Responsibilities:
Provide support to design, develop, and maintain the client's systems compliance with ICD 503 requirements. This also includes advising and assisting the client with: security and network accreditations; providing the client with a working understanding of the latest networking communications and protocols, server technologies, application technologies, and security vulnerabilities, organizing and maintaining awareness of both physical and logical placement of network nodes within a network; identifying software components that fulfill mission requirements; and translating a network's technology requirements into usable solutions. Prepare and maintain documentation for specified networks that provide a reference for users to understand the established restrictions associated with those specific networks. Develop and maintain System Security Plans (SSP) to meet ongoing security requirements. Ensure approved SSPs are kept up to date as changes are made to the networks.
Implement security requirements and ensure compliance with the client's Information System Security Manager (ISSM) approved SSPs for all networks. This includes: establishing or utilizing existing access control mechanisms; defining and configuring the appropriate firewall settings; conducting intrusion detection and prevention; conducting vulnerability scanning; conducting anti-virus management; and conducting the necessary incidence response actions in accordance with client security policies.
Exercise robust network oversight that incorporates rigorous compliance, privacy and data security standards and achieves the following objectives:
• Secure network. High network availability.
• High functionality and usability.
• High network performance.
• Low infrastructure cost and risk.
• Complete record of ongoing network changes to include activity logging and auditing.
