Odyssey Systems Consulting Group, Ltd. Hiring for Cyber Security SME at Dayton, Ohio Full Time

Odyssey Systems has an exciting new opportunity for a Cybersecurity SME supporting the KC-46 Division (AFLCMC/WKC), Wright Patterson AFB, OH. AFLCMC/WKC directs the development, test, production, deployment, and sustainment of the KC-46 aircraft, support, and training systems.

Duties include, but not limited to:

Basic Engineering Support

• Apply an understanding of DoD, AF, and common engineering/scientific principles, processes, and procedures to improve the performance and sustainability of existing and future AF and joint service weapon systems.

• Have an understanding of applying MIL-HDBK-516C Airworthiness Certification Criteria, to aircraft systems and subsystems. Support the System Integrity Programs including Mechanical Systems Integrity Program (MECSIP), assist in maintaining and updating the Critical Safety Item (CSI) list, and monitor airworthiness certification for mission partner aircraft. Understand and execute Air Force Policy Directive (AFPD) 62-6, USAF Airworthiness, associated AFIs and Airworthiness Bulletins through standardized processes and issuance of flight authorizations.

• Assist in translating user requirements into weapons system requirements, which will be used to design, develop, fabricate, test and evaluate weapons systems, subsystems and equipment for eventual fielding and deployment. Assist with the development of requirements and technology needs into action plans and policies necessary to improve and retain world class manufacturing, operations, re-manufacturing, and de-militarization/disposal of weapon system capabilities within the USAF. Assist in performing technical/mission analyses of existing and future operational requirements, assist in developing system concepts and perform technological/trade-off assessments of proposed designs/modifications. Assist in providing rapid response engineering service and support as augmentation to organic resources through in-depth problem identification, impact assessment, and development of corrective actions for critical supportability problems. Support and assist in conducting the system safety engineering program, including mishap risk assessments; evaluating contractor safety proposals and safety analyses; evaluating safety concerns of using and support commands; and assisting with resolution of high priority safety issues.

• Assist in performing material solution analyses leading up to design reviews. Assist in producing or supporting development of draft documentation and presentation materials as requested or necessitated by programmatic limits based on cost, schedule, and performance.

• Assist in translating user requirements into system requirements, which will be used to design, develop, fabricate, test and evaluate systems, subsystems, and equipment for deployment.

• Assist in providing support to produce or review products that include the following: technical evaluations/plans; engineering studies, reports, and analyses; and acquisition strategies/plans such as: ICD; Operational Requirements Document (ORD)/CDD; CONOPS; CPD; System Requirements Document (SRD); System Specification; RFPs; System Engineering Plan (SEP); Test and Evaluation Master Plan (TEMP); Test Acceptance Procedures (ATPs); Program Environment, Safety, and Occupational Health Evaluation (PESHE); information support plan; PPP; Technology assessment/Control Plan (TA/CP); emerging technology assessments and Technology Transition Plans (TTPs); Information Assurance Strategy (IAS); Security Classification Guide (SCG); Alternative Live Fire Test and Evaluation Plan; Clinger-Cohen Act (CCA) compliance; Consideration of Technology Issues; Data Management Strategy; Chemical, Biological, Radiological, and Nuclear (CBRN) Survivability Assessments; Net-Centric Data Strategy; Spectrum Supportability Determination; Technical Data Rights Strategy; Technology Readiness Assessment (TRA); Manufacturing Readiness Assessment (MRA); and other program/technical documents as required.

• Assist in developing and collecting technical data and inputs for staff summary packages and executive briefings to support coordination and signature of all associated documents for milestone approvals. support project team meetings, working groups, and reviews as needed, such as: SRR, PDR, CDR, TRR, TCM, TIM, FCA, PCA, PRR, PMR, and other meetings/working groups/reviews as applicable.

• Assist in analyzing equipment and software deficiencies; make recommendations for equipment and software deficiency corrections; and assist in developing, integrating, and testing equipment and software deficiency solutions.

• Assist the USG in the engineering evaluation of prime and subcontractor recommendations for operational and support issues including but not limited to evaluations of Advance Change Study Notices (ACSN), ECPs, Contract Change Proposal (CCPs), FAA bulletins, modification proposals, DMSMS, program risk, and related documents.

• Assist in the development and evaluation of IMP, IMS, and Systems Engineering Detail Schedule (SEDS) engineering cost estimates.

• Perform, as required, an advisory role for program weapon system contractor source selections on all engineering related requirements.

• Assist the USG in the performance of disciplined engineering activities to assure OSS&E for all products. Follow the Life Cycle Systems Engineering (LCSE) and OSS&E related AFIs and all lower-level supplements and related documents including applicable OIs.

