Cybersecurity Team Lead (SCA-R) - CISSP / CISM Job at IPKeys Technologies
Overview:
IPKeys Technologies, is a strategic partner in the DoD Federal, Commercial, and Energy sectors, delivering expertise in the definition, development, integration, and deployment of Internet Protocol technology and communications systems. IPkeys is based in New Jersey, Maryland, Virginia, California, Louisiana, and Texas. We offer a Competitive Salary and Benefits Plan such as: Company Paid Premium Medical - Dental - Vision benefits, Life Insurance, Employee Referral Bonus Program, Education & Professional Development Assistance, Company Stock, and Company Contribution 401k Program. Responsibilities:
Qualifications:
Experience:
Education:
Compensation and Benefits - Full Benefits and Employment package includes:
IPKeys Technologies, a high growth technology services company, has an opportunity for a
Cybersecurity Team Lead (SCA-R) to provide lead support on our (DISA) Program with a location of Ft. Meade, MD.
- This position requires one of the following certifications: CISM, CISSP , GSLC,
- Must possess an active DoD Secret or Top Secret clearance.
IPKeys Technologies, is a strategic partner in the DoD Federal, Commercial, and Energy sectors, delivering expertise in the definition, development, integration, and deployment of Internet Protocol technology and communications systems. IPkeys is based in New Jersey, Maryland, Virginia, California, Louisiana, and Texas. We offer a Competitive Salary and Benefits Plan such as: Company Paid Premium Medical - Dental - Vision benefits, Life Insurance, Employee Referral Bonus Program, Education & Professional Development Assistance, Company Stock, and Company Contribution 401k Program.
-
The purpose of the SCA-R support is to perform SCA-R/team lead functions within the A&A process. Each team lead shall perform team lead/SCA-R duties for approximately 25 programs. Programs and enclaves can include those supporting DISA, DoD CIO, Combatant Commands, DoD Agencies, Battlefield Information Collection and Exploitation System (BICES), or other DoD entities. This support can report to multiple AOs. The team lead shall follow the A&A process guidance and normal procedures of a team lead as outlined by the Government.
The functions of the SCA-R/team lead include the following:
Interface directly with assigned PM to understand the mission, security architecture, deployment locations and model, as well as any changes/upgrades that will occur to the program.- Perform cybersecurity assessments/risk analysis.
- Attend the A&A Team Lead Training, Reviewer Introduction Training, Network Security Readiness Review (SRR) Course, and become ACP qualified in one SRR technology.
- Perform certification assessments for assigned programs to include review of change requests; review of ports, protocols, and services; whitelist requests; self-assessments results; statements of compliance; scan and STIG reviews; systems security plans; cybersecurity control evidence and artifacts; and on-site review results.
- Lead a team to review a system/enclave where the system/enclave resides. The team lead shall be required to conduct an in-brief, a daily hot wash with the review team and system/enclave/site personnel, and an out brief. In briefs and out briefs shall be submitted to RE5 SharePoint Administrator for posting to the repository no more than five business days after the review is complete. The trip report shall be submitted in the Government provided trip resourcing tool no more than five business days after the review is complete.
- Present results and recommendations to AOs, Site Commanders, PMs, or other Government leadership.
- Attend weekly training sessions and staff meetings to gain an understanding of changes or clarifications to procedures.
- Team leads shall be required to use a variety of tools to include the Government provided trip resourcing tool (used to execute and on-site review), eMASS (for control reviews), Team Lead Resource (TLR) (to provide information on a program), nSPECT (to create in and out brief reports), and Requirement Tracking System (RTS) (to submit actions for review/signature). Other tools that will be used include the PPSM database, Whitelist Tool, DoD Information Technology Portfolio Repository (DITPR), RMF Knowledge Service, and Enterprise Security Posture System (ESPS).
- Conduct security architecture reviews to ensure that the program’s architecture is in compliance with STIG requirements and best practices. This technical analysis will be considered in the risk analysis and documented/include in the certification recommendation.
- Develop customized checklists based on the security architecture, special purpose equipment, type accredited deployment guides, Unified Capabilities Approved Product List deployment guides, and required ancillary equipment.
- Analyze Plans of Action and Milestones (POA&M) and mitigation plans for unresolved findings to determine residual risk. This shall include reviewing and analyzing submitted POA&Ms with detailed technical justification and references for mitigations and determining if the proposed solution is adequate mitigation for approval. This technical analysis shall be documented/include in the statement of residual risk.
- Conduct a Risk Assessment to analyze threats to and vulnerabilities of an information system and the potential impact that the loss of information or capabilities of a system would have on the user communities and the mission of the organization. The resulting analysis is used as a basis for identifying appropriate and cost-effective countermeasures and to determine residual risk.
- For each certification assessment, the team lead shall prepare a Certification Assessment Package that includes risk analysis, certifier’s recommendation, and statement of residual risk, and/or applicable forms for the certification action being taken.
Qualifications:
- Must possess an IAM-III level certification which requires one of the following certifications: CISM, CISSP (or Associate), GSLC, CCISO or HCISPP
Experience:
- Minimum of 5 years of relevant experience
Education:
Bachelor of Science (B.S.) or above, or equivalent combination of IT technical or cybersecurity Associates Degree and five years’ experience.
Security:
- Must possess an active DoD Secret or Top Secret clearance.
Compensation and Benefits - Full Benefits and Employment package includes:
Medical, Dental and Vision Insurance Coverage: (Includes eligible dependents)
Retirement Plan: IPKeys contributes 3% of your actual paid wages to your 401k retirement account
Life/AD&D Insurance: IPKeys provides all full-time employees life insurance
Short- and Long-Term Insurance: Company paid income protection
Flexible Spending Accounts: Employee-funded tax savings accounts for both Health Care and Dependent Care
Educational Assistance Benefit
PTO Leave / Sick Leave / Observe Federal Holidays Annually
Bonus incentives and corporate growth compensation also available
Retirement Plan: IPKeys contributes 3% of your actual paid wages to your 401k retirement account
Life/AD&D Insurance: IPKeys provides all full-time employees life insurance
Short- and Long-Term Insurance: Company paid income protection
Flexible Spending Accounts: Employee-funded tax savings accounts for both Health Care and Dependent Care
Educational Assistance Benefit
PTO Leave / Sick Leave / Observe Federal Holidays Annually
Bonus incentives and corporate growth compensation also available
Please Note :
bankofmontserrat.ms is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, bankofmontserrat.ms provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.