Cybersecurity Specialist - Lead Nss Assessment, Compliance & Policy Support
Softek International
Remote Eligibility
Hybrid
Domain
GRC
State
Virginia
City
Springfield
Job Description
Posted on:
November 24, 2024
Primary NIST Speciality
Oversee and Govern
NIST Sub-speciality
Cybersecurity Management
Seniority
Experienced
Salary ($K)
-
Summary and company overview
NA
Responsibilities
Draft and finalize DHS National Security System and Sensitive System Policy proposals and updates.
Draft DHS NSS Assessment, Compliance, and Policy Support Standard Operating Procedures and Playbooks
Draft DHS RMF Processes and Procedures
Provide Analysis Report from Cybersecurity Threats and Vulnerabilities Research (both OSINT and other sources)
Assist with the development and maintenance of formal documented NSS Assessment and Compliance SOPs. SOPs shall provide the operational basis for the DHS NSCD Compliance CONOPS.
Continuously tune and update Government provided cyber risk recommendations through continuous monitoring.
Provide recommendations and produce consistent comprehensive reports.
Implementation, training, and SOP development and maintenance of implemented solutions
In-depth analysis to determine trends and patterns of cyber threat information.
Reporting results of all analyses to the Government Leads and DHS NSCD Director
Document lessons learned after security control assessments and customer on-site assistance visits.
Attend regular and ad-hoc NSS related meetings, including ERB, C-ICCB, HSDN Safeguarding and Information Assurance Governance Board, CIACS status meetings.
Participate in NSCD Site Compliance
Fulfill and adhere to DHS NSCD guidance.
Manage the reporting of cybersecurity compliance events that affect DHS NSS.
Document all compliance activities, including incoming DHS CISO and DHS Information and Analysis requests for information.
Maintain an up-to-date list of Department, Component, and relevant cyber-IA POCs.
Utilize DHS NSCD-authorized compliance tracking system(s) to track approvals, compliance activities, and reporting.
Compliance reports shall communicate the effect on the mission, assets evaluated, resulting cyber risk recommendation, and mitigation plan.
Conduct research on cyber threats, assess mitigation protections, and document risks in Risk Assessment Reports.
Keep DHS CISO and stakeholders informed on DHS NSS security posture.
Serve as advisor to DHS NSCD Government personnel.
Conduct weekly/monthly POAM monitoring and ensure timely closures.
Provide analysis and feedback on DHS security artifacts assigned to NSCD.
Support the development and update of DHS NSCD Information Safeguarding and Risk Management Council processes and procedures.
Propose security policy enhancements, through gap analysis, for better national security posture.
Support formulation of DHS NSCD SOPs and playbooks for security practices.
Perform DHS National Security Exception analysis in support of Section 508 compliance.
Job Requirements
Required Qualifications
Required Experience: 4+ years.
Bachelor's degree in computer science or related field.