• Assist with establishing, implementing, and adhering to LCSE processes to ensure OSS&E compliance is achieved and maintained. Aid the Air Force in reviewing and updating the OSS&E baseline document and shall support the Air Force in the identification of OSS&E elements, progress reporting of OSS&E metrics, and interaction with other organizations to ensure continued OSS&E compliance.

• Assist with the implementation of the SEP throughout program operations and advise the USG of pertinent shortfalls or gaps for which corrective actions may be needed.

• Participate in value stream mapping activities and Air Force Smart Operations for the 21st Century (AFSO21) program facilitation.

• Understand the AFSO21 initiative and shall be able to apply and facilitate performance improvement events and actions to ensure the use of best engineering practices.

• Assist in translating production and operational requirements into design, fabrication and testing objectives. Also provide analysis and recommendations to systems suitability for installation, functionality and reliability of systems and readiness of existing manufacturing processes.

• Assist in generating and managing configuration management, data management, and risk management processes and plans; support environmental assessments, support design reviews, TIMs, interface control meetings, program management reviews, audits and other technical reviews; and have a thorough knowledge of DR procedures and processes.

• Assist in producing and/or reviewing technical evaluations, engineering studies, reports, analyses, and acquisition plans and strategies.

• Assist in milestone preparation as well as engineering evaluation of OEM and subcontractor recommendations for operational and support issues such as: evaluations of Advance Change Study Notices, ECPs, Contractor Change Proposals, FAA bulletins, and related documents.

• Apply OSS&E and airworthiness processes, as well as assist in providing risk assessments, safety analysis and recommendations, and address high priority safety issues.

Systems Security Engineering

• Knowledge of Systems Security Engineering (SSE) disciplines to include: Anti-Tamper, Trusted Systems & Networks, Cybersecurity, Hardware/Software/Firmware Assurance, Supply Chain Risk Management, Acquisition Security, Cyber Resiliency, and Information Protection. Knowledge of SSE sub-disciplines to include: Critical Program Information (CPI) Identification, Critical Component Identification, Threat and Vulnerability Analysis, Test & Evaluation, and Risk Identification and Management.

• Support the Systems Engineer with program engineering milestone reviews, test planning, and certification and accreditation packages. Review/develop/update applicable systems security engineering program documentation.

Cybersecurity Subject Matter Expert (SME)

• Maintain the appropriate baseline certification and continuing education for their assigned position category or specialty and level (Information Assurance Technical [IAT], Information Assurance Manager [IAM], Information Assurance System Architects and Engineering [IASAE], or CSSP) according to the Cyber Workforce Management Program (DoDD 8149.01 & DoD 8570.01m) as documented at https://public.cyber.mil/cwmp. If the contractor does not currently possess the required baseline certification or continuing education, they will be given 6 months to attain the required certification.

• Responsible for the maintenance and support of DoD and Air Force computing systems and networks (both unclassified and classified). This position will require the individual to obtain/maintain classified systems administrative privileges for SIPRNet and other systems. Perform system trusted downloads, burning classified Compact Discs (CDs), maintain and update host system patches, implement mandated system vulnerability mitigations and set up user accesses and accounts. Personnel shall demonstrate proficiency in currently utilized Windows Operating Systems (OS), Windows group policy objects, DoD Cybersecurity, National Institute of Standards and Technology (NIST) Risk Management Framework (RMF), Security Technical Implementation Guides (STIGs), Endpoint Security System (SS)/Host-based Security System (HBS) and DoD Public Key Infrastructure (PKI).

• Assist the Information Systems Security Manager (ISSM) and provide multi-discipline expertise covering project management, system security engineering, system administration, and network administration.

• Provide direct support to assure compliance to the most current revision of the Security Directives applicable to Platform Information Technology (PIT), PITI and non-PIT systems being supported. These include DoDI 8500.01, Cybersecurity, DoDI 8510.01, RMF for DoD IT, JSIG, NIST 800-53, and directives/guidance identified in DoDI 5000.02.

• Provide cybersecurity support to assigned systems and shall assist in developing, modifying, reviewing or coordinating items that include, but are not limited to: PIT determination package, cybersecurity strategy (formerly IAS), System Security Plan (SSP), system controls traceability matrix, risk assessment report, plan of action and milestones, security assessment plan, artifacts for program review and RFP. Assist in executing the cybersecurity RMF to support Assessment and Authorization (A&A) of assigned systems.

