What are the responsibilities and job description for the Cyber Security Specialist position at INTECON, LLC?
TS clearance required, SAP eligibility required, SCI eligible desired.
The contractor shall advise and assist the United States Government with the following. Examples of the types of services that should be performed. Specific tasks and milestones will be defined within the individual work plan(s).
*Support analysis of current and future test/assessment capabilities. Activities include: identifying test/assessment capability requirements, documenting existing test/assessment capabilities, identifying shortfalls, performing trade-off analyses, and recommending approaches to solve issues.
*Assist development modeling and simulation (M&S) accreditation packages for tests that require them. Activities include: Developing verification, validation, and accreditation (VV&A) plans, reports, and briefings.
*Assist in the development and coordination of cyber assessment plans and reports. This includes Cooperative Vulnerability and Penetration Assessments (Blue Team) and Adversarial Assessments (Red Team), IAW appropriate Director, Operational Test and Evaluation (DOT&E) and AFOTEC guidance.
*Identify, develop, and/or apply analytical techniques, methodologies, and tools for testing and assessments.
*Identify, recommend, and/or integrate test infrastructure capabilities (live, virtual, M&S) and ways to use test infrastructure capabilities to answer operational questions. This includes operationally realistic environments for nuclear, cyber and other threat representations.
*Identify, schedule, and track program activities and deliverables for all tasked programs.
*Provide support of test investment forums as requested. Forums include, but are not limited to, the Central Test and Evaluation Investment Program (CTEIP), the Resource Enhancement Project (REP), and the Threat Systems Working Group (TSWG).
*Provide technical engineering support to CTEIP-funded projects, including REP, which are proposed and executed by AFOTEC. Support Government project manager with technical project oversight, technical design reviews, development, testing, integration and delivery.
*Provide operational task breakdown, using a systems engineering process, to show the interlacing and overlapping relationships between the System Under Test and the family of systems it interacts with.
*Review lessons learned and test methods used in the testing and evaluation of similar systems.
*Provide mission analysis of System Under Test and threats to the system.
*Participate in Initial Test Design meetings. Provide input to develop and/or revise the Initial Test Design. Provide input in developing and revising critical operational issues. Utilize Design of Experiments (DOE) techniques, as required.
*Participate in measures development meetings. Provide input to develop and/or revise test measures of effectiveness and measures of suitability.
*Provide input to develop and/or revise the basis of estimate for test resources (e.g. Test Resource Plan) to accomplish the test/assessment design.
*Review for test and evaluation/assessment considerations and develop feedback on program documents, such as the: program management directive, applicable capabilities documents, virtual/system threat assessment report, test and evaluation master plan, systems acquisition management plan (SAMP), lifecycle management plan (LCMP), program protection documents, concepts of operations/employment, and maintenance concepts.
*Participate as an Integrated Test Team member to gain knowledge of, and facilitate planning of, developmental, integrated, and operational test activities.
*Identify and/or develop integrated test opportunities during developmental testing. Analyze and report on related developmental and integrated testing applicable to future operational testing.
*Prepare, submit and/or revise AFOTEC portions of program test documentation, such as test team charters, test and evaluation master plans, integrated test plans, and schedules.
*Prepare, submit and or revise test/assessment plans, Data Management and Analysis Plans, detailed test/assessment procedures, test/assessment planning briefings, and schedules.
*Analyze and submit test/assessment methodologies; test/assessment scenario descriptions; test/assessment demonstrations; test/assessment risk, limitation and mitigation strategies; and test/assessment readiness and support requirements needed to complete the test plan.
*Develop evaluation methodologies and analytical techniques; assess data requirements; and review/develop analytical tools needed to support the evaluation.
*Support program, technical, and test readiness reviews with System Program Office. Support site visits to review system and technology development.
*Support operational test execution; requesting, scheduling, and tracking of test/assessment resources and facilities; identifying and preparing test/assessment equipment.
*Participate in the execution of test/assessment plans, data management and analysis plans, and detailed test/assessment procedures.
*Develop and deliver execution briefings and debriefings. Review and update documentation.
*Collect, compile, review, analyze, and evaluate test/assessment data and test results. Analyze system performance against test measures. Provide input in the determination of system effectiveness, suitability and mission capability.
*Analyze/characterize the resulting output of models and simulations.
*Identify the impact of lost data (due to corruption, instrumentation failure, etc.) on analysis and evaluation of test results. Identify alternative data sources as appropriate.
