Responsibilities: Provides direction and oversight of security performance monitoring, process production, process integration, and configuration management that requires extensive and direct experience in all phases of the information system security engineering life cycle including requirement analysis, design, development, testing, integration, and maintenance.  Uses structured methods in information protection system design to evaluate complex security solutions for enterprise wide systems.  Selects and implements information security controls, methods, and procedures to address requisite information security policies for the protection of information and system assets. Monitors all related security policies and procedures for compliance, and leads development efforts to produce applicable governance documents. 

Required: Candidates will be knowledgeable of DoDD 5200.28 (Security Requirements for Automated Information Systems (AISs), DoDI 5200.40 (DoD) Information Technology Security Certification and Accreditation Process – DITSCAP), DoD 5200.2R (DoD Personnel Security Program) and DCID 6/3 requirements.

Preferred: CISSP