Job Description

The Information Security Officer is responsible for ensuring the physical and procedural security of Federal Contract Information (FCI) , Controlled Unclassified Information (CUI) , and other sensitive data within all DCX facilities. This individual is accountable to the government for demonstrating compliance with security policies and procedures, protecting sensitive information, and maintaining the security of all DCX facilities.

Key Responsibilities

1. Policy Development and Compliance

• Write, communicate, and enforce the marking and handling policies for FCI , CUI , and sensitive data.
• Develop and implement processes for the secure storage, handling, and destruction of sensitive materials.
• Regularly attest to government agencies that these processes are operational and effective

2.Training and Awareness

• Ensure all employees meet mandatory training and awareness requirements for the protection of FCI , CUI , and sensitive data.
• Conduct security training for new hires and provide annual refresher training (e.g., using KnowBe4).
• Run the Insider Threat Program , providing monthly updates, documenting all processes, and fostering a "see something, say something" culture.

3. Incident Reporting and Response

• Be notified of and report all physical and cyber security incidents to appropriate parties, including government agencies and law enforcement.
• Maintain systems for tracking and addressing incidents promptly and thoroughly.

4. Access Control and Visitor Program

• Manage site physical access and security, including monitoring equipment movement in and out of facilities.
• Develop, implement, and manage the visitor program , verifying, documenting, and attesting to its effectiveness.

5. Coordination and Engagement

• Coordinate with HR on employee screening, including background checks and suitability assessments.
• Review contracts to identify required security controls and assess DCX's compliance.
• Remain current on relevant security threats and trends through engagement with DCSA agents , Prime Contractor FSOs , and local and federal law enforcement.

6. Emergency Preparedness

• Assist in the development and maintenance of emergency response and contingency plans.

7. Technical and Physical Changes

• Be consulted on all equipment or technical changes affecting security, ensuring they align with compliance standards.

Required Certifications and Training

An active secret clearance is highly desirable.

• Must already possess or be able to attain within 3 months:

1. Facility Security Officer (FSO) certification training
2. Personally Identifiable Information (PII) Awareness
3. Cyber Awareness training
4. Familiarity with NBIS systems
5. Physical Presence Requirements

Given DCX's two physical sites, this role requires an on-site presence to:

• Monitor and inspect equipment entering and leaving the facilities.
• Conduct physical security checks and audits.
• Facilitate employee training sessions and manage visitor access.

1. Liability and Accountability

The FSO is legally liable to the government for the security of DCX facilities. This includes:

• Writing and implementing security policies.
• Proving due diligence in enforcing those policies.
• Documenting compliance activities and providing evidence that procedures are consistently followed.

The FSO will be held to the highest standards of security management and is expected to ensure that all security measures are proactive, compliant, and auditable.

Job Tags

Contract work, For contractors, Local area,

Similar Jobs