Cybersecurity ISSO (Journeyman)

Torch Technologies Thank you for your interest in employment with Torch Technologies. We are a 100% employee-owned, Certified Great Place To Work and named Best Places to Work in Huntsville/Madison County, headquartered in Huntsville, AL. Our team provides superior research, development, and engineering services to the Federal Government and Department of War. As one of the nation's top 100 defense companies, the services we provide directly support the men and women who serve our country. Our corporate mission sums up the pride our employee-owners take in the work we do: "Lighting the Pathway of Freedom". And, as a Certified Evergreen ESOP, we have made the commitment to grow and sustain our company for the next 100 years! Come grow with us! Torch Technologies has an exciting opportunity for a Cybersecurity Engineer (ISSO) located Kettering, OH (Dayton/WPAFB area) to support our

EPASS GB

contract. As part of the

AFLCMC/GB

Business and Enterprise Systems Directorate (BES), Contracting Systems is a combined Government and Contractor team provides Information System Security Manager (ISSM) and Information System Security Officer (ISSO) support to

AFLCMC/GBB

Division programs.

Programs requiring support:

ConWrite, CPRS, CBIS, ACPS, and FARSite. The successful candidate will provide the PMO/Capability Development Manager (CDM) cybersecurity support per DoDI 8500.01. Support includes assessing and continuously monitoring cybersecurity risk ensuring that legacy and new capabilities adhere to enterprise standards such as Risk Management Framework (RMF), Cybersecurity Framework (CSF), and National Institute of Standards and Technology (NIST) and per Authorization Official's Information System's Continuous Monitoring (ISCM) strategy. The Information System Security Officer (ISSO) is responsible for ensuring the appropriate operational security posture is maintained for the assigned IT. This includes the following related to maintaining situational awareness and initiating actions to improve or restore cybersecurity posture. As a Cybersecurity Engineer (ISSO) your duties include, but are not limited to the following: Provide the PMO/Capability Development Manager (CDM) cybersecurity support per DoWI 8500.01. Ensures the appropriate operational security posture is maintained for the assigned IT. Implements and enforce all AF cybersecurity policies, procedures, and countermeasures. Completes and maintains required cybersecurity certification

IAW AFMAN 17-1303.

Ensures all users have the requisite security clearances and need-to-know, complete annual cybersecurity training, and are aware of their responsibilities before being granted access to the IT according to

AFMAN 17-1301.

Maintains all authorized user access control documentation IAW the applicable AF Records Information Management System. Ensures software, hardware, and firmware complies with appropriate security configuration guidelines, e.g., security technical implementation guides/security requirement guides. Ensures proper configuration management procedures are followed prior to implementation and contingent upon necessary approval. Coordinate changes or modifications with the system-level ISSM, SCA, and/or the Wing Cybersecurity office. Initiates protective or corrective measures, in coordination with the ISSM, when a security incident or vulnerability is discovered. Reports security incidents or vulnerabilities to the system-level ISSM and wing cybersecurity office according to AFI 17-203, Cyber Incident Handling; and, Initiates exceptions, deviations, or waivers to cybersecurity requirements.

Required Qualifications:

U.S. Citizenship Bachelor's or Master's Degree in a related field and at least three years of experience in the respective technical/professional discipline being performed, three of which must be in the DoW OR Seven years of directly related experience with proper certifications, five of which must be in the DoW. Must have the knowledge, experience and demonstrated ability to perform tasks related to the technical/professional discipline they are performing. Typically works independently and applies the proper procedures and processes related to their area of expertise. Must have the ability to problem solve and troubleshoot various situations to develop successful outcomes within established program/project guidelines. Work is performed independently or under the oversight of more senior contractor employees (Program Office and Staff Level Support interface). All Cybersecurity professionals should possess experience providing guidance on the following to include, but not limited to: Access control. Configuration management. System and communications protection. Contingency planning. Incident handling. System and information integrity. Security and privacy training and awareness; and, Software development activities, software and tools related to Cybersecurity. Experience performing cybersecurity duties as outlined in DoWI 8500.01, AFI 17-130, and

