IT CYBERSECURITY SPECIALIST (INFOSEC)

Full Job Description

IOWA ARMY NATIONAL GUARD - TITLE 32 EXCEPTED SERVICE POSITION This position is open to current on-board G6 Title 5 and Title 32 employees of the Iowa Army National Guard. Military membership is required. LOCATION: G6, Johnston, IA

In describing your experience, please be clear and specific. We will not make assumptions regarding your experience.

Applicants who do not fully address the minimum/specialized experience needed for the position in their resume will not be referred for consideration.

MINIMUM REQUIREMENTS: Experience that has equipped the applicant with the particular competencies/knowledge, skills, and abilities to successfully perform the duties of the position and is typically in or related to the work of the position to be filled.

Such experience is typically gained in the IT field or through the performance of work where the primary concern is IT.

SPECIALIZED EXPERIENCE REQUIREMENTS: GS-2210-12: Must have experience in the following: 1-year specialized experience equivalent to at least the next lower grade.

Experience, education, or training that approaches techniques and requirements appropriate to an assigned computer applications area or computer specialty area in an organization.

Experience planning the sequence of actions necessary to accomplish the assignment where this entailed coordination with others outside the organizational unit and development of project controls.

Experience that required adaptations of guidelines or precedents to meet the needs of the assignment.

Experience preparing documentation on cost/benefit studies where is involved summarizing the material and organizing it in a logical fashion.

Major Duties:

As a IT CYBERSECURITY SPECIALIST (INFOSEC), GS-2210-12 your duties are below. Serves as an Information Technology Specialist providing Cybersecurity for a state National Guard headquarters.

Operates within the DoD and Army security procedures, operations, and practices.

Ensures systems are operated and maintained IAW AR 25-2 and all applicable command, DA, JS and DOD security directives and procedures.

Monitors Microsoft and DoD information security bulletins and notifications as they relate to Information Security Vulnerability Alerts (ISVAs).

Coordination is required with peer state contacts, FORSCOM and MACOM elements and commercial vendors.

Incumbent is required to ensure compliance with Federal, DoD and DA Information Assurance/Cyber Security policies.

Utilizes extensive knowledge of all areas of automation security to establish operating standards and procedures for the installation Information Assurance Program.

Coordinates requirements with the responsible personnel and tracks suspense for completing required actions and reports virus problems in accordance with established procedures.

Ensures the confidentiality, integrity and availability of systems and networks by planning, analyzing, developing, and implementing information systems security programs, policies, procedures, and tools.

The incumbent serves as a subject matter expert (SME) in advising, posturing, preparing and auditing the organization for No Notice Army Cyber Readiness Assessments (NACRA), Organizational Inspection Program (OIP), and accreditations.

May serve in a team lead role for auditing/assessment teams, such as a Site Assistance Visit (SAV).

(60%) Coordinates with Program Information System Security Managers and Organizational Information System Security Officer at other locations to verify or clarify information pertinent to cybersecurity/Information Assurance procedures.

Ensures all IS and COTS/GOTS within the DODIN-A (NG) Enclave are properly certified and accredited in accordance with, Risk Management Framework (RMF), and configuration management policies and practices prior to installing devices/systems on the production ICAN.

The incumbent has program oversight responsibility for the Installation Campus Area Network (ICAN)/Local Area Network (LAN) Certification and Accreditation (C&A), documentation and meets AR 25-1, AR 25-2, DoDI 8500.01 (Cybersecurity) and DoDI 8510.01 (Risk Management Framework (RMF) for DoD Information Technology) and DoDI 8500.2 Information Security (IS) Implementation.

Ensures all aspects of the RMF are implemented for all assets connected, or to be added, to the ICAN are accepted and approved by the appropriate Designated Approving Authorities (DAAs) for RMF Assess Only process and Configuration Management Board.

(30%) Maintains an operational knowledge base of past, current and possible future threats to the security posture by attending courses, conferences, seminars, online research, and information sharing between other Cyber Security/Information Assurance professionals.

Using this knowledge base, the incumbent will be able to devise and implement new policies and procedures to prevent or react to security concerns. 10%. Performs other duties as assigned. D2486P01