Job Details

ID #45521996
State Maryland
City Aberdeenprovingground
Job type Permanent
Salary USD TBD TBD
Source Knowledge Management, Inc
Showed 2022-09-08
Date 2022-09-07
Deadline 2022-11-06
Category Et cetera
Create resume

Cyber Security Lead

Maryland, Aberdeenprovingground, 21005 Aberdeenprovingground USA

Vacancy expired!

Knowledge Management, Inc. (KMI) is a Small Disadvantaged Business (SDB) providing Information Technology, Cyber Security, Data Analytics and Professional services to the Federal markets. Since 1998, our solutions and services have improved our client's performance and operational effectiveness, while reducing costs and mapping technology needs for tomorrow's requirements

Job Title: Cyber Security Lead

Job Location: Aberdeen, MD

Position: One

Start date: ASAP

Clearance: Secret

Certifications: Must hold at least one of the following certifications in compliance with DoD 8570 requirements for IAM Level II: CAP, CASP CE, CISM, or CISSP.

Experience/Education: 6+ years of experience. Bachelor's degree in a related field desired.

Overview: KMI is seeking a Cyber Security Lead to provide subject matter expertise for security and information assurance activities to the Aberdeen Proving Ground. This is a full-time position.

Major Duties & Responsibilities:

Provide cybersecurity services to protect information and information systems from unauthorized access and to protect the data within systems.

Validate technical standards and security policy for LAN topologies and components; identify and remediate security vulnerabilities.

Administer Host-Based Security System (HBSS).

Perform scanning, analysis and remediation with the Enterprise provided tool and provide reports.

Provide reports and documentation in support of the submission (and continuous monitoring) for the Risk Management Framework (RMF).

Assist with preparation for Defense Information Systems Agency (DISA) Command Cyber Readiness Inspections (CCRIs) and other Department of Defense or Department of the Army Cybersecurity related inspections/evaluations.

Provide support for the Department of Defense (DOD) Public Key Infrastructure (PKI) service.

Request, receive, install, and maintain accountability of system (server) PKI certificates and providing technical support for PKI.

Provide DOD PKI services including directory support, certification validation, registration, interface to related Army systems, hosting of PKI-enabled servers, and required key management services, as well as PKI solutions for email, web applications, file transfer, and Virtual Private Networks. Provide PKI authentication for users' devices and applications to utilize global information services data and enable CAC Cryptographic Logon (CCL), when applicable, for controlling logical access. Register and install PKI certificates on Army-owned PKI protected devices. Utilize the Enterprise Mission Assurance Support Service (eMASS) to record RMF activities such as all relevant security controls. Perform vulnerability scans weekly. Provide Information Assurance Vulnerability Alert (IAVA) compliance and compliance monitoring of all network connected assets. Manage the IAVM program for all RNEC-Aberdeen managed devices for installation and customer activities. Provide patches for each authorized PC baseline and server, as required. Manage compliance reporting using ACAS to ensure that IAVM messages are acknowledged, corrective action implemented, extensions requested, compliance verified, and reporting data entered into required database/system. Develop Mitigation Action Plan (MAP) and IAVM Plan of Action and Milestones (POA&M). Perform network, workstation, and server scans and compile vulnerability reports to facilitate corrections. Plan, detect, respond, investigate, and report malicious and unauthorized activities. Conduct compliance checks for known or potential Communications Systems and System Support to all computer systems and network assets before the assets can be connected to the network. Manage cybersecurity hardware and software changes for the installation. Provide host-based firewall management for enterprise managed assets and workstations. Determine abnormalities, attacks, damages, and unauthorized modifications in the network via mechanisms such as intrusion detection devices.

Qualifications:

6+ years' experience in a cyber security role.

Bachelor's degree in a related field desired.

Must hold at least one of the following certifications in compliance with DoD 8570 requirements for IAM Level II: CAP, CASP CE, CISM, or CISSP.

Experience with HBSS.

Hands-on experience and training on the verification and enforcement of Security Technical Implementation Guide (STIG) identification and remediation.

Hands-on experience and training on the verification and enforcement of Information Assurance Vulnerability Management (IAVM) identification and remediation.

Experience with reporting, scanning and analysis using Assured Compliance Assessment Solution (ACAS). Knowledge of Certification & Accreditation (C&A) processes and the Risk Management Framework (RMF).

Experience with Enterprise Mission Assurance Support Service (eMASS).

Knowledge of Public Key Infrastructure (PKI). Knowledge of Cyber Command Readiness Inspection (CCRI) or similar functions/audits.

Knowledge of Incident Response Plans (IRP) and incident response executions.

Extensive experience in cybersecurity documentation and system authorization artifacts (System Security Plan, lifecycle documentation, continuous monitoring plan Security Assessment Plan, Security Assessment Report, Risk Assessment, etc.).

Possess excellent technical writing, critical thinking/analytical, oral and written communication skills.

Extensive knowledge of RMF to include the RMF Knowledge Service.

Knowledge and experience communicating IA concepts to technical and nontechnical personnel.

Able to develop technical documents and produce system design documentation.

Must have excellent customer service skills; be able project a positive image and professional manner at all times; and be able to work within the confines of a set time schedule.

Must be a US citizen and hold a current Secret clearance.

Equal Employment Opportunity Statement . All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

COVID-19 Vaccination Requirement . Subject to applicable law, all prospective hires will be required to provide proof of COVID-19 vaccination (fully vaccinated) as a condition of employment. Reasonable accommodations based on medical proof or religious beliefs will be considered.

E-Verify Statement . Knowledge Management, Inc. participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S. If E-Verify cannot confirm that you are authorized to work, KMI is required to give you written instructions and an opportunity to contact Department of Homeland Security (DHS) or Social Security Administration (SSA) so you can begin to resolve the issue before the employer can take any action against you, including terminating your employment. Employers can only use E-Verify once you have accepted a job offer and completed the Form I-9.

Pay Transparency Non-Discrimination Provision. Knowledge Management, Inc. will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)

Disability Statement . Knowledge Management aims to be a supportive workplace in all aspects of diversity, including accommodating those with additional needs. If you have a disability and need reasonable accommodation or assistance at any point in the application or onboarding process, please email us at marie@knowledgemanagement.com .

Vacancy expired!

Subscribe Report job