IT Security Lead

Under IT Security, the staff shall operate, maintain, and enhance NICHD's computing environments so that all IT services to the end-users are provided without threats and vulnerabilities. The following areas shall be served:

• Cybersecurity

• FISMA Compliance Support, * Oversee routine vulnerability scanning capabilities across networks and systems.

• Oversees patching, hardening and baselining activities across networks; ensures other stakeholders are in compliance with established patching/hardening policies.

• Maintains, configures, and ensures the successful deployment of logging/auditing tools across the networks; ensures logging activities are functional across all networks.

• Maintains system baseline and configuration management items, including security event monitoring policies in a manner determined and agreed to by the program management.

• Interacts with both Systems engineers and O&M personnel to ensure a complete and functioning system that meets requirements.

• Ensures all Network Defense capabilities are kept current, patched, securely configured, and communicates status to management.

• Analyzes the data flows into, out of, and across networks to ensure security gaps do not exist and data exchange is in line with system classification level.

FISMA COMPLIANCE SUPPORT:

• Researching, analyzing, and reporting on different trends using publicly available or collected data.
• Ensuring effective implementation of annual FISMA reporting review requirements.
• Reviewing security documentation of various NICHD systems to assure FISMA Compliance is effectively implemented and monitored.
• Having the necessary organization, experience, and technical controls.

• Four (4) to six (6) years of hands-on experience providing technology leadership for IT Security.
• Three (3) or more years of experience of new and emerging cybersecurity technologies including but not limited to: hands-on tool usage of BigFix, Splunk, Tripwire, Cylance, Tenable etc.
• Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).
• Experience with incident response and handling methodologies.
• Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities.

FISMA COMPLIANCE SUPPORT:

• Four (4) to six (6) years of hands-on experience providing technology leadership for FISMA Compliance.
• Three (3) or more years of experience of new and emerging cybersecurity technologies including but not limited to: hands-on tool usage of BigFix, Splunk, Tripwire, Cylance, Tenable etc.
• Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).
• Experience with Security Assessment and Authorization in Federal environment.
• Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment.

How you will wow us:

• CISSP, CISA, CISM, and/or SSCP.
• Strong skills in the following key areas including strategic thinking, multi-tasking, negotiation, conflict management, time management, planning and executing to a defined schedule/budget.
• Able to communicate complex technical concepts and project information clearly and concisely to both technical and non-technical audiences.
• Ability to work effectively as a member of an integrated team and the ability to negotiate reasonable compromises among a diverse group of stakeholders.
• Ability to work in a fast paced, technically challenging area; ability to anticipate changes, problems, or activities, assess impacts and recommend sound solutions.
• Able to work independently and motivated, capable of working across teams and organizations.
• Prefer experience with data analytics and combining data sets from multiple sources to provide reports for identifying risk and measuring security posture.
• Prefer strong skills in the following key areas including strategic thinking, multi-tasking, time management, planning and executing to a defined schedule.
• Expert level of experience with Microsoft products Word, PowerPoint, Excel, and Visio.
• Prior experience using a helpdesk ticketing system such as ServiceNow is preferred.
• Prior federal government IT Security experience is preferred.

What's in it for you:

• Join a premier technology firm specializing in innovative solutions.
• Be part of a collaborative, inclusive, and innovative work culture.
• Enjoy tremendous growth potential in a high-performing team environment.
• A robust benefits package:

• Health, dental, and vision insurance
• Life insurance
• Short-and-long term disability
• Paid time off (PTO)
• 401k retirement plan with employer match
• Annual Professional Development Reimbursement Program
• And more!, At JCS Solutions, compensation is based on a number of factors such as location, qualifications, and applicable contract terms. The general salary range for this position is as follows: $176,000.00 - $190,000.00 Commitment to Non-Discrimination All qualified applicants will receive consideration for employment without regard to any protected status protected by applicable federal, state, or local laws., Are you a Citizen of the United States?* How many years of relevant experience do you have?* What is your minimum salary requirement?* What is your highest level of US Security Clearance?* What is your highest level of education completed. Do you have any of the following Cyber Security certificates?* CISSPCISACISMSSCP What is your ideal work environment?* RemoteHybridOn-Site The following questions are entirely optional. To comply with government Equal Employment Opportunity and/or Affirmative Action reporting regulations, we are requesting (but NOT requiring) that you enter this personal data. This information will not be used in connection with any employment decisions, and will be used solely as permitted by state and federal law. Your voluntary cooperation would be appreciated. Learn more. Gender Race/Ethnicity, Invitation for Job Applicants to Self-Identify as a U.S. Veteran

• A "disabled veteran" is one of the following:

• a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or
• a person who was discharged or released from active duty because of a service-connected disability.

• A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.
• An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.
• An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

JCS Solutions (JCS) is a premier technology firm providing innovative solutions and high-quality services in defense, national security, and civilian sectors. JCS offers enterprise-wide solutions including cloud computing, software development, cybersecurity, digital modernization, and management consulting for the federal government. At JCS, we elevate our customers' mission through the application of technology and professional services. Our commitment to investing in our workforce drives innovation and progress for our clients, employees, and communities. JCS is both a Great Place to Work and a Washington Post's Top Places to Work certified company. Our employees embody our core values, and we are looking for others who do too! * Customer Experience: Strive for excellence and delight our clients * Innovation: Embrace creative thinking to enable continual growth and powerful solutions * Accountability: Take ownership of and pride in our actions and service delivery * Inspire: Be inspired to be your best self and have fun in the process * Integrity: Do the right thing, the right way, every time! * Stewardship: The careful and responsible management of something entrusted to our care.