Location: Lackland AFB; San Antonio, TX
Clearance Required: TS/SCI; Applicant may be required to submit to a polygraph.
Required Citizenship: Must be a U.S. Citizen
POSITION DESCRIPTION:
G6 Cyber Solutions (G6CS) is at the forefront of delivering innovative technology solutions that enhance national security and support critical military operations. Our commitment to excellence drives us to develop and maintain cutting-edge systems and capabilities in direct support of the warfighter.
Currently, G6CS is seeking a motivated and mission-oriented Information Systems Security Officer (ISSO) to join our team in support of Air Force operations at Lackland AFB. In this role, you will serve as the on-site security authority responsible for the day-to-day cybersecurity posture, access management, and continuous compliance of customer information systems, working in close coordination with the Information Systems Security Manager (ISSM). If you thrive in a dynamic, classified environment with a focus on cybersecurity, access control, and system compliance, this is an opportunity to contribute to mission-critical projects that make a real difference.
Required Experience:
- Bachelor's degree and five (5+) years of related secure information system experience, or any equivalent combination of education, training, and experience in lieu of degree.
- Working knowledge of system functions, security policies, technical security safeguards, and operational security measures.
- Working experience with ICD 503, CNSSI 1253, NIST SP 800-53/53A, STIGs, NISPOM Chapter 8, and DAAPM Manual.
- Hands-on experience with eMASS for maintaining system artifacts, control implementation details, and authorization documentation.
- Experience processing System Authorization Access Requests (SAAR / DD Form 2875) and managing user account provisioning and de-provisioning.
- Experience with ACAS for vulnerability scanning and DISA STIG compliance validation.
- Experience identifying and defining security requirements based on organizational need or as the result of a security issue that puts systems at risk.
- Administrative knowledge of Microsoft operating systems.
- Strong documentation skills with the ability to create, maintain, and document security baselines and configuration management records.
- Excellent verbal and written communication skills with strong customer service skills.
Nice-to-Have Experience:
- Experience with system log analysis and SIEM tools such as Splunk or Elastic.
- Familiarity with providing security education and awareness training to cleared personnel.
What You Will Be Doing:
- Execute and log authorized data transfers across security domains using approved cross-domain solutions (CDS) or physical media.
- Enforce strict scanning protocols on all data and physical media prior to introduction to the target network, utilizing standalone scanning kiosks or designated systems.
- Review, validate, and process System Authorization Access Requests (SAAR / DD Form 2875) for all incoming personnel, ensuring required training and clearance levels are met.
- Manage the provisioning, modification, and prompt de-provisioning of user accounts to prevent unauthorized access by separated or transferred personnel.
- Conduct periodic account audits to verify that users retain only the network permissions and group memberships strictly necessary for their current duties.
- Ensure all local administrators have signed and updated Privileged Access Agreements (PAAs) acknowledging their elevated responsibilities and monitoring status.
- Ensure all workstations employ mandatory security measures, including screen locks, Common Access Card (CAC) enforcement, and current anti-virus definitions.
- Enforce DoW policies regarding the strict prohibition or controlled use of unauthorized removable media (e.g., USB flash drives, external hard drives) on government systems.
- Maintain and update the Enterprise Mission Assurance Support Service (eMASS) repository with accurate system artifacts, topology diagrams, and control implementation details.
- Track, update, and drive the remediation of vulnerabilities listed in the Plan of Action and Milestones (POA&M) to reduce the system's residual risk.
- Analyze security scans (ACAS) and system logs (Splunk/Audit) to validate that implemented security controls remain effective and compliant with DISA STIGs over the system's lifecycle.
- Deliver security education and awareness training to cleared employees.
Certifications:
Minimum:
-
CompTIA Security+ and DoW 8140 IAT Level II qualification or higher.
Nice-to-Have:
-
Additional certifications in cybersecurity, risk management, or information assurance relevant to DoW environments.