Crossflow Technologies, Inc.
EPASS GBS.041 Cybersecurity Senior
Crossflow Technologies, Inc., Dayton, Ohio, United States, 45444
Job Title:
EPASS GBS.041 Cybersecurity Senior
Location:
Ohio- Kettering Office - Kettering, OH 45409
Position Overview:
Crossflow Technologies, INC. is seeking a Cybersecurity Engineer located within Kettering, OH (Dayton/WPAFB area) to support our EPASS GB contract. As part of the AFLCMC/GB Business and Enterprise Systems Directorate (BES), the Commercial Asset Visibility Air Force (CAV AF) is the web-enabled component that provides communication to an Inventory Control Point (ICP) for a repair action against a specific repair asset.
ESSENTIAL DUTIES/POSITION DESCRIPTION:
This position requires a highly motivated individual with vast experience.
The successful candidate will provide the PMO/Capability Development Manager (CDM) cybersecurity support per DoDI 8500.01. Support includes assessing and continuously monitoring cybersecurity risk ensuring that legacy and new capabilities adhere to enterprise standards such as Risk Management Framework (RMF), Cybersecurity Framework (CSF), and National Institute of Standards and Technology (NIST) and per Authorization Official's Information System's Continuous Monitoring (ISCM) strategy.
This position will act as the primary cybersecurity technical advisor to the AO, PM, and ISO. This position ensures the integration of cybersecurity into, and throughout, the lifecycle of the IT, on behalf of the AO and in accordance with DoDI 8510.01 for the following:
Completes and maintains required cybersecurity certification IAW AFMAN 17-1303;
Ensures all AF IT cybersecurity-related documentation is current and accessible to properly authorized individuals;
Supports the PM or ISO in maintaining current authorization to operate, approval to connect (if required), and implementing corrective actions identified in the plan of actions and milestones;
Coordinates, with the PM and AO staffs, development of an ISCM strategy and monitors any proposed or actual changes to the system and its environment;
Continuously monitors the IT and environment for security-relevant events;
Assesses proposed configuration changes for potential impact to the cybersecurity posture;
Assesses the quality of security controls implementation against performance indicators;
Ensures cybersecurity-related events or configuration changes that impact AF IT authorization or adversely impact the security posture are formally reported to the AO and other affected parties;
Ensures all ISSOs and privileged users receive necessary technical training and obtain cybersecurity certification IAW AFMAN 17-1301, Computer Security (COMPUSEC), AFMAN 17-1303, and maintain proper clearances IAW DoDI 8500.01;
Ensures the AF IT is acquired, documented, operated, used, maintained, and disposed of properly IAW DoDI 5000.02 and DoDI 8510.01.
Requirements:
The successful candidate has the knowledge, experience and recognized ability to be considered highly skilled in their technical/professional field. Possesses the ability to perform tasks independently and oversee the efforts of junior and journeyman contractor personnel within the technical/professional discipline.
All Cybersecurity professionals should possess experience providing guidance on the following to include, but not limited to:
Access control.
Configuration management.
System and communications protection.
Contingency planning.
Incident handling.
System and information integrity.
Security and privacy training and awareness;
Software development activities, software and tools related to Cybersecurity.
Experience performing cybersecurity duties as outlined in DoDI 8500.01, AFI 17-130, and AFI 17-1301 for assigned AF IT.
Experience validating, evaluating and analyzing finding results and developer adjudications using automated testing tools, e.g., Fortify, Checkmarx, SonarQube, and AppScan.
Experience utilizing DoD tracking systems to input/document cybersecurity deficiencies, vulnerabilities, and change requests in the appropriate tracking system for each program, e.g., Jira, HP ALM, and eMASS.
Experience with conducting information security continuous monitoring (ISCM) by maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions IAW approved ISCM strategy.
EDUCATION:
Master's or Doctorate Degree in a related field and ten years of experience in the respective technical/professional discipline being performed, five years of which must be in the DoD
OR, Bachelor's Degree in a related field and 12 years of experience in the respective technical/professional discipline being performed, five of which must be in the DoD
OR, 15 years of directly related experience with proper certifications as described in the PWS labor category performance requirements, eight of which must be in the DoD.
CERTIFICATION REQUIREMENTS:
At a minimum, the successful candidate will meet the requirements for and maintain an IAM Level III Cybersecurity certification by possessing at least one of the following certifications as directed by DoD 8140 and outlined in DoD 8570.01 -M, Appendix3, Table 2,2 AFMAN 17-1303:
ISACA CISM
(ISC)2 CISSP
GIAC GSLC
EC Council CCISO
Additional Desired Certifications:
Certified SCRUM Master
Other Agile Certifications
OTHER QUALIFICATIONS:
The following skills are highly desirable but not required for this position:
Working knowledge of the Agile Development methodology
Experience using any, or all, of the following tools (Desired):
CheckMarx
SonarQube
Jira
Confluence
Mavin
Jenkins
Bitbucket
U.S. Citizenship Required for this Position: Yes
Job Type: Full time
Schedule: (M-F; 8-5)
Work Location: Kettering, OH office
Security Clearance: Active Secret/Tier 3 Required
#J-18808-Ljbffr
EPASS GBS.041 Cybersecurity Senior
Location:
Ohio- Kettering Office - Kettering, OH 45409
Position Overview:
Crossflow Technologies, INC. is seeking a Cybersecurity Engineer located within Kettering, OH (Dayton/WPAFB area) to support our EPASS GB contract. As part of the AFLCMC/GB Business and Enterprise Systems Directorate (BES), the Commercial Asset Visibility Air Force (CAV AF) is the web-enabled component that provides communication to an Inventory Control Point (ICP) for a repair action against a specific repair asset.
