Overview:
The Cyber Security Representative will serve in the role of Information System Security Manager (ISSM) and have responsibility for cybersecurity functions across multiple Information Systems supporting the U.S. Navy. This position requires the ability to understand, implement, and enforce the security policies and procedures required by: OPNAVINST N9210.3, DFARS 252.204-7012, NIST SP 800-171, and other applicable regulations.
The successful candidate must possess sufficient understanding, knowledge, and experience to implement, enforce, and ensure compliance with policies and procedures developed to meet the requirements of the DFARS 252.204-7012 and NIST SP 800-171 on EB ISs. This position will work closely with EB Information System Owners, Information System Security Officers (ISSO), Cybersecurity Program Assurance Representatives, other ISSMs, and other program stakeholders.
This position requires a balance of technical knowledge and experience, with strong analytical, documentation, and reporting skills. Responsibilities include:
- Supporting the development and maintenance of organization-wide Cybersecurity policies, procedures, templates, and associated education, awareness, and training products; organization-wide Risk Management Strategy; and the organization-wide Continuous Monitoring (ConMon) Strategy
-
Developing and/or assessing system specific policies, procedures, templates, training, and other documentation to ensure alignment with the requirements of organization-wide policies and procedures
-
Coordinating, conducting, and documenting system specific ConMon activities; identifying, managing, and tracking system specific risks, to include vulnerabilities and other areas of non-compliance; and providing guidance on risk mitigation and remediation considerations and strategies
-
Processing POA&M Request Forms, Configuration Management Request Forms (CMRF), and Software Risk Assessments
- Verifying Operating System (OS) and network device configurations, and ensure compliance with configuration standards and other technical requirements
- Leading assessment and authorization efforts for systems
-
Interfacing with various internal and external EB stakeholders
-
Providing guidance and support on security requirements and implementation
-
Supporting internal and external inspections and assessments
-
Other responsibilities as necessary to support cybersecurity activities
Qualifications:
Required Qualifications:
Ability to obtain and maintain a DoD SECRET clearance
- Bachelor’s degree in Cybersecurity, Information Technology (IT), or Equivalent; OR a minimum of 4 years of experience in a Cybersecurity, ISSM, ISSO, IT, System/Network Engineer/Architect/Administrator, or equivalent role
-
Technical understanding of Operating Systems, networks, and configuration standards
-
Technical understanding of the DFARS 252.204-7012 and NIST SP 800-171 controls with experience interpreting requirements
Preferred Qualifications:
Working knowledge of the NISPOM and DAAPM.-
Experience with Enterprise Mission Assurance Support Service (eMASS)
- Two or more years of experience as an ISSM, ISSO, System/Network Engineer/Architect/Administrator, or in an Equivalent RMF role
-
Professional Cybersecurity certification (e.g. Security , Network , CISSP)
Skills:
- Strong analytical, problem solving, organizational, and time management skills
-
Ability to work independently and as part of a multi-functional team in a fast paced and challenging environment
-
Ability to communicate effectively with all levels of the organization, as well as external stakeholders