Summary:

Seeking a seasoned Cyber Security and Mission Assurance professional to provide leadership and direct supervision over a local team of cybersecurity experts, e.g., Cyber T&E specialists, analysts, engineers, etc.) to provide Advisory and Assistance Services (AA&S) to Air Force Operational Test and Evaluation Center (AFOTEC) in conducting Cyber Assessments and Mission Assurance Analysis (MA) in support of Operating Location – Kirtland AFB, NM (OL-KN) execution of Cybersecurity Assessment Program (CAP). This position is for the Lead Assessor of a contractor team. The objective of this position is to lead provide technical, scientific, and engineering services for the conduct of cyber assessments on behalf of designated Combatant Commands (CCMD) and the United States Air Force (USAF). The CAP lead will provide in-depth technical and operational knowledge as related to cyber-security (CS) and Information Technology (IT), Multidisciplinary Security, Joint Exercises, Joint Planning, exercise assessment objective development, and Joint Lessons Learned.

 

Primary Skills & Responsibilities:

·       Plan activities for Cyber Operations and MA assessments, which includes the development of initial Assessment Objectives, Assessment and Capstone Plans, and Observation Plans.

·       Perform and assess event and document planning activities under the direction of the Integrated Assessment Team (IAT) lead.

  • Provide operational experience sufficient to conduct informative assessments and statistical knowledge sufficient to develop assessment metrics.

·       Develop actionable recommendations and lessons learned that will support the development of vulnerability remediation recommendations.

·       Review the draft plan to conduct the Verification Validation Review and ensure the Assessment Plan is within guidance.

·       Configure and manage enclave network environment IAW customer support policies, procedures, and standards.

·       Participate in planning, execution and reporting of these assessments to include cyber vulnerability exploitation, vulnerability remediation events, reporting of exercise-based cyber assessments, the development of methods and metrics to guide these efforts, scheduling and management of assessment tasks, and deliverable documents; and provide IT support for CAP assessment activities.

·       Develop an observation/assessor placement plan IAW DOT&E policies and guidance which must be carefully coordinated to ensure adequate assessors are available who possess the appropriate operational experience and security clearance requirements.

·       Communicate with all assigned assessors/observers to ensure data is being collected at the appropriate sites, levels, and according to mission objectives.

·       Understand how local rules of engagement (ROE) as contained in the exercise Operations Order (OPORD) or Execution Order (EXORD) and the Designated Approval Authority (DAA) letter affect assessments.

·       Understand how ROEs, OPORDs, EXORDs, and DAA letter guidance will frame exercises and how this guidance may impact cybersecurity assessments.

·       Provide subject matter experts knowledge to assist in the preparation of the Defensive Cyber Operations (DCO), SME Report, and AFOTEC Roll-Up which will consist of the review of prior OARs, the identification of trends, and combined findings and recommendations per year per CRC.

·       Ensure configuration management (CM) for security-relevant IS software, hardware, and firmware is maintained and documented.

·       Conduct audits of allfied and unclassified IS to ensure compliance with established directives.

·       Ensure all IS security-related documentation is current and accessible to properly authorize individuals.

·       Support training exercises and training deployment (as directed).

 

Experience:

·       Experience in conflict resolution and meeting contract requirements.

·       Experience with CMMI processes, checklists, developing SOPs highly desired.

 

Education/Certifications/Clearance:

  • Minimum of a Bachelor’s degree in a technical related field plus 7 years’ experience in cybersecurity, network defense, and/or network attack, exercise planning, operations centers or cybersecurity assessments.​
    • In lieu of the above, an Associate’s degree in a technical related field plus 10 years’ experience in cybersecurity, network defense, and/or network attack, exercise planning, operations centers or cybersecurity assessments is acceptable.
    • In lieu of the above, 15 years’ experience in cybersecurity, network defense, and/or network attack, exercise planning, operations centers, or cybersecurity assessments in lieu of a degree is acceptable.
  • Five (5) years or more in developing work plans, statements of work, or task orders.
  • One or more of the following DoD 8570 Information Assurance Technical Level II Baseline Certifications:
    • Cisco Certified Network Associate Security (CCNA Security)
    • Global Industrial Cybersecurity Professional (GICSP)
    • GIAC Security Essentials (GSEC)
    • Security+ Continuing Education (Security + CE)
    • Network+
    • Systems Security Certified Practitioner (SSCP)
  • An active Top Secret Clearance required and SCI eligible
This job is currently not open for applications. Would you like to see our other open positions?