Description

• Determine client security control requirements.
• Implement security controls in MCCAST.
• Conduct annual review of each MCCAST record’s security controls (via testing, examining, or interviewing).
• Assess the effectiveness of cybersecurity measures utilized by system(s).
• Assess threats to and vulnerabilities of computer system(s) to develop a security risk
• profile.
• Identify and direct the remediation of technical problems encountered during testing and implementation of new systems (e.g., identify workarounds for communication protocols that are not interoperable).
• Identify, assess, and recommend cybersecurity or cybersecurity-enabled products for use within a system and ensure that recommended products comply with the organization's evaluation and validation requirements.
• Work with customer to determine functional needs, develop secure architectures, and communicate security best practices and policies.
• Document solutions for any network-related security configurations for network architecture or current fielded programs and experiments.
• Develop, implement, and document best practices for setting up and securing network devices, applications, servers, databases, and appropriate system components.
• Perform cybersecurity hardening and security monitoring on network infrastructures (STIGs, patching, ACAS scanning, etc.).
• Manage/maintain security related configurations within the network based on operational requirements.
• Incorporate cybersecurity vulnerability solutions into system designs (e.g., Cybersecurity Vulnerability Alerts).
• Provide guidelines for implementing developed systems to customers.
• Provide input to the Risk Management Framework (RMF) process activities and related documentation.
• Provide support to security/certification test and evaluation activities.
• Ensure that security design and cybersecurity development activities are properly documented.

• CNSSI 4014-Information Systems Security Officers (ISSO).
• CompTIA Security+.
• Experience with Marine Corps Information Security programs, authorization procedures and requirements as well as interacting with higher military headquarter elements.

• Bachelor’s degree in Cybersecurity, Information Technology, or related field.
• Certified Authorization Professional (CAP).
• GIAC Security Leadership Certification (GSLC).
• CID M09BNJ1 Cybersecurity Technician.
• CNSSI 4013-System Administrators.
• NDU CISO certificate – Chief Information Security Officer (CISO).