"Alerted.org

Norfolk, VA, USA | Full Time

CIS Security Accreditation Specialist

DEFTEC delivers mission-critical solutions through skillfully delivered services and innovative products. We are inspired by our clients' critical missions and driven to provide the most effective solutions to execute their missions, operational challenges, and requirements. Our dedicated, experienced, and talented employees work closely with our clients to ensure the delivery of exceptional services and products.

POSITION OVERVIEW

The CIS Security Accreditation Specialist will provide dedicated support to the Communication and Information System (CIS) Security Section within AOS, assisting the ACT Security Accreditation Authority in addressing the backlog of CIS security accreditations. The incumbent will conduct security assessments, review system documentation, and ensure compliance with relevant security frameworks and directives.

JOB RESPONSIBILITIES:

+ Maintain records of the progress of a CIS through NATO security accreditation processes and the application of NATO security regulations.

+ Review of security accreditation documentation for CIS and make recommendations for approval. Security accreditation documentation includes the CIS Description, Risk Assessment Results, System-Specific Security Requirements Statement, Security Operating Procedures, Security Test & Validation Plan, Security Test & Validation Results, Incident Reports, etc.

+ Ensure that verification activities are properly executed, to confirm that the agreed security measures have been implemented

+ Provide support and guidance to CIS developers and service providers. Note that some developers and service providers are based in Europe.

+ Contribute to updates of the statement of the security risk for ACT CIS

+ Liaising with other roles in the Security Accreditation process

+ Representing the ACT SAA in NATO Enterprise meetings, either in person or via VTC

Required Qualifications:

+ 3 or 4 year university degree or equivalent national academic qualification in computer science, network security, cyber-security or related field.

+ Certification in CIS security or cyber defence disciplines provided by a recognised certification scheme, as a Certified Information Systems Security Professional (CISSP), GIAC Security Expert or ISACA Certified Information Security Manager (CISM).

+ At least 5 years demonstrated experience in CIS security, CIS development or CIS service delivery

+ Within the 5 years' experience above, at least 3 years of demonstrated experience working in or in direct support of a national, international or multi [1] national CIS security accreditation, certification or similar field

+ Demonstrated proficiency in English as defined in STANAG 6001 (Standardized Linguistic Profile (SLP) 3333 - Listening, Speaking, Reading and Writing) or equivalent.

+ Active NATO or National SECRET (or higher) security clearance issued by the industrial security authority of a NATO member nation

+ Valid NATO Nation passport with no travel restrictions to NATO nations

+ Minimum of 70 Points in the Subject Matter Expert Criteria

+ Writing - Ability to prepare written documentation to transfer technical information about concepts, situations, products, services, or results to audiences with varying levels of technical knowledge. Thorough understanding of grammar, sentence structure, and intended audiences to the process of reviewing, editing,

or constructively critiquing a document, publication, or message.

+ Communication - Skill in clearly and effectively conveying information verbally to senior leadership. Ability to deliver clear, effective communication and ability to take responsibility for understanding others. Ability to ask appropriate questions.

+ Computer Skills - Has the knowledge and ability to use computers and related technology efficiently. Proficient in Microsoft Office products (e.g. Word, PowerPoint, Excel, Access, Project, MS Teams, and SharePoint)

DEFTEC offers a comprehensive whole-life benefits package that includes medical, dental, vision, holiday, paid time off, 401K with a match, life insurance, short/long-term disability, and educational reimbursement. The DEFTEC team comprises professionals who make a difference daily in crucial national security missions. Our leadership knows that this happens by employing a diverse team that is well cared for. Our top priority is our employees, making DEFTEC an ideal workplace.

Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions. Please get in touch with [email protected] if you require reasonable accommodations.

DEFTEC is a Drug-Free Workplace where post-offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria are met as outlined in our policies.

AAP/EEO Statement

DEFTEC Corp is an Equal Opportunity and Affirmative Action Employer and prohibits discrimination and harassment of any type based on actual or perceived race, color, national origin, ancestry, sex (including pregnancy, childbirth, breastfeeding and medical conditions related to pregnancy, childbirth or breastfeeding), gender, gender identity, and gender expression, religious creed, disability (mental and physical) including HIV and AIDS, medical condition (cancer and genetic characteristics ), genetic information, age, marital status, civil union status, sexual orientation, military and veteran status, denial of family and medical care leave, arrest record and/or any other characteristic(s) protected by federal, state or local law.

This policy applies to all terms of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, training, compensation, benefits, employee activities, and general treatment during employment.

Other Duties

Please note that this job description is not designed to cover or contain a comprehensive listing of the activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time, with or without notice.