CISM, Position Title: Cybersecurity Management Specialist
Location: Aberdeen Proving Ground, Maryland
Employment: Full-Time (MUST BE A U.S. CITIZEN)
Experience: Level II - Level IV - 7 years performing cybersecurity related-services to include:
- Information security or network/system administration
- IT audit, IT compliance, enterprise risk management, creating/updating/implementing policy, etc., using cybersecurity/IT tools such as ACAS, HBSS/ESS, eMASS, and applying STIGs
- Understanding of how changes in system configuration and/or network architecture affect a system’s security posture and risk profile
- Developing and evaluating all elements of an ATO package including the SSP, SAR, RAR, FIPS 200, and relevant management presentations for AOs and SOs.
Security Clearance: TOP SECRET (SCI eligibility)
Required Education and Certifications:
- Bachelor’s degree (Computer Science, Computer/Software Engineering, Computer Information Systems). Experience can be substituted for education.
- DOD 8570.01-M certifications - IAM Level III - CISM, CISSP, GSLC, or CISO
Scope:
As part of an on-site Cybersecurity Support Team, provide technical expertise to the Army Test and Evaluation Command (ATEC) HQ at Aberdeen Proving Ground, MD. to ensure cybersecurity compliance and resilience of ATEC systems
Job Description:
Senior member of Cybersecurity Management team developing and evaluating security packages based on detailed understanding of underlying technologies and applicable RMF controls and procedures.
Duties and Responsibilities:
- Review security plan packages including:
- Ensuring accuracy/completeness of network diagrams, hardware/software lists, and other system documentation/details
- Verifying the completeness of the implementation plan and acceptability of controls being submitted as non-applicable or other not going to be implemented
- Validating the accuracy/completeness of the system’s impact level categorization
- POA&M Management
- Developing, updating, implementing, and interpreting cybersecurity plans, policies, and procedures
- Providing incident response
- Performing cybersecurity assessments, inspections, and security related technical guidance
- Evaluation of technical risks
- Conduct cybersecurity auditing
- Perform software and hardware risk and vulnerability assessments.
- Security control validations of ATEC internal closed restricted networks and standalone systems
- Tracking and monitoring the re-authorization progress/status of ATEC systems, in coordination with the subordinate ISSMs
- Performing risk assessments on non-compliant controls and STIG/SRG checks
- Running eMASS reports to validate command system portfolio compliance with DoD and Army mandates
- Advising the Program ISSM on command RMF policy
Job Types: Full-time, Contract
Pay: $50.00 - $80.00 per hour
Benefits:
- 401(k)
- Dental insurance
- Employee assistance program
- Employee discount
- Flexible spending account
- Health insurance
- Life insurance
- Paid time off
- Parental leave
- Professional development assistance
- Referral program
- Tuition reimbursement
- Vision insurance
Compensation package:
- Yearly pay
Experience level:
- 7 years
Schedule:
- 8 hour shift
- Day shift
- Monday to Friday
Application Question(s):
- Are you a US citizen - required to get even an interim clearance which is a customer requirement.
Experience:
- Cybersecurity: 6 years (Preferred)
License/Certification:
- IAM Level III - CISM, CISSP, GSLC, CCISO (Required)
Security clearance:
- Secret (Preferred)
Work Location: In person