Overview

GovCIO is currently seeking a qualified Cyber Security Subject Matter Expert (SME)for the Department of Veteran’s Affairswho has advance knowledge for Authority to Operate (ATO)s process, security operation,understanding of current cyber threats and adversaries,cyber security tools and eMASS GRC tool. The BAMS Cyber Security Office (CSO) Analyst will use these skills to provide guidance and training for other Cyber Security Analysts for the VRE PSESProduct Line. The Analyst will provide leadership for VRE PSESmultipleATOs. The position will be afully remote position. The core hours of operation will be from Monday through Friday, 8:00 am to 5:00 pm ET.

Responsibilities

The primary responsibility of theGovCIO BAMS Cyber OfficeCyber Security Analyst is to support the objectives and mission of the VAAuthority to Operate (ATO)s. The BAMS CSOAnalyst will provide leadership, guidance and training for other Cyber Security Analysts for the VRE PSESProduct Line.

• Creating, reviewing, maintaining, and providing feedback for VRE PSESProduct LineCyber Security Artifacts documentation and evidence to obtain Authorization to Operate (ATO): System Security Plan (SSP), Incident Response Plan (IRP), Risk Assessment(RA), Interconnection Security Agreement/Memorandum of Understanding (MOU/ISA), Security Impact Analysis (SIA), Privacy Threshold Analysis (PTA), Privacy Impact Assessment (PIA), Information Security Contingency Plan (ISCP), Disaster Recovery Plan (DRP), Information System Vulnerability Management Plan (ISVMP), Business Impact Analysis, Configuration Management Plan (CMP) and ISCP/DRP/IRP Functional and Tabletop Exercise.

• Provide strategic security recommendations and processes.

• Providing Cyber SecuritySubject Matter Expert (SME)analysis and documentation for various analytical efforts focused on VA Office security processes and procedures.

Contributing to Security audits and Security assessments, communication plans, strategic and tactical goals, and objectives.

• Categorizing VA Information Systems.

• Coordinating requests for security vulnerability scanning and penetration testing identifying potentially exploitable vulnerabilities.

• identifying and developing security performance management metrics and reporting that includes performance measures, tracking metrics, and trend analysis;

• Updating security project plans and project management plans monthly, quarterly, and yearly as required;

• Supporting and preparing Security Controls Standard Operating Procedures (SOP)s

• Participating in special projects as required.

• Contributing to the further development, enhancement, and implementation of VA Office and federally mandated compliance initiatives and policies such as but not limited to:

• Federal Information Processing Standards (FIPS)

• Federal Information Security Management Act (FISMA)

• NIST SP 800-53 and 53A Revision 4 (Security and Privacy Controls)

• NIST SP 800-37 Rev.2 Risk Management Framework

• NIST SP 800-39 Managing Information System Risk

• NIST SP 800-137 Continuous Security Monitoring

• VA Directive 6500 VA Cyber Security Program

Qualifications

Required Skills and Experience:

• Bachelor's degree in computer science, cyber security or other information system technical discipline, with 5 to 8 years of experience (or commensurate experience).

• Intermediate Experience with ATO requirements, security artifacts and evidence documentation.

• Intermediate Experience with Enterprise Cloud Security Solutions.

• Experience with Cybersecurity Frameworks for VA.

• Experience in identification of Security Risks and Gaps.

• Intermediate Experience working in VA eMASS GRC tool.

• Experience with using Control Correlation Identifies (CCI) for security and privacy control implementation

• Strong understanding and application of security standards

• Leadership, guidance and training Cyber Security analysts

• Intermediate experience with VA ATO Management

• Strong attention to detail.

• Experience working on a team towards a common goal.

• Strong problem-solving skills.

• Strong verbal and written skills.

• Positive attitude and willingness to step in, where needed.

• Great Team Player is a must! Use to working in Team environment.

Preferred Skills and Experience:

• Experience working in an IT environment.

• Experience with Jira and Confluence

• Competence in Microsoft Suite

• Experience with Power Builder

• Experience leading and guiding cyber security personnel towards success.

• Certified Information System Security Profession (CISSP)

• Certified Information Systems Auditor (CISA)

• Certified Authorization Professional (CAP)

Clearance Required

Ability to obtain and maintain a Suitability/Public Trust clearance

Company Overview

GovCIO is a team of transformers--people who are passionate about transforming government IT. Every day, we make a positive impact by delivering innovative IT services and solutions that improve how government agencies operate and serve our citizens.

But we can't do it alone. We need great people to help us do great things - for our customers, our culture, and our ability to attract other great people. We are changing the face of government IT and building a workforce that fuels this mission. Are you ready to be a transformer?

We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, or status as a protected veteran. EOE, including disability/vets.

Posted Pay Range

The posted pay range, if referenced, reflects the range expected for this position at the commencement of employment, however, base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, education, experience, and internal equity. The total compensation package for this position may also include other compensation elements, to be discussed during the hiring process. If hired, employee will be in an “at-will position” and the GovCIO reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, GovCIO or individual department/team performance, and market factors.

Posted Salary Range

USD $95,000.00 - USD $105,000.00 /Yr.

Submit a referral to this job (https://careers-govcio.icims.com/jobs/4006/cyber-security-associate-%28remote%29/job?mode=apply&apply=yes&in_iframe=1&hashed=-1834385473)

Location US-Remote

ID 2024-4006

Category Cyber Security Services

Position Type Full-Time