Cybersecurity Support

Position Title

Cybersecurity Support

Work Location

Stafford/Quantico, VA

Contract

PM CSS

Position Description

This position provides DOD 8570 and/or DOD 8140, level III IAT or higher support to oversee and review all Assessment and Authorization documents required of programs by Marine Corps Systems Command and Headquarters Marine Corps Director. The incumbent shall provide input in the development of specific technical solutions for securing systems without negative operational impact. The incumbent shall assist with program/project developed test events, and directly support the CSS Information Systems Security Manager (ISSM) in his/her cybersecurity efforts.  The incumbent shall have secret level clearance in order to access the Government’s Secret Internet Protocol Router Network (SIPRNet) lab to review artifacts and address taskers at the secret level; interface with the MCSC Security Controls Assessor (SCA) and the Headquarters Marine Corps (C4 Division) Authorizing Official (AO), and any other office in support of the assessment and authorization requirements of any PM CSS products.

Responsibilities

Assessment and Authorization Documentation

• Review program/project provided documentation for Clinger Cohen Act (CCA) compliance per the DoD 5000.
• Review program/project provided documentation required to obtain system Interim Authorization to Test (IATT)/Interim Authorization to Build (IATB)/Authorization to Operate (ATO)/Authorization to Connect (ATC).
• Review program and project provided annual cybersecurity compliance documentation to ensure it meets the Federal Information Security Modernization Act (FISMA) of 2014 and adheres to additional compliance as it pertains to National Institute of Standards and Technology (NIST) 800 series guidance and procedures.
• Provide inputs to project planning, scheduling, performance monitoring and measurements, reporting and documentation associated with project/program objectives.
• Be a Marine Corps qualified Validator and, assuming no conflicts of interest, conduct risk assessment testing in accordance with Enterprise Cybersecurity Manual (ECSM) 018 Marine Corps Assessment and Authorization (MCAAP).
• Provide inputs to test events with the designated agency conducting an independent review test by determining logistical and cybersecurity requirements of testing events.
• Contribute to test readiness reviews, security readiness reviews, preparation of security checklists, detailed test procedures, security configurations and assessment documentation.
• Conduct analyses of test reports, document identified issues relating to cybersecurity compliance, document security versus cost, operational performance and schedule trade-offs and impacts, and submit recommendations for remediation or mitigation of open findings.
• Identify and evaluate the adequacy of system information security engineering of specified system documentation.
• Facilitate and participate in security working group meetings.
• As a non-voting member of the CCB in support of the ISSM the incumbent shall
• Evaluate IT environments, identify security goals, objectives, and specific technical requirements, and provide recommendations to security principles and/or mechanisms to the systems.
• Evaluate program/project provided System Architecture and identify whether or not Cyber Engineering and principles are embedded throughout the system architecture.
• Provide specific technical recommendations for securing the architecture of the system.
• Work with internal and external teams so that cybersecurity concepts, requirements, and appropriate countermeasures are included in all identified initiatives within PM CSS.

Cybersecurity Testing

Information Security and Architecture Engineering

conduct security impact analysis of proposed system changes using formal procedures and analysis questionnaires to support full integration of cybersecurity in all phases of system life cycle and sustainment operations, to include evaluation of changes, development of procedures, testing of proposed changes, implementation of changes, and system operations.

Reports To

LFS assigned Program Manager

Security Clearance Requirements

Able to obtain Secret clearance

Benefits & Compensation

• New employees are eligible to participate in the company’s benefits plan on the first day of the month following their date of hire or unless noted otherwise.
• Medical Insurance
• Vision & Dental Insurance
• Short-Term Disability, Group Life and AD&D Insurance – 100% Employer Paid
• Flexible Spending Plan
• Health Savings Account
• 401(k) Savings Plan – 100% match for the first 3% contributed plus 50% of the next 2% contributed. (no vesting period and eligibility is your date of hire).
• Paid holidays – Eleven (11) per year
• Paid Time Off - One hundred-twenty (120) accrued hours per year

• Professional Development Program
• Salary will be determined based on the individual’s education and experience level

Overview

Lumbee Federal Solutions, LLC (LFS) is an 8(a) certified, Tribally Owned and Operated government services provider, and subsidiary of Lumbee Tribe Holdings, Inc. (LTH), which is wholly-owned by the Lumbee Tribe of North Carolina. We are a Native American, 8(a), Disadvantaged Small Business with a primary NAICS code of 561990. Our reputation for excellence is built on providing defined and repeatable support and services to agencies across the U.S. Government. 

Equal Employment Opportunity Policy Statement   It is the policy of Lumbee Tribe Holdings, Inc. and its subsidiaries (the “Company”) not to discriminate against any employee or applicant for employment because of race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, marital status, genetic information, mental or physical disability (and medical condition, for employees in California) or because he or she is a protected veteran. It is also the policy of the Company to take affirmative action to employ and to advance in employment, all persons regardless of race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, marital status, genetic information, mental or physical disability (and medical condition, for employees in California) or protected veteran status, and to base all employment decisions only on valid job requirements. This policy shall apply to all employment actions, including but not limited to recruitment, hiring, upgrading, promotion, transfer, demotion, layoff, recall, termination, rates of pay or other forms of compensation and selection for training, including apprenticeship, at all levels of employment. Employees and applicants of the Company will not be subject to harassment on the basis of race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, marital status, genetic information, mental or physical disability (and medical condition, for employees of Californian) or because he or she is a protected veteran. Additionally, retaliation, including intimidation, threats, or coercion, because an employee or applicant has objected to discrimination, engaged or may engage in filing a complaint, assisted in a review, investigation, or hearing or have otherwise sought to obtain their legal rights under any Federal, State, or local EEO law is prohibited.

NOTE: These statements are intended to describe the general nature and level of work involved for this job. It is not an exhaustive list of all responsibilities, duties, and skills required of this job