Cybersecurity SME with Security Clearance

POSITION OVERVIEW We are looking for highly skilled Cybersecurity SMEs with PACAF MOB regional experience or knowledge to join our dynamic team based in Hawaii. If you have a strong background in cybersecurity, an in-depth understanding of PACAF environments, and the drive to lead in a mission-critical setting, we want you on our team. What You'll Do Cybersecurity Assurance & Compliance: Enhance and maintain PACAF cybersecurity by implementing cutting-edge controls following DoDI 8510.01 (RMF for DoD Systems) and other federal standards. Training & Mentorship: Share your expertise by mentoring cybersecurity teams at the Numbered Air Force (NAF) and Wing levels through our Cyberspace Readiness Review and Mentorship (CRR-M) program, ensuring teams are fully "cyber ready" for evolving threats. Operational Support: Play a key role in supporting PACAF Wings as they prepare for vital USCYBERCOM CORA and CCORI missions. Your deep regional knowledge will help secure both NIPRNet and SIPRNet networks. Data Management & Reporting: Keep our systems on track by updating and synchronizing cybersecurity data across essential Air Force and DISA repositories, and deliver detailed monthly progress reports. Vulnerability Management: Collaborate closely with PACAF vulnerability managers to proactively identify, manage, and mitigate potential security risks, reinforcing our overall cyber defense. Travel Opportunity: Based in Hawaii, you'll be traveling frequently throughout the PACAF region, ensuring direct, on-site support and integration with local teams. CORE EXPERIENCE REQUIREMENTS 2-3 years' experience in the following: Cybersecurity Execution: Executing Federal, National, DoD, USAF CIO, and US State Department requirements, including assessing cyber risks, identifying mission sets, and defending critical missions Advisory Expertise: Applying, assessing, and advising MAJCOM staff and Wings on cybersecurity requirements 2-3 year' experience with RMF/FISMA/ATO Requirements Conducting RMF/FISMA/ATO A&A Maintaining accreditation at a level consistent with AF, DoD and FISMA requirements for all base enclaves and providing situational awareness of assigned systems at MOBs and GSUs DISA Connection Approval Process vehicles (e.g., SNAP, SGS, GIAP, and CDS-approval) Expertise with FISMA compliance vehicle - AF centralized repository for FISMA reporting is ITIPS Expertise with AF System A&A process vehicles (e.g., eMASS, AF PPSM, AF Software Approval) to produce ATO, ATC, Interim Authority to Connect (IATC) 2-3 years' experience with CRM-M Requirements conducting assessments of SIPRNet/NIPRNet network, enclave, and system security posture providing guidance, mitigation recommendations and familiarization to personnel on cyber security to include prepare/advise pre-, post-, and during-inspections In-depth experience with DISA STIGs and by-product analysis 2-3 years' experience with CORA & CCORI Support Requirements Conducting inspections Expertise in Process vehicles (MADSS, ELICSAR, etc) Expertise with USCYBERCOM/DISA CORA Scoring Tools (option to utilize the AF "Cyber Ready 365") REQUIRED KSAs AF Cyber Architecture: Familiarity with AF Cyber architecture, including the roles of PACAF MOBs and GSUs. Cybersecurity & RMF/FISMA Support: Deliver cybersecurity and RMF/FISMA support by distributing current policies, providing guidance, and mentoring cyber forces. Regulatory Knowledge: Understanding of congressional FISMA, DoD, and AF cybersecurity directives. A&A Expertise: Extensive experience conducting on-site and virtual A&A validation and reviews using National/DoD/AF standards (e.g., DISA STIGs, NIST SP 800-12), and developing and maintaining A&A artifacts and packages across systems (CAP for SNAP, GIAP, eMASS, ITIPS, CMRS). RMF Deliverables: Proficiency in creating, revising, and submitting RMF products and deliverables via eMASS, including updating information in the AF central FISMA repository (ITIPS). Circuit Connection Processing: Knowledge of processing circuit connection requests through SGS and SNAP. Mentorship & Training: Demonstrated ability to mentor and train personnel on DoD cybersecurity tools, resolve issues with vulnerability scanning and endpoint security solutions. CORA/CCORI Preparation: Extensive experience preparing Wings for CORAs and CCORIs on NIPRNet/SIPRNet, utilizing DISA CORA scoring and risk assessment tools, and providing mitigation recommendations (including POAMs). Communication Tools & Collaboration: Proficient with email, MS Teams, SharePoint, VoIP, and the latest Microsoft Office Suite (PowerPoint, Excel, Word); skilled at collaborating with others and briefing technical information to both technical and non-technical audiences, including senior leaders. MINIMUM QUALIFICATIONS: IAT III in 1 of the following: CASP+CE, CCNP-Security, CISA, CISSP, GIAC-GCED, GCIH, CCSP Required Trainings: Completed or willing to complete upon start of work
Completed within the past year -Level 1 Anti-Terrorist Training -DoD Cyber Awareness Challenge -Operations Security (OPSEC) Awareness -Derivative Classification IF103.16 -Force Protection Level A Survival (completed within past 1-2 years) Evasion, Resistance, and Escape (SERE) Training USFK Training Active TS Clearance/SCI Valid Passport Bachelor's Degree in related field Based in Hawaii; Min 40% Travel to PACAF MOBs Candidate must be a U.S. Citizen and be authorized to work for the Federal government JOB RESPONSIBILITIES: Provide cybersecurity and RMF/FISMA support to PACAF mission owners, distributing current policies and offering expert guidance and mentorship to ensure compliance Assist PACAF MOBs and GSUs in improving and maintaining cybersecurity per congressional FISMA, DoD, and AF directives Conduct on-site and virtual A&A validations and reviews using National/DoD/AF standards (e.g., DISA STIGs, NIST SP 800-12) Collect, develop, and maintain A&A artifacts per AO Office guidelines, tracking updates in SNAP, GIAP, eMASS, ITIPS, and CMRS databases Create and manage comprehensive RMF products in eMASS, ensuring all deliverables (e.g., System Security Plans, Ports Protocol Services Matrices) meet applicable DoD and AF requirements Ensure synchronization of A&A data across AF and DISA repositories and process circuit connection requests via GIAP and SNAP for main bases Mentor and train NAF, Wing, and cybersecurity teams through the CRR-M program, including the use of DoD security technical implementation tools Resolve issues with DoD vulnerability scanning tools, endpoint security solutions, and assist in preparing PACAF Wings for CORA and CCORI missions Develop CORA and CCORI scores, Risk Assessment Reports, and provide recommendations for mitigations and POAMs