Monitor laws, regulations, industry standards and best practices related to the confidentiality, integrity and availability of information and ensure the implementation of these standards in the organization as required. Develop, maintain and interpret polices and procedures related to the protection of systems, networks, people, information and property. Perform compliance and assessment activities related to information security, data privacy, incident management and risk management. Collaboratively develop risk mitigation plans with subject matter experts and ensure accountability for these actions. Assess compliance, security, and control risks related to information systems and technical infrastructure. Develop training and education materials and promote information security awareness. Translate complex, technical concepts into business-relevant terms to facilitate effective decision making by non-technical personnel. Support audit activities - both internal and external, related to information security. May oversee and manage the DoD accreditation of secure operating systems and networks.Collaborate with federal oversight/regulatory agencies to ensure company/program compliance to DoD requirements. May manage information systems access requests and administer security awareness training programs. May require DoD Security Clearance eligibility and information system security certifications.
Active DOD Personnel Security Clarence at the Secret level or above.
Last DOD investigation within 6 years.
DOD 8570 baseline certification required.
Resources require an 8570 certification to execute the FAC NET Program Objectives Actions and Milestone plan, as well to provide recurring support for the life of the program to maintain compliance, and mitigate risk of program work stoppage.