ESSENTIAL DUTIES/POSITION DESCRIPTION:
This position requires a highly motivated individual with vast experience.
The successful candidate will provide the PMO/Capability Development Manager (CDM) cybersecurity support per DoDI 8500.01. Support includes assessing and continuously monitoring cybersecurity risk ensuring that legacy and new capabilities adhere to enterprise standards such as Risk Management Framework (RMF), Cybersecurity Framework (CSF), and National Institute of Standards and Technology (NIST) and per Authorization Official's Information System's Continuous Monitoring (ISCM) strategy.
This position will act as the primary cybersecurity technical advisor to the AO, PM, and ISO. This position ensures the integration of cybersecurity into, and throughout, the lifecycle of the IT, on behalf of the AO and in accordance with DoDI 8510.01 for the following:
Completes and maintains required cybersecurity certification IAW AFMAN 17-1303;
Ensures all AF IT cybersecurity-related documentation is current and accessible to properly authorized individuals;
Supports the PM or ISO in maintaining current authorization to operate, approval to connect (if required), and implementing corrective actions identified in the plan of actions and milestones;
Coordinates, with the PM and AO staffs, development of an ISCM strategy and monitors any proposed or actual changes to the system and its environment;
Continuously monitors the IT and environment for security-relevant events;
Assesses proposed configuration changes for potential impact to the cybersecurity posture;
Assesses the quality of security controls implementation against performance indicators;
Ensures cybersecurity-related events or configuration changes that impact AF IT authorization or adversely impact the security posture are formally reported to the AO and other affected parties;
Ensures all ISSOs and privileged users receive necessary technical training and obtain cybersecurity certification IAW AFMAN 17-1301, Computer Security (COMPUSEC), AFMAN 17-1303, and maintain proper clearances IAW DoDI 8500.01;
Ensures the AF IT is acquired, documented, operated, used, maintained, and disposed of properly IAW DoDI 5000.02 and DoDI 8510.01.
Requirements:
The successful candidate has the knowledge, experience and recognized ability to be considered highly skilled in their technical/professional field. Possesses the ability to perform tasks independently and oversee the efforts of junior and journeyman contractor personnel within the technical/professional discipline.
All Cybersecurity professionals should possess experience providing guidance on the following to include, but not limited to:
Access control.
Configuration management.
System and communications protection.
Contingency planning.
Incident handling.
System and information integrity.
Security and privacy training and awareness;
Software development activities, software and tools related to Cybersecurity.
Experience performing cybersecurity duties as outlined in DoDI 8500.01, AFI 17-130, and AFI 17-1301 for assigned AF IT.
Experience validating, evaluating and analyzing finding results and developer adjudications using automated testing tools, e.g., Fortify, Checkmarx, SonarQube, and AppScan.
Experience utilizing DoD tracking systems to input/document cybersecurity deficiencies, vulnerabilities, and change requests in the appropriate tracking system for each program, e.g., Jira, HP ALM, and eMASS.
Experience with conducting information security continuous monitoring (ISCM) by maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions IAW approved ISCM strategy.
EDUCATION:
Master's or Doctorate Degree in a related field and ten years of experience in the respective technical/professional discipline being performed, five years of which must be in the DoD
OR, Bachelor's Degree in a related field and 12 years of experience in the respective technical/professional discipline being performed, five of which must be in the DoD
OR, 15 years of directly related experience with proper certifications as described in the PWS labor category performance requirements, eight of which must be in the DoD.
CERTIFICATION REQUIREMENTS:
At a minimum, the successful candidate will meet the requirements for and maintain an IAM Level III Cybersecurity certification by possessing at least one of the following certifications as directed by DoD 8140 and outlined in DoD 8570.01 -M, Appendix3, Table 2,2 AFMAN 17-1303:
ISACA CISM
(ISC)2 CISSP
GIAC GSLC
EC Council CCISO
Additional Desired Certifications:
Certified SCRUM Master
Other Agile Certifications
OTHER QUALIFICATIONS:
The following skills are highly desirable but not required for this position:
Working knowledge of the Agile Development methodology
Experience using any, or all, of the following tools (Desired):
CheckMarx
SonarQube
Jira
Confluence
Mavin
Jenkins
Bitbucket
U.S. Citizenship Required for this Position: Yes
Job Type: Full time
Schedule: (M-F; 8-5)
Work Location: Kettering, OH office
Security Clearance: Active Secret/Tier 3 Required
#J-18808-Ljbffr