ASSISTANT IT SUPPORT LEAD
Location: Fayetteville, North Carolina
Worksite: Special Operations Mission Training Center, Fort Bragg
Employment Type: Full-time
Security Clearance: Active Secret clearance required
Position Summary
The Assistant IT Support Lead supports SOMTC cybersecurity and information-system security operations. This position performs Information Systems Security Officer functions, manages DoD Risk Management Framework packages in eMASS, maintains authorization documentation, analyzes system vulnerabilities, and helps ensure compliance with applicable DoD and federal cybersecurity requirements.
Key Responsibilities
- Support Information Systems Security Officer activities.
- Manage DoD Risk Management Framework authorization packages within the Enterprise Mission Assurance Support Service application.
- Develop, update, and maintain RMF documentation and artifacts.
- Develop and maintain System Security Plans.
- Develop, update, and track Plans of Action and Milestones.
- Conduct vulnerability scans using ACAS and Nessus.
- Analyze vulnerability-scan results and support remediation activities.
- Support the design, implementation, assessment, and continuous monitoring of security controls.
- Assess cybersecurity risks and develop or recommend mitigation measures.
- Support cybersecurity incident-response and handling activities.
- Support security-system design and implementation.
- Maintain security compliance for Windows, Linux, network, and related information systems.
- Support vulnerability assessments and penetration-testing activities.
- Ensure compliance with applicable cybersecurity laws, regulations, policies, and standards.
- Support network-security architecture, protocols, technologies, and system-security implementation.
Required Education
- Bachelor’s degree in Information Technology, cybersecurity, or a related field; or
- Associate degree in Information Technology, cybersecurity, or a related field and at least five years of relevant experience.
Required Experience
- Minimum of two years of experience managing DoD RMF packages in eMASS.
- Experience conducting vulnerability scans using ACAS or Nessus and analyzing the results.
- Experience developing and maintaining RMF artifacts.
- Experience developing and maintaining System Security Plans.
- Experience developing, updating, and tracking Plans of Action and Milestones.
Required Knowledge and Skills
- Cybersecurity principles and methodologies.
- Risk-management processes and frameworks.
- Network-security architecture and protocols.
- Vulnerability-assessment and penetration-testing techniques.
- Security-system design and implementation.
- Security incident-response and handling.
- Windows and Linux operating-system security.
- Network-security architecture, protocols, and technologies.
- Compliance with relevant cybersecurity laws, regulations, and standards, including NIST and FISMA requirements.
- Strong technical writing, documentation, analysis, and coordination skills.
Certification Requirements
- Current certification meeting the requirements for the DCWF Information Systems Security Officer, Work Role 722, at the Intermediate or Advanced proficiency level.
- Acceptable certifications include CISSP, CISM, or an equivalent qualifying certification.
- Must complete at least 20 hours of Continuous Professional Development annually, or the amount required to maintain the applicable certification, whichever is greater.
Work Environment and Conditions
- Work is primarily performed on-site in Government-controlled facilities.
- Must comply with applicable DoD, Army, USSOCOM, USASOC, installation, cybersecurity, personnel-security, CAC, and information-system access requirements.
- Mission requirements may require work beyond normal operating hours, occasional weekend support, surge support, or support for simultaneous events.
- Telework requires prior Government approval.
- Classified work is not normally authorized from an alternate worksite.
- Occasional travel may be required to support mission activities.
Note: This position is contingent on contract award.
Summit Technologies, Inc. is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
Position descriptions serve as a guideline and may not be construed as a guarantee of employment. Summit Technologies, Inc. is an at-will organization.