Under the general supervision of the Navy Region Southwest (NRSW) MWR and IT Director, the Information Technology Specialist (INFOSEC) ensures the confidentiality, integrity and availabilty of systems, networks and data through the planning, analysis, development, implementation, maintenance, and enhancement of information systems security programs, policies, procedures and tools.

Duties

Performs continuous updating, monitoring, assessment, maintenance, and reporting on the cybersecurity status of department information systems. Completes vulnerability assessments of information systems using Risk Management Framework (RMF) processes, preparing RMF documentation in accordance with approved testing, certification, and accreditation processes. Ensure configuration compliance in accordance with Security Technical Implementation Guides (STIGS), Security Requirements Guides (SRG) Documents, secure information systems using the appropriate security controls, tools, and processes; identifying and evaluating system risks and specific mitigations and developing remediation actions for identified risks. Develops policies and procedures to ensure information systems reliability and accessibility and to prevent and defend against unauthorized access to systems, networks and data. Has continuing responsibility for the integrity and maintenance of the NRSW FFR Network computer environment, including but not limited to routers, switches, SANs, LANs, WANs, APs, copper and fiber cabling and equipment and supply inventory control. Assists in the coordinating the configuration of NRSW FFR Network Computers to satisfy new or different requirements of a recurring nature imposed by higher authority. Coordinates the configuration of NRSW FFR Network. for local recurring and non-recurring requirements to ensure implementation of appropriate system security policies. Conducts risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities. risks, and protection needs. Reviews and evaluates all requests for revisions to existing computer system, software applications or Iocally unique requirements to ensure requests meet system security requirements and policy Promotes awareness of security issues among management and ensuring sound security principles are reflected in the NRSW FFR IT Department vision and goals. Develops and implements programs to ensure that systems network and data users are aware of, understand and adhere to systems security policies and procedures, Ensures the rigorous application of information security/ information assurance policies, principles and practices in the delivery of all IT services. Monitors and evaluates system security compliance. Assists in the application of system security and accreditation processes for organizational Information Technology Systems. Evaluates and recommends adopt-ion of new or enhanced approaches to system security. Applies information security and: information assurance policy, principles and practices.

Requirements

• Must meet Federal Employment suitability requirements and successful completion of background investigation. Background Investigations are conducted using fingerprint identification and completion of background inquiry forms.
• Must successfully pass the E-Verify employment verification check. Any discrepancies must be resolved as a condition of employment.
• Must be able to lift 40 pounds.

Qualifications

A minimum of three years specialized experience sufficient to demonstrate IT knowledge and skill in software design principles, methods and approaches; infrastructure requirements such as bandwidth and sever sizing, quality assurance principles; and software testing, documentation and performance monitoring methods. Knowledge of data sources, data flow, computer programming, automated business systems, internet and intranet-based business systems, network topologies, network and data security system integration. Knowledge of networks relevant to the wide area networks, network appliances, routers, switches, access points r software and hardware capabilities and operating system software. Sufficient. knowledge of prevailing advanced technology practices in public and private sector automation to suggest on alternative approaches to computer system problem solving, and effective implementation. Knowledge of local, CNIC and higher authority network security directives and instructions to ensure the integrity and compliancy of all IT equipment and Network systems are maintained. Necessary knowledge to advice policy making officials within the region on computer techniques and to develop long range IT plans and forecasts. Ability to interface with functional personnel and relate to functional problems during fact finding reviews of the users areas. Skill relating major considerations or aspects of the work to the overall project. Ability to train and advise other personnel. Incumbent must maintain the privacy of official work information and data and demonstrate the highest level of ethical conduct.

Education

N/A

Contacts

• Address NAVBASE San Diego 750 Pacific Coast Highway San Diego, CA 92132-0058 US
• Name: Laela Hannify
• Email: [email protected]