Job Description:

ResponsibilitiesDuties:Provide direction and guidance to a team of junior to senior level cyber security experts responsible for the cybersecurity operations of complex networked and standalone IT systemsKeep informed of currently approved standards, codes, and procedures applied to cybersecurity specialtyOversee multiple system packages throughout the Authorization to Operate (ATO) processMaintain overall schedule and track all ATOs in development and in Continuous Monitoring (CONMON) stageProvide technical expertise and mentoring to other members of the cybersecurity team to accomplish assigned tasksInterface with senior government and JT4 leadership to keep them up-to date on the progress and status of ATOs and security posture of IT systemsBe primary interface between the Authorizing Official (AO) and the Security Control Assessor (SCA) for coordination of ATO packagesConduct research and reference reading in obtaining technical information Perform systems engineering activities in the areas of Cybersecurity Information Assurance (IA) System Security Engineering (SSE) and security assessment and authorization (A&A) in accordance with NIST SP 800-53 RMFApply risk management concepts to mitigate vulnerabilities in system security architecturesInterface with the Information System Security Manager (ISSM), program managers, system stakeholders, and external contractors to coordinate cybersecurity requirements and architecture flow down from the system level to individual elements of the systemAssist in preparation of reports, correspondence, or technical studiesProvide Subject Matter Expert (SME) input into the Engineering Review Board (ERB)As an Information System Security Manager (ISSM) sit on the Configuration Control Board (CCB) as a veto authority to recommend changes into system authorization boundariesAssist in the development of Statements of Work (SOW) for issuance to possible vendors under the JTECH-II contractProvide guidance and direction to sub-contracts and preferred vendors on cybersecurity requirements related to scopes and contractsAssist the government customer with establishing cybersecurity procedures and policies that support and secure operations across multiple disciplinesProvide SME input to all projects or assign an appropriate representative to the taskOversee a team of various disciplines, including Information System Security Officer (ISSO), ISSM, system admins, network admins, network engineers, and IT systems engineers.Provide professional career guidance and mentorship to ensure employees and team members flourishProvide oversight and management of differing circuit requestsExperienceEducation:A master's degree in Computer Information Technology, or equivalent academictechnical trainingcertification;10+ years of experience in computer systems security with 5 years of management experience, andor related area of expertiseCybersecurity Service Provider certifications within DoD 8570.01-M within the designated timeframe upon hire date; and a minimum of the following certifications: CISM, CISSP, GSLC, or CCISO are required for this positionAdditional desired certifications: CEH (Master) or CERP and Project Management Professional (PMP)Subject matter expert-level experience supporting various system configurations such as standalone, local area networks (LANs), and wide area networks (WANs)Demonstrated experience with Risk Management Framework (RMF) process, eMASS, ACAS, SCAP, STIG, Cyber Risk Assessments (CRA), Cyber Table top (CTT) or related process Robust conceptual and practical understanding of IT Infrastructure designs, technologies, products, and servicesDemonstrated experience formulating andor interpreting cyber threat analysis of adversary techniques, tactics, and procedures used to disrupt computer networksDemonstrated experience with planning, designing, executing, and assessing discussion-based exercisesDemonstrated ability to plan, organize, and work under strict deadlinesAdditional Experience DesiredExperience with SAP and JSIG requirementsExperience with all steps of the RMF processexperience with eMASS and XACTAMust be able to speak publicly and provide briefings to high-level government customers as requestedExperience in the generation of all required documentation for an RMF package. To include SSPs, DRPs, IRPs, and other required Body of Evidence requirementsExperience in managing large inventories of materials such as workstations and servers