Cyber Security Management Specialist - Aberdeen Proving Ground, United States - System One

    System One
    System One Aberdeen Proving Ground, United States

    4 weeks ago

    System One background
    Description
    Cyber Security Management Specialist

    Aberdeen Proving Ground, MD - onsite

    Secret clearance is required

    Must be IAM Level III certified: CISSP, CISM, GSLC, and/or CCISO


    Major Duties & Responsibilities:

    • Build, coordinate, maintain, change, and keep updated, the Risk Management Framework (RMF) Assessment and Authorization (A&A) packages.
    • Develop and complete System Security Documents in accordance with the DoD Information Assurance Certification and Accreditation (DIACAP) Process.
    • Draft, develop, and monitor cyber security policy for ATEC.
    • Maintain and update database for assessing/managing risk, and authorizations for all data networks, and maintain and monitor progress of assigned IT personnel's progress in maintaining compliance with the Federal Information Security Management Act, Intelligence Community, and DoD compliance requirements.
    • Implement IA controls and assist customers with the implementation on IA controls where the controls fall outside of the contractor's area of responsibility.
    • Continuously monitor for control compliance and take immediate actions to bring systems into compliance.
    • Defend against unauthorized activity within computer networks including monitoring, detection, analysis (such as trend and pattern analysis), and response and restoration activities.
    • Determine the attribution and actions taken through the use of computer networks that result in an actual or potentially adverse effect on an information system and/or the information residing therein to develop incident response plans using forensically sound methods and procedures.
    • Ensure that all application deliverables comply with the DISA Application Security & Development and Database STIG, which includes the need for source code scanning and a Web Penetration Test to mitigate vulnerabilities.
    • Review current CCRI requirements and ensure systems and operations are compliant.

    Qualifications:

    • 7+ years experience in cyber security and information assurance.
    • Bachelor's degree in a related field.
    Must hold one of the following certifications in compliance with DoD 8570 IAM Level II:
    CISSP, CAP, CASP+ CE, and/or CISM.


    • Experience in information security or network/system administration, including IT auditing, IT compliance, and enterprise risk management.
    • Experience performing cybersecurity assessments and inspections, providing incident response, creating/updating/implementing cybersecurity-relevant policies and procedures.
    • Knowledge of DOD regulatory compliance and information security management frameworks, including NIST SP 800-37, NIST SP 800-53, and DoD RMF.
    • Experience in developing and interpreting cybersecurity plans, policies, and procedures (in areas to include but not limited to configuration management, contingency/disaster preparation, incident response, account management, access control, media control, etc.). Experience providing incident response, reviewing security assessments and inspections and conducting risk management activities at the system level.
    • Experience as a Subject Matter Expert in developing and interpreting cybersecurity plans, policies, and procedures (in areas to include but not limited to configuration management, contingency/disaster preparation, incident response, account management, access control, media control, etc.).
    • Experience providing incident response, performing security assessments and inspections and conducting risk management activities at the enclave level.
    #M2


    System One, and its subsidiaries including Joulé, ALTA IT Services, CM Access, TPGS, and MOUNTAIN, LTD., are leaders in delivering workforce solutions and integrated services across North America.

    We help clients get work done more efficiently and economically, without compromising quality.

    System One not only serves as a valued partner for our clients, but we offer eligible full-time employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.

    System One is an Equal Opportunity Employer.

    All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.