Alabama Controls, Inc. dba Albireo Energy, LLC is seeking an experienced Information System Security Manager combined with Assistant Facility Security Officer (ISSM/AFSO). The ISSM/AFSO role performs a wide variety of tasks for the International Division. This role will provide day-to-day security administrative support to ensure compliance and alignment with the National Industrial Security Program (NISPOM), Defense counterintelligence and Security Agency (DSCA), Intelligence Community Directives (ICD) and Program Guidance (ICPG).
- Develop and maintain a formal IS security program and policies for their assigned area of responsibility;
- Provide technical and procedural Information System (IS) Security advice to government and industrial teams.
- Develop and oversee operational information systems security implementation policy and guidelines;
- Coordinate with PSO or cognizant security official on approval of External Information Systems (e.g. guest systems, interconnected system with another organization);
- Maintain required IA certifications;
- Ensure System Administrators (SA) monitor all available resources that provide warnings of system vulnerabilities or ongoing attacks;
- Ensure all ISSOs receive the necessary technical and security training (e.g., operating system, networking, security management) to carry out their duties;
- Ensure approved procedures are used for sanitizing and releasing system components and media;
- Maintain a repository of all security authorizations for IS under their purview;
- Coordinate IS security inspections, tests, and reviews;
- Ensure proper measures are taken when an IS incident or vulnerability is discovered;
- Ensure data ownership and responsibilities are established for each IS, and specific requirements (to include accountability, access and special handling requirements) are enforced;
- Ensure development and implementation of an effective IS security education, training, and awareness program;
- Ensure CM policies and procedures for authorizing the use of hardware/software on an IS are followed. Any additions, changes or modifications to hardware, software, or firmware must be coordinated with the appropriate AO prior to the addition, change or modification;
- Serve as a voting member of the Configuration Control Board (CCB) and/or the Risk Executive Board, if applicable. The ISSM shall have authority to veto any proposed change they feel is detrimental to security. Appeals on an ISSM/ISSO veto may be taken to the AO.
- Maintain a working knowledge of system functions, security policies, technical security safeguards, and operational security measures;
- Manage, maintain, and execute the information security continuous monitoring plan;
- Ensure a record is maintained of all security-related vulnerabilities and ensure serious or unresolved violations are reported to the AO/DAO; and Assess changes to the system, its environment, and operational needs that could affect the security authorization.
- Develop concept of operations for new systems.
- Security responsibilities such as:
- Processing of local site personnel security clearances;
- Document control and accountability;
- Viper phone/safe custodian;
- Assisting with DD254 requests and tracking;
- Performing SF312 briefings;
- Implementing effective Security Education and Training Awareness program and Insider Threat Programs;
- Conducting routine self-inspections to assure compliance and in preparation of annual security audits
- Conduct investigations into security incidents amp; violations and ensure reporting and corrective actions are initiated
- Visitor control coordination, administering visit requests and examining credentials of those visiting the office
- Office management to include administration assistance of network, printers, and phone systems
- Maintain office supply inventory including tracking company and government equipment
- Other administrative duties to include expense reporting, travel reservations, amp; meeting organization
- Physical Security
- Ensure SAP facilities are built to ICD-705 or O-5205.07, Volume 3 specifications
- Work with industry partners to ensure physical security measures are met and compliant with applicable DoD policy
- Conduct annual and biannual physical self-inspections
- Coordinate with local PSO and SSO for any updates or changes to current facility
Requirements
- 2 years of professional experience related to the duties listed in job description
- Excellent written, verbal communications skills, professional presence, and reception skills
- Proficient with Microsoft office products and tools for meeting and calendar management
- Bachelor of Science from an