Cyber Security Specialist 4

ID 11785

Location Tysons, VA

Apply Now (

Position Summary

You will work in a team environment alongside other cybersecurity engineers and Risk Management Framework (RMF) analysts responsible for supporting Information System Security Engineering efforts. General responsibilities include but are Not Limited to :

• Working closely and supporting team members, vendors, and government customers

• Implementing DoD Security Technical Implementation Guides (STIGs) on traditional Information Technology (IT) and Operational Technology (OT) systems

• Assisting in the development and verification of documentation necessary to complete the DoD RMF assessment and authorization process

• Conducting ICS/SCADA system inventories following DoD guidance

• Conducting vulnerability scanning and document system vulnerabilities

• Supporting ISO standardization and Quality inspections

• Participating in continuous improvement of organizational cybersecurity posture

Position / Candidate Requirements

• Requires Top Secret Clearance.

• Education:

• 5-7 Years of Experience with a Master's Degree in Information Technology, Risk Management, Cybersecurity

• 7-9 Years of Experience with a Bachelor's Degree in Information Technology, Risk Management, Cybersecurity

• 10-12 Years of Experience with an Associate's Degree in Information Technology, Risk Management, Cybersecurity

• 13-15 Years with a High School Diploma

• Required Progressive Experience:

• Working with industry and government agencies on the design of platforms and integrated systems

• Working on government and/commercial projects implementing cybersecurity requirements in a variety of industrial control systems (e.g., building management, electronic security, fire alarm/mass notification, electrical distribution, power management, etc.)

• Proficiency with ACAS and HBSS and mitigation strategies

• Developing policies and procedures to ensure information systems reliability and accessibility and to prevent and defend against unauthorized access to systems, networks, and data

• Assessment, mitigation, and closure of network vulnerabilities and vulnerability management

• eMASS

• Establishing, managing, and tracking of Plan of Action & Milestones (POA&M)

• Applying STIGs to servers, databases, applications, and other hardware

• Security Readiness Review (SRR) Tools (scripts and ACAS)

• Ability to identify, maintain, and troubleshoot control network components

• Excellent understanding of the DoD RMF lifecycle and NIST 800-53 controls implementation

• Awareness of NIST Special Publication 800-82, Guide to Industrial Control Systems (ICS) Security and UFC 4-010-06 Unified Facilities Criteria (UFC) Cybersecurity of Facility

• Working knowledge of operational control systems and implementing a variety of security assessment tools

• Working knowledge of other operational control systems

• Familiarity with DoDIN CCRI/CCORI and CYBERCOM TASKORDS

• Familiarity with various industry products

• One of the Required Certifications:

• CASP CE

• CISSP

• CISSP ISSAP

• CISSP - ISSEP

• CSSLP

• CISA

• CISM

• Strong Oral, Written and Presentation Skills with the ability and experience communicating directly with Customers

• Demonstrated background working with multidisciplinary teams

• Demonstrated time management and organization skills to meet deadlines and quality objectives

• Strong MS Excel, Word, PowerPoint, AUTOCAD, Cameo and Visio Skills is a plus.

• Ability to travel domestically and internationally up to 25% of the time.

Abilities:

• Exposure to computer screens for an extended period of time.

• Sitting for extended periods of time.

• Reach by extending hands or arms in any direction.

• Have finger dexterity in order to manipulate objects with fingers rather than whole hands or arms, for example, using a keyboard.

• Listen to and understand information and ideas presented through spoken words and sentences.

• Communicate information and ideas in speaking so others will understand.

• Read and understand information and ideas presented in writing.

• Apply general rules to specific problems to produce answers that make sense.

• Identify and understand the speech of another person.

#CJ

#ZR

Applicants for this position may be required to obtain or provide proof of flu shots or of other vaccinations depending on customer requirements and nature of the position or demonstrate a valid basis for exception.

EOE Minorities/Females/Protected Veterans/Disabled

VEVRAA Contractor