ITility, LLC

  • Cybersecurity Manager

    Job Locations US-VA-Arlington
    Posted Date 4 months ago(6/11/2018 4:59 PM)
    Job ID
    2018-1773
    # of Openings
    1
    Category
    Management
  • Overview

    ******THIS POSITION IS CONTINGENT UPON CONTRACT AWARD******

    The Cyber Security Manager is responsible for all areas of IT cybersecurity and in assisting the ARNG NCR DOIM in managing the risk of operating a network including CCRI and C&A support and tracking.

    Responsibilities

    Cyber Security Manager is responsible for ensuring the following aspects of Cyber Security:

    • Develop and maintain an OPSEC Standing Operating Procedure (SOP)/Plan.
    • Maintain ARNG NCR DOIM IT infrastructure in a manner compliant with Federal Information Security Management Act (FISMA), DoD Risk Management Framework (RMF) and National Institute of Standards and Technology (NIST) guidance.
    • Provide Security Management Support ensuring that security considerations are accounted for.
    • Ensure that ARNG NCR DOIM LAN and its management systems are in compliance with all Information Assurance Vulnerability Alerts (IAVAs).
    • Conduct weekly security scans of all ARNG NCR DOIM networked equipment using the ARNG NCR DOIM Assured Compliance Assessment Solution (ACAS), and remediate vulnerabilities according to SLA.
    • Review Host Based Security Solution (HBSS) and Tanium reports for end point security compliance. Remediate identified vulnerabilities as required.
    • Track Information Assurance Vulnerability Management (IAVM) compliance.
    • Create and submit appropriate security related reports, such as intrusion, virus infection incidents, FISMA and others as requested by the Government.
    • Continuously update progress on POA&Ms.
    • Ensure ARNG NCR DOIM compliance with all applicable CCRI requirements (e.g. Technical, CND Directives, Contributing Factors, and etc.).
    • Provide support to the CCRI assessment team during scheduled and unscheduled inspections.
    • Report ARNG NCR DOIM CCRI status, findings, and results.
    • Create Plans of Action & Milestones (POA&M) and track CCRI findings through POA&Ms and report status during MPSRs.
    • Support ARNG NCR DOIM preparation for CCRI inspections.
    • Continuously update progress on POA&Ms.
    • Ensure the ARNG NCR DOIM complies with the Tenant Security Plan (TSP) for the ARNG portion of DODIN-A NIPR and SIPR in support of the ARNG Authority to Connect (ATC) and Authority to Operate (ATO).
    • Test the security technical controls for the ARNG NCR DOIM LAN.
    • Support the ARNG’s Enterprise C&A.
    • Develop a Security Test and Evaluation (ST&E) Test Plan.

    Qualifications

    • An IAM Level III Certification – one or more of the following current certifications
    • GSLC – GIAC Security Leadership Certification
    • CISM – Certified Information Security Manager
    • CISSP – Certified Information Systems Security Professional
    • A minimum of five years’ experience managing cybersecurity for a DoD agency with requirements, infrastructure, and tools similar to those of the ARNG NCR DOIM
    • ITIL 2007/2011 Foundation Level Certification.
    • An active DoD Secret Security Clearance

    Bachelor’s degree in a relevant discipline (Computer Science, Information Systems, Information Technology, Cyber Security, Statistics, Business Administration, Systems Engineering, Computation Science, Computer Engineering, Electrical Engineering, Data Analytics, Information Technology, Information Security and Assurance, Mathematics, Software Engineering, Systems Engineering, and Telecommunications)

    ITility is an Equal Opportunity Employer

    ITility is committed to providing a work environment that is non-discriminatory, harassment free, fair, ethical and inclusive.


    ITility is committed to the principle of equal employment opportunity, and complies with all applicable laws which prohibit discrimination and harassment in the workplace. ITility strictly prohibits discrimination or harassment based on race, color, religion, national origin, sex, age, disability or any other characteristic protected by law in all terms, conditions and privileges of employment, including without limitation, recruiting, hiring, assignment, compensation, promotion, discipline and termination. This policy covers conduct occurring at ITility’s offices, client sites, other locations where ITility is providing services, and to all work-related activities.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed