Job Details

Information Systems Solutions (ISS) is seeking a Cyber Security Auditor to join our team supporting Network Enterprise Technology Command (NETCOM) in Honolulu, HI. The CSFC Solutions Auditor will assist and support the development, configuration, testing, and evaluation of Commercial Solutions for Classified (CSfC) solutions used to secure government customers' classified data and networks. The Engineer will work individually and as a member of a team to configure network, software, and hardware networking components and security appliances and applications to meet DoD requirements and support their installation and initialization onsite in the customers' environments.

Specific Job Duties Include

• Coordinate with the NSA CSFC PMO on all CSFC related documents and statuses.
• Prepare documents required for NSA registration (Checklist, Annex, Deviations, ConOps, etc.).
• Prepare daily, weekly, and monthly reports describing the task status in accordance with task order report template.
• Review, manage, control, and maintain security audit log data.
• Document and report security-related incidents to appropriate authorities.
• Perform annual assessment of NSA capability packages checklists and Cross Domain Solution registrations.
• Perform authorization continuous monitoring on all Risk Management Framework (RMF) packages.
• Evaluate an array of IT devices (e.g., Windows, RHEL, Cisco routers, switches, firewalls, etc.) for DoD compliance using SCAP Compliance checker, ACAS, Evaluate STIG, and via manual STIG check reviews.
• Be proficient in navigating through the eMASS application.
• Provide DoD Cybersecurity analysis and risk‑based security recommendations for the CSfC system.
• Assess CSfC in accordance with DoDI 8500, DoDI 8510 and NISP SP 800‑53.
• Review updated and/or develop NSA registration artifacts (e.g., SSP, POA&M, MOU/MOA, topology, network architecture, PPSM, policies and procedures, HW/SW lists) for CSFC compliance.
• Support CT&E or DT&E activities of system security engineering and program protection activities.
• Identify the mitigation controls for identified risks and propose additional strategies for identified vulnerabilities.
• Support all Cross‑Domain solution requirements.
• Act as the Cybersecurity Subject Matter Expert.
• Consult on other projects when needed.
• Engage in continuing education and learning new and evolving technology.
• Perform special projects and other duties assigned.

Why Work for ISS

ISS prides itself on an employee‑focused, family‑first environment. As a small business we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We schedule regular social gatherings to foster camaraderie and provide a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career.

Requirements

Clearance Level

• Top Secret OR Higher OR Secret Clearance level with completed T5 investigation.

Certifications (IAM Level III)

• CISM
• CISSP (or Associate)
• GSLC
• Computing Environment Certification (e.g., Security+)

Required Skills

• 5 or more years of experience in cybersecurity.
• BA/BS = 5 years; AA = 7 years.
• Ability to travel – Less than 20% of travel required.

Seniority Level

• Mid‑Senior level

Employment Type

• Full‑time

Job Function

• Information Technology

Industries

• IT Services and IT Consulting