Cyber Security SME

Location: Northern VA area, VA
Date Posted: 08-17-2018
The Cyber Security position will be responsible for working closely with the organization’s project teams to ensure information system security concerns are addressed during the development of an Information System. The resource will be responsible for reviewing system/application Audit Logs and support the organization’s Information System Security Manager on all cyber related matters concerning the customer’s systems. 
The tasking will involve full system certification and accreditation on systems under the customer’s purview. The Cyber Security SME will provide system architecture and information assurance support on the development, integration, and operations and maintenance of Customer systems deployed on the Sponsor infrastructure, following the project development life cycle compliance with the Sponsor Project Management and security processes. 
The Sponsor is continually searching for ways to improve our processes and provide better services to our customers. The Cyber Security SME is expected to provide insight into better ways of doing business and support us in the effort.
Duties include, but not limited to:
1. Ensure information system security concerns are addressed during the development of an Information system.
2. Prepare, implement and maintain the organization’s Body of Evidence (BOE) to include System Security Plan (SSP), Risk Management Plan, and System Inventory Assessment.
3. Provide insight into industry trends and make recommendations on future direction for the program.
4. Utilize complex analysis tools to identify and correct problems.
5. Provide technical/analytical recommendations for improvement.
6. Work with the customer to improve metrics for reporting.
Required skills...
  • ALL APPLICANTS MUST HOLD AN ACTIVE TS/SCI WITH BACKGROUND/POLY
  • Demonstrated experience in Information Security/Information Assurance/Cyber Security, specifically as related to Enterprise and operational networks and systems.
  • Demonstrated experience showing familiarization with security vulnerability testing tools such as Nessus, AppDetective, NMAP, WebInspect,& self-scans.
  • Demonstrated experience and advanced knowledge collaborating and working with Subject Matter Experts (SMEs) on developing authorization packages in support of achieving Authority to Operate (ATO) within required timelines.
Desired skills...
  • Demonstrated experience participating at the security related governance boards and Forums.
  • Demonstrated experience or knowledge of Cloud Computing Technologies, particularly AWS.
  • Demonstrated experience in communicating complex technical concepts and project information clearly and concisely to both technical and non-technical audiences.
  • Demonstrated experience reviewing system/applications audit logs.
  • Demonstrated experience with a software package used for processing the A&A process.
  • Bachelor of Science and/or Master of Science (MS) in Information Assurance/Cyber security.
or
this job portal is powered by CATS