Sr. Security It Specialist

Sr. Security IT Specialist

Washington, DC Join our Talent Network

Summary:

TheSenior Security IT Specialistshall support the ACIO/CS office’s testing and implementation of security measures impacting initiatives across the enterprise through an understanding of complex IT systems and knowledge of the latest security standards, systems, and authentication protocols, as well as best practices.

C-CABS-24-007

Duties and Responsibilities:

• Provide functional and technical expertise with risk management policy frameworks to provide recommendations to mitigate vulnerabilities and known attack paths.

• Decipher CVEs to understand how vulnerabilities may be exploited and the potential impact they may have on confidentiality, integrity, and availability.

• Take technical vulnerability information and prepare advisories and memos to a larger technical and non-technical audience.

• Apply fundamental knowledge of security principles to help with determining the best course of action against vulnerabilities.

• Actively research web and open-source channels for vulnerabilities and record those into an aggregated log.

• Actively participate and provide recommendations for the maturation of the program.

• Provide support for various data calls.

• Gather various levels of information and develop reports.

• Perform ongoing updates to operational documentation as required to ensure compliance with applicable policies and directives and to reflect the operational environment.

• Prepare deliverables, including progress, status, and management reports by the contract data requirements/deliverables list.

• Support any treasury threat and vulnerability activities because of executive orders, executive directives, DHS binding operational directives, and/or any other cyber policy requirements impacting treasury threat and vulnerability program.

• Facilitate IT security/risk training curriculum.

• Serve as project manager/lead within IT security projects.

• Address questions from internal and external audits and examinations.

• Assist in the creation of Standard Operating Procedures (SOPs), operational procedures, and documentation as the program matures and develops.

• Assist in conducting/presenting monthly Cyber Subcommittee Slides (CSS) and other briefings for an executive overview of vulnerabilities.

• Assist in maintaining SharePoint and Teams (future state) environment to ensure all documents are up-to-date and organized.

• Complete annual company and customer-required training, as required.

• Complete the timesheet daily in an online system according to company policies and procedures.

• Travel up to 10% as required.

• Other duties as assigned.

Minimum Qualifications: (To perform this job successfully, an individual must be able to perform each essential duty satisfactorily.)

• Bachelor’s degree. Master’s degree preferred.

• 5+ years of senior-level technical expertise with specialized experience in cybersecurity and interoperability for complex hardware, software, and automated information systems.

• CISSP required.

• Must be a U.S. citizen or lawful permanent resident alien with 3+ years of U.S. residency from the legal entry date into the United States.

• Public Trust is required and the ability to obtain and maintain a favorable Department of Treasury background investigation for the life cycle of the project.

• The position requires a COVID vaccination or an approved accommodation/exemption for a disability/medical condition or religious belief.

Knowledge, Skills, and Abilities:

• Must have knowledge, skills, and abilities in one or more of the following: Cybersecurity Concepts, Architecture Principles, Security of Networks, Applications and Data, Security Implications, and Adoption of Evolving Cyber Technology.

• Possess in-depth knowledge of cybersecurity architecture.

• Must have experience in the subject matter at a similar size, scope, and complexity as required by this task order.

• Experience managing Cyber Vulnerability and Threat information on an HQ level.

• Position requires senior-level technical expertise with specialized experience in cybersecurity and interoperability for complex hardware, software, and automated information systems.

• Possess in-depth knowledge of cybersecurity architecture.

• Ability to capture high-level technical information clearly and concisely.

• Possess strong communication and organization skills.

• Be highly motivated, independent thinker, and team player with a sense of urgency and ability to meet management and customer deadlines in a fast-paced environment.

• Must have the ability to take and pass a drug test (the department may require drug screening for probable cause at any time).

• Maintain a high level of integrity and accountability.

• Possess strong problem-solving and leadership skills.

• Must have the ability to attend all customer in-person meetings and conferences as requested.

• Ability to multi-task in a high-stress, performance-based environment.

• Ability to establish priorities and meet established deadlines.

• Ability to travel up to 10% as required.

Join our Talent Network