Cyber Readiness Lead with Security Clearance
D2 Consulting
2024-11-08 20:43:36
Saint Louis, Missouri, United States
Job type: fulltime
Job industry: I.T. & Communications
Job description
The Cyber Readiness Lead will directly work with the Chief of Cybersecurity Operations. They will take previous experience with cybersecurity operations, compliance, governance, and standards to oversee the future planning and day-to-day operations of the TCS Cybersecurity Readiness service. The Cyber Readiness Branch Chief will oversee and direct all teams within Cyber Readiness. This includes the Audit Support, Orders & Directives, Subscriber Management, Cybersecurity Performance Evaluation, Exercise Planning and Evaluation, Training, and Tradecraft teams. Because of this, the candidate will be required to effectively work with and communicate with varying levels of stakeholders to include TCS leadership, senior executives, technical customers, non-technical customers, and all TCS staff down to the lowest levels. What You'll Get to Do: Will assist with the monitoring of performance and morale of staff across the Cybersecurity Readiness branch by providing awareness and, if relevant, recommended courses of action to resolve issues to the Chief of Cybersecurity Operations. As needed, will provide guidance or direction to lower-level staff. Provide a monthly briefing to the customer on current work and completed work. To include any issues identified that were addressed or residual issues that require further attention. Continuously assesses SOC capability/maturity and optimizes SOC processes (Incident. Detection, Incident Handling, Incident Response/Recovery) through various technical (i.e., exercises, cyber threat emulation) and non-technical (i.e., audits/assessments, lessons learned) channels. Will act as the representative for any Cyber-related audits on behalf of the customer. This will include attending scheduled audit meetings and/or briefing the customer on notable findings or recommendations, as needed. Evaluate and execute requirements as listed within the DoD 8140 series. With special emphasis on the newer DoD 8140.03 and how it pertains to the internal training program within the Cyber Division. In collaboration with the lead of Defensive Cyber Operations, identify opportunities to leverage create, and execute exercises with the intent to assess the general understanding of policies, procedures, and technical skillset across personnel within the Cyber Division. You'll Bring These Qualifications: Candidate must have a TS/SCI with the ability to obtain a Polygraph. Demonstrated leadership experience serving as an operations chief, chief engineer, functional manager, or team lead for a minimum of 8 years. Sufficient knowledge of complex enterprise cybersecurity systems and technologies with the ability to interpret network and web architecture documentation. Demonstrated experience providing briefings to an executive audience. Certified DoD 8140.01 and 8570.01-M Information Assurance Technical Officer (IAT) Level III and the CISM certification to satisfy the CSSP Manager role. Demonstrated specialized experience applying ICD-503 Risk Management Framework, National Institute of Standards and Technology (NIST) Special Publications, Committee on National Security Systems (CNSI), International Standards Organization (ISO) 27000 series, and the Security Operations Capability Maturity Model(s) (SOC-CMM, C2M2, or equivalents) to secure information systems. Demonstrated experience with ODNI ICS 500-27, NSM-8, and OMB M21-31 Strong understanding of cybersecurity compliance policy, programs, processes, and metrics. Excellent verbal and writing skills with the ability to write clear and concise assessment reports. Good understanding of project management concepts such as ITIL and the differences between Iterative versus Waterfall methodologies. Bachelor's degree, or higher, in Computer Science, Cyber Security Engineering, or IT-related discipline. An additional 6 years of experience in cybersecurity may be substituted instead of a degree. These Qualifications Would be Nice to Have: Demonstrated 5 or more years of experience supporting an IC or DoD agency in adopting and transitioning systems and services to cloud environments, including hybrid cloud environments. Demonstrated experience in cybersecurity design, engineering, and operations with an emphasis on NGA capabilities.