Information Systems Security Specialist III

When you join the Cambridge team, you are part of a skilled and talented global community that is united by a set of core values: commitment, integrity, and perseverance. Join our team and help us confront today’s most threatening and complex obstacles!

Cambridge International Systems, Inc. has a full-time Information Systems Security Specialist III opportunity available based in Norfolk, VA. Qualified candidates for this job must possess a current DoD Top Secret security clearance.

• The Information System Security Specialist is responsible for supporting all aspects of a Program Information Assurance (IA) processes tailored to include minimum qualification standards, fundamental awareness and familiarity to demonstrated competency with specific experience in Cyber Security, Engineering, Test & Evaluation, (T&E) and/or Security Control Assessor (SCA) under a Certification & Accreditation (C&A) and/or Assessment & Authorization (A&A) process.
• The specialist should demonstrate a working knowledge of the Risk Management Framework (RMF) process and/or include prior experience with the Defense Information Assurance & Certification Accreditation Process (DIACAP).
• Familiarity with security policies & guidance documents to assist with the preparation and maintenance of process artifacts, traceability documents purposed for compliance with Authority to Operate (ATO) requirements.
• The specialist is expected to evaluate security solutions to ensure they meet security requirements for processing up to classified information, and supervise and/or maintain the operational security posture for an information system or program.
• More senior specialists may assist or develop system security policy and ensure compliance of change management and configuration control processes. Plan and coordinate the IT security program and policies supporting the command leadership mission and goals.

• Must possess an active DoD Top Secret security clearance.
• Bachelor’s degree in a technical or managerial related discipline or High School Diploma or GED. Individual shall meet the latest Cybersecurity workforce certification/training in accordance with DoD 8570.1M and subsequent DoD 8140 manual, as applicable.
• Five (5) years with bachelor's degree or seven (7) years with HS/GED of practical experience demonstrating competency in Cybersecurity, Engineering, Test & Evaluation (T&E) or Assessment & Authorization (A&A)/ Certification & Accreditation (C&A) related field.
• Individual shall demonstrate a working knowledge of the Risk Management Framework (RMF) process and/or include prior experience with the Defense Information Assurance & Certification Accreditation Process (DIACAP).
• Individual shall have experience working with Information Assurance tools such as DISA Enterprise Mission Assurance Support Service (eMASS), Assured Compliance Assessment Solution (ACAS) and may be required to hold an Interim Security Control Assessor qualification.
• Individual shall be familiar with security policies & guidance documents to assist with the preparation and maintenance of process artifacts, traceability documents purposed for compliance with Authority to Operate (ATO) requirements.
• The specialist shall be capable of evaluating security solutions to ensure they meet security requirements for processing up to classified information and supervise and/or maintain the operational security posture for an information system or program.
• Individual shall have experience assisting or developing system security policy and ensuring compliance of change management and configuration control processes.
• (Role: Senior RMF SME/NQV) Information Assurance Technical (IAT) III and Navy Qualified Validator (NQV) certification. Seven (7)+ years of experience with A&A for OT or control systems. Experience may be achieved simultaneously.
• Have worked with Information Assurance tools such as DISA Enterprise Mission Assurance Support Service (eMASS), Assured Compliance Assessment Solution (ACAS) and may be required to hold a Full Security Control Assessor qualification.
• IAT III
• Must be proficient in using different technologies such as computers and other tools and systems pertinent to the position.

• In some occasions, overnight travel may be required.

• Cambridge International Systems complies with Temporary Duty Station (TDY)/Outside Continental United States (OCONUS) vaccination requirements. If this position requires OCONUS travel, Vaccine Recommendations by AOR | Health.mil lists applicable current vaccination requirements by location.
• Must be able to work in an office environment, sitting at a desk, looking at a computer for most of the workday.
• Work is physically comfortable; the employee has discretion about sitting, walking, standing, etc.
• May be required to travel short distances to offices/conference rooms and buildings on site.

Please note that any offer of employment is contingent upon a background investigation. In connection with working on certain federal contracts, a drug screen may also be required.

Cambridge International Systems is committed to investing in our employees and their future by providing them with competitive compensation, career development opportunities, comfortable working conditions, and a comprehensive benefits package, some of which are listed below:

• Medical, dental, vision, Life/AD&D/STD/LTD insurance
• 401(k) matching and immediate vesting
• Paid time off and holidays
• Generous tuition & training assistance program
• Relocation assistance
• Sign-on bonuses
• Referral bonuses
• Performance-based bonuses
• Community involvement & outreach
• Wellness program
• Employee Assistance Program (EAP)
• Tickets at Work