Cyber Security MID

Duties: Responsible for providing unique cyber domain expertise and guidance to the delivery team and stakeholders. Work may encompass one or more specialty areas of cyber security, cyberspace, and cyber operations, including providing expert knowledge and insight into compliance, cyber hunt, incident response, risk and vulnerability assessment, and emerging cyber threats requirements; guiding technical support to penetration testers, incident handlers, cyber analysts, and product support personnel relative to the cyber arena; assisting in the management of complex networks and systems of differing classification levels systems; integrating cyber security requirements with communication and IT; and utilizing other principles in the professional body of knowledge. Performs research, design evaluation, technical development, system integration planning, and other tasks in specific technical areas. May be responsible for complex cyber, technical, engineering, and architecture tasks. Often coordinates and guides the activities of technical staff members assigned to specific tasks. May supervise and/or guide a broad team of technical staff members/engineers:

• Conduct and review technical cybersecurity assessments
• Coordinate with security personnel and recommend mitigation strategies
• Identify points of vulnerability and non-compliance with established cybersecurity standards and regulations
• Manage and maintain a library of security audit tools, and corresponding processes that can be used for system security testing, internal audits, incident response, and diagnosis of security-related system issues
• Perform and maintain vulnerability scans and create reports
• Track and report Information Assurance Vulnerability Management compliance
• Maintain Authorization to Operate (ATO) records
• Manage and report Plan of Actions and Milestones (POA&M) compliance
• Review certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its content

Experience: Bachelor's degree or equivalent and twelve (12) years of related experience; master's degree and ten (10) years of related experience; Ph.D. and seven (7) years of related experience; fifteen (15) years of related experience and no degree., * At least one or higher certification e.g., CCNA Security, CySA+, Security+ CE, SSCP, CISSP (or Associate)

• Experience with Risk Management Framework
• Familiar with Cloud Technologies (preferred)
• Lead system security engineering expertise in one or more of the following : system security design process; engineering life cycle; information domain; cross domain solutions; commercial off the-shelf and government off-the shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing

• Pay Rate / Range:$117-$122.44

The above salary range represents the range expected for the position; however, final salary offers are based on a number of factors such as the position's responsibilities; the candidate's experience, education, and skills; location; travel required; and current market conditions.

• Benefits (Regular, Full Time Employees):
• Medical, Dental, and Vision offerings
• Weekly Direct Deposit
• Paid Holidays and Personal Time Off
• 401(k) with match
• Voluntary Life and AD&D, Short / Long Term Disability, plus other voluntary coverages
• Pre-Paid Legal and Employee Assistance Programs
• Northwest Federal Credit Union Membership
• BB&T @ Work Program

This program requires US Citizenship