DoN, Information Assurance (IA) Workforce Manual requires that all incumbents to this position possess, and maintain current, one of the following Certifications: GIAC Security Leadership Certification (GSLC), Certified Information Security Manager (CISM), or Certified Information Systems Security Professional (CISSP).
Candidates without the required certification may be placed into this job, but must obtain the required certification within 6 months of appointment; failure to obtain this requirement will result in termination of employment.
This position is designated IT-1 (Critical - Sensitive) in accordance with SECNAV M-5510.30 and will require a favorable Single Scope Background Investigation (SSBI).
Candidates must be eligible for and obtain a Top Secret Clearance, within 6 months of appointment. Failure to obtain will result in termination.
Job Summary
This position will be designated, in writing, as an Information Assurance Manager (IAM) in accordance with SECNAV M-5239.2. The incumbent provides technical expertise facilitating both application of established IA policies, best practices and interpretation of NEXCOM, DoN and DoD policy.
Job Description
The in cumbent represents NEXCOM as the Information Assurance Manager in all matters related to IA programs, policies and direction. The work of this position involves coordinating and integrating higher level (CJCSD, DoD, DoN, NETWARCOM) policies, directives and requirements and understanding the technical aspects of the computer security discipline with administrative matters such as, Department of Defense Information Assurance Certification and Accreditation Program (DIACAP) and risk management.
- Reports to and takes direction from the Director, Information Security.
- Provides technical and team leadership within the IA team.
- Prioritizes assignments, coordinates workload, and communicates to team.
- Develop, implement and enforce policies and procedures that reflect the legislative intent of applicable laws and regulations for the infrastructure.
- Prepare, distribute, and maintain plans, instructions, guidance, and standard operating procedures concerning the security of network operations.
- Develop infrastructure security requirements specific to an Information Technology (IT) acquisition for inclusion in procurement documents.
- Recommend resource allocations required to securely operate and maintain an organization's infrastructure security requirements.
- Develop security requirements for hardware, software, and services acquisitions specific to the infrastructure security programs.
- Provides leadership and direction to IT personnel by ensuring that IA security awareness, basics, literacy, and training are provided to operations personnel commensurate with their responsibilities.
- Ensure the IA program and IA-enabled software, hardware, and firmware comply with appropriate security configuration guidelines.
- Gather and preserve evidence used in the prosecution of computer crimes.
- Evaluate the presence and adequacy of security measures proposed or provided in response to requirements contained in acquisition documents.
- Review IT Project plans to ensure IT security is fully addressed and project complies with security policies.
- Performs internal reviews on IT systems to ensure compliancy with IT Security policies and procedures.
- Ensure that network recovery processes are monitored and that Information Assurance features and procedures are properly restored.
- Ensure Disaster Recovery and Contingency Plans functional and tested annually.
- Monitor contract performance and review deliverables for conformance with contract requirements related to network security and privacy laws.
- Develop and implement programs to ensure that systems, network, and data users are aware, understand, and follow network IA policies and procedures.
- Responsible for preparation of IA certification and accreditation documentation.
- Ensure that compliance monitoring occurs, and review results of such monitoring across the infrastructure.
- Serves as the focal point for external IT Audits, Inspections and reviews.
- Ensure/implement the rigorous application of Information Security/Information Assurance policies, principles, and practices in the delivery of Systems, Applications and/or Services (Hardware & Software).
- Perform other related duties as assigned
SECNAV M-5239.2, DoN, Information Assurance (IA) Workforce Manual requires incumbents of this position to possess, and maintain current, one of the following Certifications: GIAC Security Leadership Certification (GSLC), Certified Information Security Manager (CISM), or Certified Information Systems Security Professional (CISSP)
NEXCOM preferred certification is: GSLC Candidates without the required certification may be placed into this job, but must obtain the required certification within 6 months of appointment; failure to obtain this requirement will result in termination of employment.
This position is designated IT-1 (Critical - Sensitive) in accordance with SECNAV M-5510.30 and will require a favorable Single Scope Background Investigation (SSBI).
Candidates must be eligible for and obtain a Top Secret Clearance, within 6 months of appointment. Failure to obtain will result in termination.
The incumbent of this position is required to annually file a Standard Form 278 - Executive Branch Personnel Public Financial Disclosure Report.
Primary Location
United States-Virginia-Virginia Beach
Organization
NEXCOMHQ
Job
Security
Schedule
Full-Time (35 hours)
Unposting Date
Feb 8, 2025, 1:59:00 PM
Experience Consisting Of The Following
GENERAL EXPERIENCE: 3 years experience in administrative, technical or investigative work which demonstrated the ability and aptitudes required to perform technical, managerial or analytical work involving management information systems.
OR
SUBSTITUTION OF EXPERIENCE FOR EDUCATION: One year of related academic study above the high school level may be substituted for 9 months of experience up to a maximum of a 4 year bachelor's degree in a business/information systems discipline for 3 years of general experience.
AND
SPECIALIZED EXPERIENCE: Minimum of 5 years progressive experience in the following: Information Systems Security Policies and Procedures development; Information Technology hardware/software analysis experience.
Candidates must be U.S Citizens eligible for and able to obtain a Top Secret Clearance, within 6 months of appointment. Failure to obtain will result in termination.
SECNAV M-5239.2, DoN, Information Assurance (IA) Workforce Manual requires that all incumbents to this position possess, and maintain current, one of the following Certifications: GIAC Security Leadership Certification (GSLC), Certified Information Security Manager (CISM), or Certified Information Systems Security Professional (CISSP).
Candidates without the required certification may be placed into this job, but must obtain the required certification within 6 months of appointment; failure to obtain this requirement will result in termination of employment.
This position is designated IT-1 (Critical - Sensitive) in accordance with SECNAV M-5510.30 and will require a favorable Single Scope Background Investigation (SSBI).
Candidates must be eligible for and obtain a Top Secret Clearance, within 6 months of appointment. Failure to obtain will result in termination.