AFI 17-1301

for assigned AF IT. Experience validating, evaluating and analyzing finding results and developer adjudications using automated testing tools, e.g., Fortify, Checkmarx, SonarQube, and AppScan. Experience utilizing DoD tracking systems to input/document cybersecurity deficiencies, vulnerabilities, and change requests in the appropriate tracking system for each program, e.g., Jira, HP ALM, and eMASS. Experience with conducting information security continuous monitoring (ISCM) by maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions IAW approved ISCM strategy. Must have the ability to problem solve and troubleshoot various situations to develop successful outcomes within established program/project guidelines. Must perform work independently or under the oversight of more senior contractor employees (Program Office and Staff Level Support interface). At a minimum, the successful candidate will meet the requirements for and maintain a personnel certification associated with the

DCWF ISSO

work role (722) at an intermediate (journeyman) proficiency level as outlined in DoWI 8510.01, AFMAN 17-1305 and

AFI 17-101

for assigned systems/applications: (ISC)2 CGRC/CAP CompTIA CASP+ (ISC)2 CCSP CompTIA Cloud+ (ISC)2 SSCP CompTIA Security+ CE (GIAC) GSEC Must have and maintain a T3/Secret security clearance.

Schedule:

(M-F; 8-5)

Work Location:

Kettering, OH (Dayton/WPAFB)-

Onsite Travel:

0-10%

Relocation Assistance Available:

No Position Contingent Upon Award of Contract:

No #LI-EW1

Benefits:

Torch Technologies is proud to offer a stable and professional work environment, a competitive salary, and an excellent, comprehensive benefit package including: ESOP participation, 401(k) match and safe-harbor contribution, medical, dental, vision, life insurance, short-term disability, long-term disability, flexible spending accounts, Health Saving Accounts and Health Reimbursement Accounts, EAP, education assistance, paid time off, and holidays. Applying to

Torch Technologies:

Only those candidates invited for an interview will be contacted. Employment at Torch Technologies is contingent upon the successful completion of a comprehensive background check. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, citizenship, ancestry, marital status, protected veteran status, disability status or any other status protected by federal, state, or local law. Torch Technologies, Inc. participates in E-Verify. If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access Careers Link as a result of your disability. You can request reasonable accommodations by sending an email to HR@torchtechnologies.com. Thank you for your interest in Torch Technologies. Torch Technologies is dedicated to providing superior research, development, and engineering services to the Department of Defense. As defense contractors, the services we provide directly support the men and women who serve our country. From the CEO's desk... When Bill Roark and Don Holder founded Torch in 2002, they knew that employees were the company's greatest asset. They believed that offering employees a stake in the outcome, by making them all owners, was critical to building a successful organization. I share that feeling. Bill and Don's original intent was fully achieved in 2011 when Torch converted to a 100 percent S-Corp ESOP. Since that time, the company has grown over ten-fold and gained national recognition for the success we have demonstrated as an employee-owned company. Today, Torch continues to respect the individual contributions of our employee-owners and to share the rewards of our success. In addition, we continue to foster an environment of employee recognition, respect, development, and comradery while striving to achieve a healthy work-life balance. We recognize that core to our company is a culture of trust with our employees, customers, business partners, and community. Our management team is committed to continue to earn that trust. This past year, Torch proudly announced that we were Certified Evergreen™. A timely achievement for Torch employee-owners as they will celebrate Torch's 20th anniversary this October, becoming Certified Evergreen™ signifies that while Torch employee-owners can look back on Torch's past with pride, Torch is also looking forward. Becoming Certified Evergreen™ means that Torch has committed to finding ways to make 100 percent employee ownership sustainable so that Torch will remain a private company forever. Going forward, Torch will continue to evolve to address market and technology changes in order to become a major provider of cost-effective technical services and solutions to the Warfighter. We are making significant investments into facilities, equipment, business systems, and research to enable us to provide innovations and timely business services to our clients. We feel that always looking to improve our service is key to sustaining customer trust in the future. Likewise, we believe that continuing to share ownership is one of the ways we maintain employee trust and an unparalleled commitment to succeed. Combined, these timeless principles form the basis of the Torch culture. A culture that we are committed to continue and strive to pass on to the next generation of employee-owners as an Evergreen Company.