Dynamic Solutions Technology, LLC, a premier strategic services firm that meets IT and Service needs for commercial and government clients, is seeking a full-time Lead Cyber Security Specialist in support of the government customer located in Washington DC area.
Responsibilities:
-
Integrate and test new technology for compliance with IT security standards
-
Perform analysis to ensure security controls are consistently implemented throughout system development life cycle and continuous monitoring phase.
-
Develop, document, and execute plans for monitoring, assessing, and verifying security controls across assigned information systems
-
Documenting security control implementation statements.
-
Knowledge of network security architecture concepts, including topology, protocols, components, and principles.
-
Demonstrated experience creating system continuous monitoring and contingency plans that identify critical mission and business functions and recovery processes and procedures.
-
Analyze Information Assurance Vulnerability Alert (IAVA) requirements to determine applicability to existing systems
-
Provide recommendations, guidance, and corrective action for all non-compliant security controls.
-
Request, gather, and comprehend evidence required to closeout open POAMS.
-
Conduct comprehensive self-assessments consisting of automated and manual security assessments of the management, operational, and technical security controls
-
Optimize processes to meet IT security-related goals and strategies by documenting lessons learned for each system and application by authorization month and year.
-
Develop test scenarios and exercises as required to evaluate, analyze, and investigate emerging technologies
-
Enter test results and artifacts into the bureau/department repository
-
Document assessment activities and results in sufficient detail to enable external review of all assessment processes, activities, results, and conclusions
-
Skill in developing, maintaining, and overseeing cybersecurity efforts and cybersecurity training materials.
-
All other duties assigned
Qualifications:
-
Understanding of information assurance, cybersecurity, privacy policies disciplines, methodologies.
-
Understanding of Federal Information Security Modernization Act 2014 (FISMA)
-
Understanding of the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF)
-
Understanding of the NIST Cybersecurity Framework (CSF)
-
Understanding of Identity, Credential and Access Management (ICAM) implementation.
-
Understanding of the National Initiative for Cybersecurity Education, National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework, and Cybersecurity Workforce Framework, Federal Cybersecurity Workforce Assessment Act of 2015.
-
Ability to work with customers to assess needs, provide assistance, resolve problems, satisfy expectations; knows products and services.
-
Understanding of CSAM reporting and controls management (Common, Hybrid, and System specific).
Required:
-
B.A and/or B.S.
-
A minimum of seven (7) years of experience in DoD Risk Management Framework and Information Assurance (IA) security compliance policies performing system and application certifications and accreditations.
-
Expert in the processes and documentation requirements for RMF methodologies
-
Demonstrated experience supporting Government Agencies preferably DOS.
-
Proficient or able to gain proficiency with a broad array of security software application and tools
-
Organized with attention to detail