• Review required program office artifacts and make recommendations to support cybersecurity RMF analysis. Review and assist in coordinating approval for sanitization and declassification plans and/or procedures. Assist in performing vulnerability, threat, and risk assessments, and security impact assessments on assigned systems, modifications, and interconnections. Assist in developing an A&A report and an A&A presentation for each required system to support approval decisions.

• Assist in managing, planning, documenting and conducting Independent Verification and Validation (IV&V) of security requirements for weapon systems. Assist in evaluating the technical implementation of the security design to ascertain that security software, hardware and firmware features affecting confidentiality, integrity, availability, accountability and non-repudiation have been implemented as documented in the Director of Central Intelligence Directive (DCID) 6/3, JSIG, DoDI 8500.01, DoDI 8510.01, and NIST 800-53, and that the features perform properly. Assist in documenting and reporting IV&V test plans, results, anomaly reports, recommendations, activity reports and other special reports as required.

• Assist in performing cybersecurity site audits to verify architecture analysis, cybersecurity requirements and controls, verify mitigation actions, witness cybersecurity testing and evaluation, and to support final approval for Interim Authority to Test (IATT), Interim Authority To Operate (IATO), Authority To Operate (ATO), and/or Authority To Connect (ATC). Assist in documenting and reporting cybersecurity site audit findings and recommendations to the program office and/or Security Certification Authority (CA).

• Assist in identifying the Software Assurance (SWA) pedigree (including platform software) and QA issues and documenting the results. Assist in performing software security analyses to assess the vulnerabilities and risks. The results should be documented and reported to the PM and the Security CA. Assist with developing an approach for performing operational SWA sensitivity analysis. Assist with developing SWA test metrics for inputs to the TEMP.

• Assist the Government in conducting Supply Chain Risk Management (SCRM). Assist in developing and documenting SCRM plans and implementation activities in appropriate acquisition and security documents including but not limited to the acquisition strategy, SEP, PPP, and SSP.

Minimum Required Qualifications:

• Possess the advanced knowledge, experience, and recognized ability to be considered an expert in their technical/professional field, possess the ability to perform tasks and oversee the efforts of junior and journeyman personnel within the technical/professional discipline. Demonstrate advanced knowledge of their technical/professional discipline as well as possess a comprehensive understanding and ability to apply associated standards, procedures, and practices in their area of expertise. (Program Office, Enterprise and Staff Level Support interface).

Citizenship: Must be a US citizen

Education:

• Baseline certification and continuing education for assigned position category or specialty and level (e.g. Information Assurance Technical [IAT], Information Assurance Manager [IAM], Information Assurance System Architects and Engineering [IASAE], or CSSP) according to the Cyber Workforce Management Program (DoDD 8149.01 & DoD 01m)

• Advanced Degree (Master of Science (MS)) and twelve (12) years of experience in the respective technical/professional discipline being performed, five (5) years of which must be in the DoD

OR,

• BS degree, and fifteen (15) years of experience in the respective technical/professional discipline being performed, five (5) of which must be in the DoD

• Undergraduate or graduate degree with a major in computer science of engineering from a college or university with an Accreditation Board of Engineering and Technology (ABET) accredited computer science or engineering program. Degrees a non-accredited ABET program are not considered to be qualified. The degree must have been received in the year of, or any year subsequent to the original date of accreditation.

Preferred Qualifications:

• Baseline certification and continuing education for assigned position category or specialty and level (e.g. Information Assurance Technical [IAT], Information Assurance Manager [IAM], Information Assurance System Architects and Engineering [IASAE], or CSSP) according to the Cyber Workforce Management Program (DoDD 8149.01 & DoD 01m)

• Advanced Degree (Master of Arts (MA) / Master of Science (MS)) and twelve (12) years of experience in the respective technical/professional discipline being performed, five (5) years of which must be in the DoD

Additional Information:

Clearance: Top Secret/SCI Clearance required

Location: Wright Patterson AFB, OH

#LI-BL1

Odyssey Systems Consulting Group, is an innovative small business committed to providing world-class technical, management, and training support services to government and public sector clients. We focus on people, processes, and performance to deliver superior results. Since our inception in 1997, our commitment to mission success and customer satisfaction has been recognized with exponential growth and exceptional past performance ratings. We accept challenging assignments and drive projects from the planning stages, through implementation, and into operations and support.

Please note: Final compensation for this position will be determined by various factors such as the Federal Government contract labor categories and contract wage rates, relevant work experience, specific skills and competencies, geographic location, education, and certifications.

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

ID: 2022-2735

Hours/Week: 40

External Company Name: Odyssey Systems Consulting Group, Ltd.

External Company URL: https://www.odysseyconsult.com