Brief Description of Duties: Applies Information Technology (IT) security principles, methods, and security products to protect and maintain availablity, integrity, confidentiality, and accountability of information system resources and information processed throughout the systems life cycle. Establishes and publishes base-wide policy to manage the INFOSEC (also known as COMPUSEC) program and provides advice and guidance in its implementation and in procedures used in the development of their individual INFOSEC program. Disseminates information and ensures computer security practices are adhered to by all functional areas. Reviews, analyzes, and validates certifications and accreditation (C&A) packages. Continuously identifies and analyzes threats and vulnerabilities to the information systems to maintain an appropriate level of protection. Ensures computer software designs address information system security requirements. Accomplishes risk analysis, security testing, and certification due to modifications or changes to computer systems. Manages the Network Security program. Implements and advises on IT security policies and procedures to ensure protection of information transmitted using Local Area Networks (LAN), Wide Area Networks (WAN), the World Wide Web, or other communication modes. Utilizes current and future multi-level security products collectively to provide data integrity, confidentiality, authentication, non-repduiation, and access control of the LAN. Certifies all software prior to installation and use on communications and computer systems. Executes computer security plans and enforces mandatory access control techniques such as trusted. Controls access to prevent unauthorized persons from using network facilities. Initializes the system, performs system backups, determines operator access, and control functions (privilege management), reloads and configures the operating systems parameters.