Operate information technology (IT) and
telecommunications resources to monitor, evaluate and maintain systems, policy
and procedures to protect clients, networks, data/voice systems, and databases
from unauthorized activity.

·

Identify
potential threats and manages resolution of security violations.

·

Enforce national, Department of Defense (DOD),
Intelligence Community and Air Force security policies and directives; employ
USAFE-AFAFRICA/A2-approved hardware and software tools to enhance security by
monitoring and directing proactive and reactive information protection and
defensive measures to ensure Confidentiality, Integrity, and Availability (CIA)
of Information Technology (IT) resources.

·

System and network security operations for
approximately 1,200 users operating approximately 1,100 devices across multiple
networks.

·

Conducts incident response and approximately six
change management requests quarterly.

·

Monitors USAFE-AFAFRICA/A2-approved enterprise
Information Assurance (IA) policy compliance and provides recommendations for
effective implementation of IT security controls.

·

Evaluates and assists IT activities. Makes
periodic evaluations, notes discrepancies, and recommends corrective actions.
Assists in investigating security-related incidents and IT forensic
investigations.

·

Monitors status of IA posture by utilizing
USAFE-AFAFRICA/A2-approved IA tools and IA-enabled tools, including but not
limited to McAfee Security Center, cross domain transfer solutions, Defense
Information System Agency (DISA) Assured Compliance Assessment Solution (ACAS),
ArcSight, Host-Based Security System (HBSS), and SolarWinds Network Manager and
associated modules.

·

Provides customer a Security Vulnerability
Assessment report no later than (NLT) 10th day of following month.

·

Oversees DISA and AF-mandated system security
updates and patches, host-based security and antivirus signatures, application
updates and policy-based configuration changes.

·

Provide monthly Patching Report NLT 10th day of
following month.

·

Utilizing ArcSight; conducts and reviews audits,
and ensures records are maintained. The audit record should be available upon
demand, and include a chronological record of individual user actions in order
to reconstruct the events.

·

Ensures tests of system security are performed,
and results documented.

·

Evaluates the security consequences of proposed
modifications to software and hardware.

·

Identifies and analyzes system malfunctions with
a view towards security incidents/violations.

·

Integrates tools with other IT functions to
protect and defend IT resources.

·

Provides
CIA by verifying IA controls are implemented in accordance with DOD and Air
Force IA standards.

·

Ensures USAFE-AFAFRICA/A2-approved
administrative, physical, and technical safeguards are incorporated into all
new IT resources through certification and accreditation and protects IT
resources from malicious activity.

·

Attends required technical (e.g., operating
system, networking, security management, system administration) and security
training relative to assigned duties.

·

Recommends to the ISSM and/or PM any special,
significant, or unique issues, which need to be addressed.

·

Accesses only data, control information,
software, hardware, and firmware for assigned system(s) and assumes only those
Description:
roles and privileges which are specifically authorized.

Requirements:

·

Required to possess DoD Cyber Security Service
Provider (CSSP), formally Computer Network Defense-Service Provider (CND-SP),
certification. This can be satisfied
with CSSP Analyst, CSSP Infrastructure Support, or CSSP Auditor.

·

Must have at least a Top Secret clearance