What are the responsibilities and job description for the Cyber Security Manager position at CALIBRE?
CALIBRE Systems Inc., and employee-owned Management Consulting and Digital Transformation company, is looking for a Cyber Security Manager. This position will be on-site in Arlington, VA. This position will also require an Active Secret Security Clearance.
As the Cybersecurity Manager shall manage all areas of IT cybersecurity and advise the client in managing the risk of operating a network including system support and tracking. The Cybersecurity Manager will assess the impact of Information Assurance Vulnerability Alert (IAVA), Computer Network Defense (CND) Directives, and Secure Technical Implementation Guideline (STIG) implementation. The Cybersecurity Manager will maintain the client infrastructure in a manner compliant with Federal Information Security Management Act (FISMA), DoD RMF, and National Institute of Standards and Technology (NIST) guidance.
Duties and Responsibilities :
- Facilitate the following aspects of cybersecurity : physical, personnel, facility, and information systems through policies and controls IAW Army Regulation (AR) 25- 2, AR 380-5, Chairman of the Joint Chiefs of Staff Instruction (CJCSI) 6510.01F, and DoD 5220.22-M, DoD Directive (DoDD) 8140.01, DoD Instruction (DoDI) 8500.01, DoDI 8530.01, DoDI 8510.01, and DoD 8140.01-M.
Maintain the client LAN and its management systems are in compliance with all IAVAs.
Conduct weekly security scans of all client networked equipment using the client systems and remediate vulnerabilities according to SLA.
Review HBSS and Tanium reports for end-point security compliance and remediate identified vulnerabilities, as required.
Track Information Assurance Vulnerability Management (IAVM) compliance.
Create and submit appropriate security related reports such as intrusion, virus infection incidents, FISMA, and others as requested by the Government.
Support and validate access requests for network access and managed services through Service Operations.
Provide consultation on cybersecurity perspectives for proposed changes, initiatives, and projects.
Monitor and review development in the technology and regulations governing the industry, DoD, and Federal Government security operations.
Maintain and draft memorandums for record, system interconnection agreement, and / or equivalent to document any and all system connections to the networks.
Validate client-managed assets are in compliance with Army Gold Master configuration, National Security Agency (NSA) Configuration Guidance, and NIST Configuration Guidance through coordination with Asset Management.
Keep the client in compliance with the Tenant Security Plan (TSP) for the client portion of DODIN-A NIPR and SIPR in support of the Authority to Connect (ATC) and Authority to Operate (ATO).
Develop a Security Test and Evaluation (ST&E) Test Plan (Section F, Deliverable 33) that addresses all the requirements identified in NIST SP 800-53 and the appropriate DoD, Army, and client information system security testing requirements. Prepare, at a minimum, two ST&E Test Plans and support the resulting testing activities during the life of the project.
Required Skills
Required Experience
