Dine Source is seeking an ISSM to support an Air Force program. We are seeking a motivated cybersecurity professional to join our Cyber team.  As a member of our team, you'll create system security plans, make cyber risk decisions, and conduct audits on NIPR systems.  

• Develops, implements, and maintains data strategies to ensure quality and accessibility 

• Develops/maintains the definition and documentation of architectural standards, reference architectures processes, operating models, and logical and physical data/associated data management resources 

• Ensure unclassified systems follow DoD and government regulations while still meeting program demands and operating in an accredited state. 

• Lead all aspects of SSP development, maintenance, accreditation/re-accreditation, and oversight, including conducting periodic reviews to ensure compliance. 

• Work with cybersecurity lead and be a primary contact for IS security inspections, tests, and reviews by oversight authorities. 

• Other duties as assigned.  

• Must have at least an active Secret Clearance  

• Have acquired a BS in Computer Science, Cyber Security, or a related field; with 8+years of relevant cybersecurity experience;  

• Must have one of the following current certifications: CASP+, CISSP, CISSP Associate, or GSLC. 

• Have 3+ years working with the Air Force RMF security frameworks, including DoD and Air Force security policies and instructions. 

• Must have the experience and the ability to provide tactical information security advice and manage all Cybersecurity related activities for current or future IT platforms 

• Must work in conjunction with a multi-contractor team in support of Cybersecurity, continuous monitoring, and other emerging compliance requirements. 

• Must ensure Federal Information Security Management Act (FISMA) requirements 

are being met and track in the Air Force’s Information Technology Investment 

Portfolio Suite (ITIPS). 

• Must ensure that software, hardware, and firmware comply with appropriate IAVM’s. 

• Must track and action POA&M entries as part of the RMF process. 

• Experience is required for reviewing and updating STIG results. 

• Must ensure Continuous Monitoring is adhered to. 

• Must have working experience with Risk Management Framework and NIST 800-53 revision 4 and revision 5 controls 

• Must have experience working within eMASS and obtaining an ATO 

• Must be familiar with performing Security validation testing through a DevSecOps process and within both on-premises and a Cloud Environment 

• Mush have experience with ACAS, utilizing Splunk, reviewing of audit logs, and other cybersecurity monitoring functions 

• Ability to identify risks of implementing technology solutions and analyze the impact on achieving desired business outcomes 

 

This contractor and subcontractor shall abide by the requirements of 41 CFR 60–1.4(a), 60–300.5(a) and 60–741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.

 

Diné Development Corporation (DDC) is a Navajo Nation owned family of companies that delivers IT, professional, and environmental solutions to advance the missions of federal, state, and tribal government agencies. As thought leaders and innovators, our team of specialists build client-centric solutions that solve critical challenges faced by defense, civilian, and healthcare organizations. Employing a mission-focused approach, we deliver value that not only enhances current operations, but also drives future change. Closely aligned with this approach is our commitment to advancing the Navajo Nation and its People. Through economic development and community empowerment, we elevate the Navajo Nation to provide lasting impact and sustainable growth for future generations. DDC’s ability to unite legacy-inspired technologies, industry best practices, and proven methodologies has contributed to our success for twenty years.

 

This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation, or any other basis prohibited by law. We participate in E-Verify.

DDC offers a comprehensive range of IT solutions to support clients in defense, healthcare, national security, law enforcement, and intelligence. Focused on innovation, DDC leverages modern technologies and best practices to deliver client-driven solutions in areas like systems/software engineering, data management, cloud adoption, and cybersecurity. They are recognized for driving mission success through efficient processes, cost reduction, and technological advancement.