Cybersecurity Specialist

The Cybersecurity Specialist provides technical analyses and guidance for the subject matter activities, technical reviews and preparation of deliverables. Provides Information Systems Security Engineer (ISSE) support for the Authorization and Accreditation (A&A) of the OPIS Applications, performing technical security assessments of computing environments to identify points of vulnerability or non-compliance with established Information Assurance (IA) standards and regulations, and recommending mitigation strategies.

This role is mixed remote within CONUS. The PoP will be primarily in contractor-provided facilities with the expectation of regular meetings at Government facilities in the National Capital Region.

Responsibilities

• Manage or contribute to eMASS packages by working with existing Information System Security Officers (ISSOs) to accomplish and maintain Authorization to Operate (ATO)
• Create all accreditation documentation required for submission for full ATO and address relevant security controls, be responsive to the Authorizing Official, and ensure that controls are addressed or added to a Plan of Actions and Milestones (POA&M)
• Develop and maintain a System Security Plan (SSP) and conduct periodic reviews to ensure compliance with the SSP
• Ensure Configuration Management (CM) for security-related Information System (IS) software, hardware, and firmware are maintained and documented

• Active Top Secret Clearance with SCI eligibility
• Possess CISSP or CISM Certification
• At least 10 years of progressive experience in the cybersecurity field
• Demonstrated experience in various areas of cybersecurity and compliance, including risk management, managing computer systems and security tools and protocols; development of cybersecurity strategies and policies, legal and regulatory frameworks for public and/or private entities
• Demonstrated experience in managing stakeholder relationships at senior levels of government
• Expert knowledge of current cybersecurity tools and systems, software security, RMF Compliance, legal and regulatory requirements
• Demonstrated experience managing information assurance processes and supporting IT services while facilitating compliance with security standards
• Excellent verbal and written communication skills to effectively communicate with all levels of USG
• Ability to produce detailed reports, documentation and presentations

Desired Skills

• Experience with RMF Compliance
• Strong understanding of cybersecurity tools, architecture, and standards
• Experience with the DoD and government software development
• Experience engaging senior government officials