Comsec Specialist

Description

More About the Role:
Leidos is seeking a COMSEC Specialist to support efforts for the Service, Management, Integration and Transport (SMIT) Contract; supporting the largest IT services program for the Navy. Under the SMIT Contract, the Leidos team will deliver the core backbone of the Navy-Marine Corps Intranet, including cybersecurity services, network operations, service desk, and data transport. Ultimately, Leidos will support the Navy in unifying its shore-based networks and data management to improve capability and service while also saving significant dollars by focusing efforts under one enterprise network.

The candidate will serve as the COMSEC Services Specialist, supporting the Transport Services Team and the Government COMSEC Service Owner. The selected candidate will possess the skills associated with the execution of COMSEC Services, providing a broad range of information security activities and operations at an approved level of security, across the enterprise. The candidate for this position should have experience supporting a broad-range of programs associated with overall information assurance and cyber security support; inclusive of security configuration and management services, data protection, anti-virus, malware detection and protection, host-based and endpoint security solutions, and audit and accountability services.

What You'll Get to Do:

•Be able to adhere to and maintain the COMSEC requirements set by the Department of the Navy (DON) COMSEC Policy and Procedures manual (CMS-1A), and any additional requirements set forth by the COMSEC manager (KOAM).

•Assumes responsibility for all COMSEC inventory issued to include In Line Network Encryptors (INE) encryption equipment that is used or deployed at SMIT locations including remote sites, CONUS, and OCONUS. This includes implementations that are part of DSTB, Very Small Site Design (VSSD), Surge Kits, Executive Communication Kits, NMCI-managed encryption device at other sites, and any future solutions that use crypto devices.

•Oversees the deployment of COMSEC equipment to include (configure, installing, cabling, keying, and inventorying) to include new projects, End of life equipment, and tech refresh.

•Directs and manages inventory of crypto hardware and encryption electronic firefly and FTR keys. Participates in COMSEC inspections as required by COMSEC CO/Director and COMSEC account manager (KOAM).

•Manage and safeguard any offline ready spare COMSEC equipment under Government and/or Contractor safeguard.

•Trains other local team members as secondary COMSEC Local Elements in operating, configuring, safeguarding, and maintaining COMSEC equipment and Encryption keys.

•Manages submitted requests using the Request for Crypto Form SF153's and other relevant COMSEC account documentation.

•Ensures compliance with the DON for the designated COMSEC POC for cryptographic equipment related to deployments, repairs, and upgrades, as well as tracking the order to delivery.

•Manages any firmware upgrades for INE devices listed on the COMSEC account.

•Manages, monitors, and safeguards active encryption devices (in-network or accessed from outside the network).

•Ensure compliance with maintaining an up to date at all time COMSEC LE file/Binder.

•Manages encryption devices via DoD authorized management monitoring tool(s) and/or local console management capabilities.

•Performs other information security duties including Trusted Agent (TA) Public Key Infrastructure (PKI) token issuer and PIN reset roles as required.

Physical Requirements:

•Must be able to lift and carry 50 lbs. for up to a 100 feet at a time; must be able to lift 25 lbs. vertically using ladders.

•Must be able to work in confined spaces, such as raised floors or communications closets; must be able to work in noisy environments, such as data centers and operations centers; must be able to stand or sit for 8 hours at a time.

•Must be able to utilize basic hand tools such as screwdrivers and wrenches while rack mounting active and passive equipment using small screws and brackets.

•Must be able to identify different colors of wires and cables; must be able to see objects and information displayed in schematics, test equipment, and computer monitors; must be able to judge distance between objects to work safely on ladders and in confined spaces; must be able to use and read digital test equipment such as OTDR.

•Must be able to drive corporate vehicle to different locations to work on projects and troubleshoot; valid state license required.

You'll Bring These Qualifications:

•Require B.S. Degree and 4-8 years of prior relevant experience in order to operate within the scope contemplated by the level, with 5+ years of prior relevant experience (relevant experience may be substituted for a degree).

•US Citizen and DOD Secret Clearance, clearable to Top Secret.

•Must have a DoD 8570 IAT Level II Certification, such as the CompTIA Security + CE, ISC2 Systems Security Certified Practitioner (SSCP), or Cisco Certified Network Associate (CCNA)-Security.

•Flexibility to work independently, with vendors, or in teams, sometimes across geographic regions and members with varying information security abilities.

•Detailed knowledge of COMSEC regulations i.e. CMS-1A, CMS-3A, CMS-7, IA policies and applicable regulations, policies, and procedures.

•Demonstrated knowledge of NIST Information Technology Security Special Publications (SP) 800 series, with emphasis NIST SP 800-30, NIST 800-37, NIST 800-53a, NIST SP 800-61, NIST 800-171, DHS 4300A, CBP Handbook 1400-05D.

These Qualifications Would be Nice to Have:

•Bachelor's Degree in Computer Science, MIS, Business, or related field, with at least 8 years of prior relevant experience.

•IAT III qualified in accordance with DoD 8570.

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.