*Determine the capability of a system to operate within its intended natural environment and withstand in a threat environment. Potential threat environments include: nuclear, cyber contested and space contested.
*Provide input into the systems deficiency review process.
*Provide input to develop and/or revise the test/assessment report.
*Prepare test/assessment documentation for inclusion in test/assessment reports.
*Prepare briefings as a part of the report coordination process.
*The contractor shall advise and assist the United States Government with cybersecurity test planning, execution, analysis, and reporting examples include the following: consult on integrated, dynamic Cyber defense and leverage Cybersecurity solutions, and identify intrusion/attack paths and recommend detection and prevention, situational awareness of intrusions, and incident response actions.
*The contractor shall provide certified personnel to advise and assist the United States Government with test planning, execution, analysis, and reporting on various cyber tests such as: Mission-Based Cybersecurity Risk Assessment (MBCRA, Cyber Vulnerability Identification (CVI), Cooperative Vulnerability and Penetration Assessment (CVPA), Adversarial Assessment (AA).
*Prepare and Provide reports, minutes, conference minutes, and other documentation of meetings and events attended.
*Prepare and Provide Data Accession List (DAL) identifying contractor internal data which has been generated by the contractor in compliance with the work effort described in the Statement of Work (SOW) and Work Plans.
*Prepare and provide the following documents according to Work Plan Requirements when requested: DoD Architecture Framework, Briefing Materials, Presentation Materials, SCI & Tech Reports, Tech Reports, Modeling and Simulation Accreditation Plans and Reports, Modeling and Simulation Verification and Validation Plan and Reports, and Critical Task Analysis Report
1.5.1Security Support
Security Support staff will provide AFOTEC Det 3 with multi-disciplined support to:
*Ensure implementation and administration of information security policies and procedures supporting the conduct of AFOTEC Collateral, Sensitive Compartmented Information (SCI), Special Access Programs (SAPs) OT&E.
*Ensure strict adherence to the provisions of the NISPOM, its Supplement, the DoD Overprint, DCID, ICD, and SAP policy.
*Assist in developing and executing approved policies and procedures for safeguarding Special Access Program (SAP), Sensitive Compartmented Information (SCI) and collateral data in support of US military operations.
*Assist with the implementation of DOD and, USAF, and MAJCOM policies and develops local procedures for the classification and protection of classified national defense and other sensitive information originated or controlled by installation activities.
*Provide "day-to-day" support for Collateral, Sensitive Compartmented Information (SCI) and
Special Access Program (SAP) activities.
*Assist with identifying vulnerabilities, threats, and risks to test, training, and operational activities.
*Assist in developing, implementing, and training the Operations Security program.
*Assist in providing contractor and subordinate facility assistance and oversight.
*Help prepare briefings for all levels of personnel, both in the government and senior civilian services, on a variety of security related topics.
*Assist with conducting and documenting SAP facility compliance reviews, follow-on facility reviews, and facility close-outs.
*Help monitor, report and track all corrective actions resulting from compliance reviews.
*Ensure timely notification and classification reviews of inbound and outbound correspondence.
*Assist in the maintenance of a document accountability database and associated correspondence.
*Process inbound and outbound classified mail and receipt records.
*Maintain various daily logs for a variety of administrative functions associated with document control.
*Assist in the processing of inbound data and outbound data transfer files.
*Assist with researching, processing, filing, and maintaining inbound and outbound visit notices.
*Escort facility visitors and maintains associated logs.
*Assist in the preparation of facility access control badges.
*Assist in conducting entry and exit inspections.
*Assist in the maintenance of facility access control entry systems, to include visitor control.
*Perform data entry to the Personnel Access Security System database and maintain all customer sponsored billets and quota information.
*Assist in maintaining personnel security files for all personnel of the supported element.
*Follows the customer's Standard Operating Procedures.
*Provide support for the security awareness and education programs.
*Perform miscellaneous support functions as directed by the contractor site lead and/or the Senior Security Representative.
Qualifications:
A Senior labor category has over 10 years of experience and a MA/MS degree. A Senior labor category typically works on high-visibility or mission critical aspects of a given program and performs all functional duties independently. A Senior labor category may oversee the efforts of less senior staff and/or be responsible for the efforts of all staff assigned to a specific job.
INTECON is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, or Vietnam era, or other eligible veteran status, or any other protected factor.