Cybersecurity Task Lead (Job ID# 1108179)
Washington, DC

Job Description

Sayres and Associates Corporation (Sayres) is a dynamic, Native American-owned, Service Disabled Veteran Owned business that has been providing excellence in service to the Federal Government since 2001. We offer a broad spectrum of technical, engineering and administrative services including: acquisition, financial and program management; fleet synthetic training; logistics; ship construction engineering; systems engineering and integration; war gaming; test and evaluation; security, counterintelligence and policy analysis. Sayres is headquartered in Washington, DC with offices throughout the United States and has a presence abroad.

Our success can be attributed first to a proven track record of performance excellence based on our customer-focused approach to services. We have demonstrated experience effectively managing large contractor teams across multiple functional areas for major programs. Sayres offers financial stability and organizational maturity comparable to a large company, coupled with the agility of a small business, allowing us to provide cost effective and best value solutions to our customers.

Awarded the U.S. Small Business Administration, Washington Metropolitan District Office's 8(a) Graduate of the Year for 2017, Sayres and Associates Corporation continues to grow in a highly competitive environment while exceeding customers' expectations and providing a work experience conducive to personal and professional development.

The position description is only meant to be a representative summary of the major responsibilities and accountabilities performed by the incumbents of this position. The incumbents may be requested to perform position-related tasks other than those stated in this description. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, gender identity, disability or veteran status.

Responsibilities

The Cybersecurity Task Lead will be responsible for the following:

* Lead the Platform Information Technologies (PIT) Team in the certification and accreditation of an ACAT 1 shipbuilding program using the Risk Management Framework (RMF).
* Understanding of RMF Accreditation Requirements for HM&E Systems integrated within ship systems.
* Gather and upload system documentation to eMASS and local CM repositories under RMF guidelines.
* Assist with the validation of designated Cybersecurity controls as required by PIT and RMF guidelines.
* Collect monthly Cybersecurity updates from PARMs.
* Oversee the development of RMF Accreditation packages and staffing through NAO and FAO.
* Provide ISSE support for RMF Accreditation packages with Cybersecurity status data for CM.
* Coordinate collaboration meetings with NAO and FAO for ATO requirements.
* Assist with Cybersecurity testing as a witness, trusted agent, etc. as necessary.
* Participate in meetings pertaining to RMF A&A with PARMs, Lead Integrators, and others as appropriate and provide excerpts of meetings to Cybersecurity PAPM/ISSM.
* Monitor stakeholders CM representatives for Platform Cybersecurity status for all systems (create or utilize existing databases).
* Coordinate and provide critical Cybersecurity input to the required OSD level documents.
* Work with the Test and Evaluation team for Cyber Related Test and Evaluation Master Plan (TEMP) Testing.
* Develop and maintain the Program Protection Plan (PPP) and the Cybersecurity Strategy.
* Maintain a repository of all certification and accreditation documentation.
* Write, research, and develop operational doctrines for all current projects that include briefing all aspects to senior level officials for approval of the structured way ahead.
* Provide site support for the primary client as required.
* Participate in weekly/monthly meetings with Cybersecurity PAPM/ISSM.
* Work with Cybersecurity PAPM/ISSM to support the Cybersecurity program configuration.
* Report and advise the Cybersecurity TM on all Cybersecurity issues and assist the ISSM in the development, review, and maintenance of the Cybersecurity certifications and accreditation documentation, in accordance with DoDI 8500 series.
* Support the ISSM in coordination of security measures including analysis, periodic testing/scanning, evaluation, verification, accreditation, and review of information system installations at the appropriate classification level.
* Analyze and evaluate design options; recommend solutions; and guide implementations that maximize the overall protection of the system while factoring in programmatic, technical, environmental, and other constraints affecting system development.
* Communicate complex technical solutions to all levels of management.
* Ensure that procedures are developed and implemented in accordance with CM policies and practices for authorizing the use of software on information systems.

Qualifications & Clearance Requirements

Education, Work Experience, Skills, and Clearance Requirements:

* Bachelor's degree in Information Technology, Computer Engineering, or Computer Science. Significant/current expertise and certifications will be considered in lieu of the aforementioned degrees.
* Active Top Secret clearance verifiable in JPAS.
* Cybersecurity workforce certification CompTIA Security+ and Network+.
* Navy RMF Validator.
* Knowledge of Security Content Automation Protocol (SCAP), Security Technical Implementation Guides (STIGs), Assured Compliance Assessment Solution (ACAS), control systems/SCADA, Linux (server/workstation), and Windows system administration (server/workstation).
* Knowledgeable in ship HM&E Systems and cyber integration, Total Ship Computing Environment (TSCE), and Data-At-Rest (DAR), Data-In-Transit (DIT), and Anti-Tamper methodologies, policies/procedures and implementing techniques.
* Ability to work in an integrated product team environment.
* Ability to communicate effectively.
* Ability to travel to Fleet sites, shipbuilding locations, DC area sites, and at times extensive time aboard ship.
* Expert in using DoN Application & Database Management System (DADMS), Enterprise Mission Assurance Support Services (eMASS), and Vulnerability Remediation Asset Manager (VRAM), etc.
* Working knowledge of various DoD instructions, NAVSEA policy, and NIST implementation for NSS.

Highly Desired:

* Cybersecurity workforce certifications CISSP or GLSC.