Cyber Security Specialist

Must be a US Citizen who currently possesses a Top Secret Clearance with the eligibility to acquire a Top Secret/SCI. Travel will be required.

Statement of Work / Task Description:

• Cybersecurity Specialist provides technical analyses and guidance for the subject matter activities, technical reviews and preparation of deliverables. Provides Information Systems Security Engineer (ISSE) support for the Authorization and Accreditation (A&A) of the OPIS Applications, performing technical security assessments of computing environments to identify points of vulnerability or non-compliance with established Information Assurance (IA) standards and regulations, and recommending mitigation strategies
• Manage or contribute to eMASS packages by working with existing Information System Security Officers (ISSOs) to accomplish and maintain Authorization to Operate (ATO). Create all accreditation documentation required for submission for full ATO and address relevant security controls, be responsive to the Authorizing Official, and ensure that controls are addressed or added to a Plan of Actions and Milestones (POA&M).
• Develop and maintain a System Security Plan (SSP) and conduct periodic reviews to ensure compliance with the SSP.
• Ensure Configuration Management (CM) for security-related Information System (IS) software, hardware, and firmware are maintained and documented.

The candidate should have the following experience/expertise:

• Demonstrated experience managing information assurance processes and supporting IT services while facilitating compliance with security standards
• Excellent verbal and written communication skills to effectively communicate with all levels of USG
• Ability to produce detailed reports, documentation and presentations

Required skills/Level of Experience:

• Possess CISSP or CISM Certification Work Experience: -At least 10 years of progressive experience in the cybersecurity field.
• Demonstrated experience in various areas of cybersecurity and compliance, including risk management, managing computer systems and security tools and protocols; development of cybersecurity strategies and policies, legal and regulatory frameworks for public and/or private entities
• Demonstrated experience in managing stakeholder relationships at senior levels of government.
• Knowledge, Skills and Abilities: -Expert knowledge of current cybersecurity tools and systems, software security, RMF Compliance, legal and regulatory requirements

Nice to have Skills:
Experience with RMF Compliance

• Strong understanding of cybersecurity tools, architecture, and standards
• Experience with the DoD and government software development
• Experience engaging senior government officials