Cyber Security Lead
SECURITY CLEARANCE: Current SECRET
LOCATION: Quantico, VA
The Cyber Security Lead will supervise the Cybersecurity (CS) and Computer Network Defense (CND) for the network and all of the customer specific applications. This involves Certification and Accreditation (C&A), Computer Incident Response Team (CIRT), and a Security Operations Center (SOC). This also involves providing a secure network environment for the network
10 years of cybersecurity experience within the Department of the Navy.
Bachelor’s degree, Risk Management Framework USMC Qualified Validator preferred.
PRIMARY DUTY RESPONSIBILITIES:
The Cyber Security Lead will supervise the team and ensure the following:
-Support the certification and accreditation process for the network in accordance with DoD, Department of The Navy (DoN), and USMC security policies and requirements.
-Maintain and update all documentation and artifacts.
-Participate with Government personnel in meetings to ensure the evaluation of hardware and software integration into the customer baseline and ensure IA accreditation process is successful.
-Conduct C&A testing based on the system’s Mission Assurance Category (MAC) and Classification level of information processed to ensure implementation of relevant Information Assurance Controls (IAC) and report C&A impacts for new products and protocols. Ensure compliance with Risk Management Framework guidelines.
-Ensure that Automated Information Systems (AIS) are accredited by the Designated Accrediting Authority (DAA), Headquarters United States Marine Corps (HQMC), Command, Control, Communications and Computers (C4).
-Maintain the DoD IT Portfolio Repository – DoN (DITPR-DON) for network information and the DoN Application and Database Management System (DADMS) for applications.
-Produce and implement local procedures in compliance with all higher echelon C&A requirements, policies, and DoD IACs.
-Operate a risk registry database of requested or approved risk acceptance and mitigations from the DAA.
-Process incident reports received from the Marine Corps Network Operations and Security Command (MCNOSC) Marine Corps Emergency Response Team (MARCERT).
-Install, operate, maintain, and upgrade all network security hardware and software as necessary (including but not limited to: firewalls, mail filter, screening router, Intrusion Detection and Intrusion Prevention Systems (IDS/IPS), DNS blackhole, and Demilitarized Zone (DMZ) devices).
-Identify non-secure activities on the network and recommend corrective/remedial actions to the Information Assurance Manager (IAM) and provide continual process improvement.
*Position is Contingent upon Contract Award