We are seeking a highly skilled and experienced Information Systems Security Specialist III to join our team. The ideal candidate will be responsible for implementing and maintaining effective security measures to protect our clients computer systems and networks. This position requires extensive knowledge of cybersecurity technologies, practices, and procedures, and the ability to evaluate and manage risks associated with information systems. The Information System Security Specialist is responsible for supporting all aspects of a Propulsion, Power & Auxiliary Machinery Systems Cybersecurity Support Program. The specialist should demonstrate a working knowledge of the Risk Management Framework (RMF) process and familiarity with security policies & guidance documents to assist with the preparation and maintenance of process artifacts, traceability documents purposed for compliance with Authority to Operate (ATO) requirements. The specialist is expected to evaluate security solutions to ensure they meet security requirements for processing up to classified information, and supervise and/or maintain the operational security posture for an information system or program. As a senior specialist you may assist or develop system security policy and ensure compliance of change management and configuration control processes. Plan and coordinate the IT security program and policies supporting the command leadership mission and goals.

Responsibilities: • Develop and implement security policies, procedures, and standards for the organization's computer systems and networks. • Conduct risk assessments to identify potential security threats and vulnerabilities, and develop mitigation strategies. • Ensure compliance with security regulations and guidelines, including HIPAA, NIST, and ISO. • Perform vulnerability scans and penetration tests to identify security weaknesses and implement remediation plans. • Monitor and analyze network traffic for security threats and take appropriate action to mitigate them. • Investigate security incidents and breaches, and implement corrective actions to prevent future occurrences. • Collaborate with other IT staff to ensure the security of the organization's information systems. • Provide training and awareness to end-users on security best practices and policies.

Qualifications: • Target Education: Bachelor's degree in a technical related discipline, without a degree more than 7 years experience in Information Assurance and Risk Management roles with increasing responsibility. • Target Experience: Five (5) years professional experience performing analysis of logs and events, and of various data collection tools; as well as experience automating processes through scripting, and assessing impacts from observed risks and present the findings through the chain-of-command. • Ability to communicate technical information effectively to both technical and non-technical audiences. • Knowledge of security regulations and guidelines, such as HIPAA, NIST, and ISO. Required Qualifications: • Experience with security risk assessments, vulnerability management, and incident response. • Strong knowledge of cybersecurity technologies, practices, and procedures, including, having worked with Information Assurance tools such as DISA Enterprise Mission Assurance Support Service (eMASS), and Assured Compliance Assessment Solution (ACAS) • Under the Cyber Security Workforce Guidelines of DoD Inst 8570.1-M hold an IAM 2 Certification, the basis of which is holding at least one of the following Industry Certifications: CAP, CASP+CE, CISM, CISSP (or Associate), GSLC, or CCISO

If you are a self-motivated and detail-oriented individual with a passion for information security, we encourage you to apply for this exciting opportunity.

Flexible work from home options available.