About ISC Consulting Group

ISC is a Veteran Affairs Certified Service-Disabled Veteran-Owned Small Business (SDVOSB) headquartered in Sierra Vista, Arizona. Our mission is to enable superior decision making through information dominance. ISC provides advanced education, analytic, and technical solutions within strategic DOD and commercial markets. We leverage the best minds and technologies to make a measurable difference

We specialize in delivering mission-critical services within the Intelligence Community and the U.S. Military, as well as the Federal Government and key commercial clients. ISC's core competencies include C5-ISR, IT Management Operations & Cyber Security, Instructional Solutions, Test & Evaluation Management Operation Services, and Big Data Business Intelligence and Data Analytics.

At ISC, our primary commitment is to provide client-driven excellence. This is only possible because of our most important asset, our people. We are recognized by our team members as the best place to work and develop a career, serving our clients with pride and professionalism. Our corporate culture reiterates the importance of "Mission first, people always."

Contract Overview

This requirement is to provide Information Technology services and support for enhancement, maintenance, and security of the Cyber CoE G6's Network, Enterprise Level Solutions, and IT Services.

Position General Responsibilities

• Maintain the CCOE security posture with proper certification and accreditation.
• Perform high-volume analysis of logs, network and system data
• Communicate with virtualization architects about the virtual environment
• Use infrastructure-monitoring technologies
• Create system documentation such as Standard Operating procedures
• Control, manage or configure IA tools or devices, individual and networked IS and devices, and enclaves

Position Qualifications

• Candidate must have a minimum of seven (7) years of work experience in the area of Information Assurance, Cyber/Information Security.
• Technical Skills Required:
• Minimum of 1 year of experience performing high-volume analysis of logs, network and system data in one or more of the following tools: (preferred tool Assured Compliance Assessment Solution (ACAS) but also familiarity with other similar tools)
• Ability to use and recommend implementation of infrastructure and security monitoring technologies (ex. Security Onion, Splunk, SolarWinds, ACAS)
• Endpoint Protection: (ex. McAfee EPO/ Host-based security system (HBSS)
• Awareness of the latest network and application hacking techniques and countermeasures (emerging trends).
• Have at least one (1) year of Certification and Accreditation & Cyber Risk Management experience: DoD RMF (DoD 8500, DoD 8510, NIST 800-37/-53), and DCID 6/3 and ICD 503 processes and implementing frameworks by performing risk assessments, system certification and accreditation at all classification levels (NIPRNET, SIPRNET, and JWICS)
• Have at least three (3) years of experience in Security Engineering of DOD Network Infrastructure, Wireless Technologies (Mobile IoTs, Endpoint Security, Network protocols, COMSEC, and PKI.
• Have Demonstrated knowledge of network threats, attacks, and other methods of exploitation, and the ability to develop Tactics, Techniques, Procedures (TTPs) to mitigate, deter, and respond.
• Have knowledge of Cyber Security practices for cloud and virtual environments (ex. Amazon Web Services (AWS), Microsoft Azure, VMWare, and OpenStack)
• Have a strong knowledge of security incident handling/incident response processes, methods, and coordination with Regional Cyber Center-CONUS (RCC-C), Regional Network Enterprise Center (RNEC), NEC, etc.
• Have strong knowledge and understanding of DoD and Intelligence Community (IC) engineering efforts, as it relates to security engineering (MILCON/MCA projects)
• Have strong knowledge of the development of CCOE Policy (Policies, SOPs, TTPs, etc) and the conduct of the associated inspections for user adherence to the CCOE policy developed
• Certifications Required all of the following are required:
  • Baseline certifications. Note: Either CASP or CISSP (or associate) will satisfy baseline certifications for both IASAE II and IAM II.
  • IASAE II: CASP, CISSP (or associate), or CSSLP and
  • CSSP Auditor: CEH (red), CySA+ (blue), CISA, or GSNA and
  • IAM II: CAP, CASP, CISM, CISSP (or associate), or GSLC
  • Be monitored in the Army Training and Certification Tracking System (ATCTS).
  • Successfully complete Information Assurance Fundamentals online course and exam at https://cs.signal.army.mil.
  • Complete the Privileged Level Access Agreement (PLAA) annually.
• This Personnel Security Standard for this position is IT-I (Personnel in IA positions with privileged-level access to control, manage, or configure IA tools or devices, individual and networked IS and devices, and enclaves).

ISC Consulting Group is an Equal Opportunity/Affirmative Action/VEVRAA Federal Contractor. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, disability status, protected veteran status or any other characteristic protected by law.  

ISC Consulting Group gives preference to Internal Candidates. If no internal candidate meets our qualifications, external candidates will be given consideration.