HVA Assessment Technical Lead (15.27)

Description:
HVA Assessment Technical Lead (15.27)

OCT Consulting is a business management and technology consulting firm that provides support to Federal Government clients. We provide consulting services in the areas of Strategy, Process Improvement, Change Management, Program and Project Management, Acquisition/Procurement, and Information Technology.

The HVA Technical Lead serves as the primary technical expert for Non-Tier 1 High Value Asset (NT1 HVA) Assessments within the Department of Transportation. This role is responsible for driving technical analysis, leading Technical Exchange Meetings, and drafting comprehensive assessment reports to ensure compliance with DHS CISA requirements and federal cybersecurity mandates. This position is contingent upon contract award.

Essential Duties and Responsibilities

• Technical Assessment Leadership: Lead and conduct NT1 HVA Assessments according to DHS Assessment Evaluation and Standardization (AES) program requirements
• Documentation Review: Identify gaps in knowledge during pre-assessment documentation review and drive additional documentation requests
• Subject Matter Expert Coordination: Gather and coordinate with appropriate Subject Matter Experts for assessment interviews
• Technical Exchange Meeting Leadership: Lead Technical Exchange Meetings (TEM) and demonstrate broad knowledge of technical topics for systems under assessment
• Report Development: Draft comprehensive assessment reports including System Description, Executive Summary, Key Insights, Impact Statements, and Risk Statements
• Knowledge Transfer: Share technical information gained during TEM with the entire assessment team
• Stakeholder Communication: Interface with Agency HVA POC and Assessment POC on technical matters
• Compliance Assurance: Ensure all assessment activities follow established Rules of Engagement and NIST/CISA documentation requirements

Requirements:
Required Qualifications

Experience Requirements

• Minimum 5+ years of experience working with National Institute of Standards and Technology (NIST) security controls and information assurance
• Minimum 2+ years of direct experience supporting Department of Homeland Security (DHS), Cybersecurity and Infrastructure Security Agency (CISA), and HVA PMO operations
• 4+ years of experience working and supporting HVAs as part of the NIST Risk Management Framework (RMF) process
• Demonstrated experience in Federal and Agency level HVA Program documentation development, including guidance and outreach communications

Technical Knowledge and Skills

• Comprehensive understanding of NIST Risk Management Framework (RMF)
• Deep knowledge of NIST Cybersecurity Framework (CSF)
• Expert understanding of High Value Assets and their Assessment Evaluation and Standardization requirements
• Proficiency in Federal Information Security Modernization Act 2014 (FISMA) requirements
• Understanding of information assurance, cybersecurity, and privacy policies disciplines and methodologies
• Knowledge of CSAM reporting and controls management (Common, Hybrid, and System specific)
• Expertise in current principles, practices, and techniques of Systems Analysis, Business Analysis, and Business Intelligence

Technology Proficiencies

• Advanced skills in Microsoft Office Suite (Word, Excel, Project, PowerPoint, Visio)
• Experience with specialized Business Intelligence software
• Proficiency in SQL query language and Microsoft SharePoint
• Familiarity with database applications (Tableau, BI 360 & Power BI, Hyperion, SQL Reporting Services preferred)
• Ability to design, manage, and deploy data systems, reports, and dynamic dashboards

Certifications (Required)

• HVA Assessment Evaluation and Standardization (AES): Technical Lead (TL)
• Security+ (CompTIA) or equivalent security certification

Additional Qualifications

• Excellent oral and written communication skills
• Ability to present analytic findings and conduct root cause analysis
• Capability to extract data from multiple sources, manipulate and validate data
• Strong problem-solving and analytical thinking abilities
• Ability to work with customers to assess needs, provide assistance, resolve problems, and satisfy expectations

Common Requirements

Security Clearance and Background

• Must be able to obtain and maintain appropriate security clearance as required by DOT
• Successfully pass background investigation requirements
• Comply with all federal personnel security requirements

Work Environment

• Primary Location: 1200 New Jersey Ave SE, Washington, DC 20590
• Schedule: Monday through Friday, 9:00 AM to 5:00 PM Eastern Time (with COR approval for alternative schedules)
• Travel: Occasional travel may be required for assessment activities
• Remote Work: Situational telework may be approved in advance by the COR

Performance Period

• Base Period: One year from date of award
• Option Periods: Up to four additional one-year option periods
• Must maintain adequate workforce for uninterrupted performance of all assigned tasks

Pre-Employment Requirements

• All personnel must have existing prerequisite experience and credentials prior to onboarding
• Government will not bear expense of training to gain required certifications or experience
• Key personnel cannot begin work until Contracting Officer/COR provides written approval of resumes
• Must provide 30-day advance written notification before removing key personnel from the task

Professional Development

• Maintain current knowledge of evolving cybersecurity threats and assessment methodologies
• Stay current with NIST, DHS CISA, and OMB guidance and requirements
• Participate in ongoing training to maintain required certifications and qualifications

Benefits:
Benefits

OCT offers competitive compensation packages and a full suite of benefits which includes:

• Medical, Dental, and Vision insurance
• Retirement savings 401K plan provided by an industry leading provider with 3% employer contributions of the employee's gross salary
• Paid Time Off and Standard Government Holidays
• Life Insurance, Short- and Long-Term disability benefits
• Training Benefits

Salary Range: $70,000- 175,000.00 yearly commensurate with experience, education, etc.

About OCT Consulting

OCT Consulting LLC is a minority-owned, Small ​Disadvantaged Business (SDB) providing professional services and information technology solutions to the Federal government and commercial clients. Founded in 2013, we bring the advantage of agility in operations along with a management team with a track record of leading successful engagements at major Federal government agencies.

At OCT, we are committed to ensuring equal opportunity for all individuals, recognizing that merit and qualifications are the foundation of our hiring, promotion, and development practices. We believe in creating a work environment where employees can thrive based on their abilities, skills, and achievements. Our practices ensure fair treatment and equal access to opportunities for all, regardless of race, ethnicity, gender, sexual orientation, age, abilities, or other personal characteristics. We are dedicated to providing career growth and professional development based on individual merit and fostering a workplace where everyone's contributions are valued and recognized.