• Help

    Duties

    Summary

    As the world's largest finance and accounting firm, the Defense Finance and Accounting Service (DFAS) pays all Department of Defense (DoD) military and civilian personnel, retirees and annuitants, and major DoD contractors and vendors. We take great pride in serving the men and women who serve America, and invite goal-oriented people like you to challenge yourself while providing a service to our nation.

    Learn more about this agency

    Responsibilities

    • Performs the duties of a Information Security System Manager (ISSM); develops, plans, and implements the Risk Management Framework (RMF) and Cybersecurity Program for assigned systems, serving as a security technical authority.
    • Advises management on methods to maintain audit compliance for supported audit initiatives (to include Risk Management Framework (RMF)).
    • Performs staff assignments related to project planning, monitoring, coordinating systems analysis and programming functions. Coordinates and conducts briefs, meetings and training sessions in response to mission needs.
    • Provides technical analysis, review, and recommendations related to the development and execution of project charters, risk management plans, communication plans, procurement plans, staffing, work breakdown structures and project schedules.
    • Identifies requirements, implementing and testing security technical standards for assigned technologies such as web applications, applications, databases, operating systems, security platforms and network devices.
    • Identifies and implements remediation efforts as necessary. Analyzes identified vulnerabilities determining final risk severity level.
    • Prepares narrative and statistical reports, analyzes results, and makes recommendations to management for changes/improvements to security configurations. Documents policies and best practices in support of Audit Readiness and security compliance.
    • Applies knowledge of assigned technology and associated vendor patching processes and methods, and ensures timely and consistent patch management processes and procedures.

    Travel Required

    Occasional travel - You may be expected to travel for this position.

    Supervisory status

    No

    Promotion Potential

    None

This job originated on www.usajobs.gov. For the full announcement and to apply, visit www.usajobs.gov/GetJob/ViewDetails/581369200. Only resumes submitted according to the instructions on the job announcement listed at www.usajobs.gov will be considered.