What are the responsibilities and job description for the Cyber Security Manager position at Nationwide IT Services?
Job Title: Cyber Security Manager
Location: Arlington, VA
100% On-site
Security Clearance: Top Secret
Job Type: Full-time
Nationwide IT Services, NIS, is seeking a Cyber Security Manager supporting a potential opportunity with the National Guard.
Position Overview:
The Cybersecurity Manager will manage all areas of IT cybersecurity and advise the client in managing the risk of operating a network including system support and tracking, assess the impact of Information Assurance Vulnerability Alert (IAVA), Computer Network Defense (CND) Directives, and Secure Technical Implementation Guideline (STIG) implementation and maintain the client infrastructure in a manner compliant with Federal Information Security Management Act (FISMA), DoD RMF, and National Institute of Standards and Technology (NIST) guidance.
Duties and Responsibilities:
NIS is an IT and Management consulting company, is a CVE-verified Service-Disabled Veteran- Owned Small Business. Our mission is to deliver value-added services to our customers, leveraging technology, people, and industry best practices to implement innovative solutions through our trusted employees and team members.
Our benefits package includes medical, dental, and vision insurance, life and disability insurance, 401(k) plan with employer match, paid holidays, PTO (sick/vacation), commuter benefits, employee assistance program (EAP), and educational reimbursement along with Pet Insurance.
Nationwide IT Services, Inc. provides equal employment opportunities (EEO) to all qualified applicants without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, genetics, disability, or protected veteran status.
Location: Arlington, VA
100% On-site
Security Clearance: Top Secret
Job Type: Full-time
Nationwide IT Services, NIS, is seeking a Cyber Security Manager supporting a potential opportunity with the National Guard.
Position Overview:
The Cybersecurity Manager will manage all areas of IT cybersecurity and advise the client in managing the risk of operating a network including system support and tracking, assess the impact of Information Assurance Vulnerability Alert (IAVA), Computer Network Defense (CND) Directives, and Secure Technical Implementation Guideline (STIG) implementation and maintain the client infrastructure in a manner compliant with Federal Information Security Management Act (FISMA), DoD RMF, and National Institute of Standards and Technology (NIST) guidance.
Duties and Responsibilities:
- Facilitate the following aspects of cybersecurity: physical, personnel, facility, and information systems through policies and controls IAW Army Regulation (AR) 25- 2, AR 380-5, Chairman of the Joint Chiefs of Staff Instruction (CJCSI) 6510.01F, and DoD 5220.22-M, DoD Directive (DoDD) 8140.01, DoD Instruction (DoDI) 8500.01, DoDI 8530.01, DoDI 8510.01, and DoD 8140.01-M.
- Maintain the client LAN and its management systems comply with all IAVAs.
- Conduct weekly security scans of all clients' networked equipment using the client systems and remediate vulnerabilities according to SLA.
- Review HBSS and Tanium reports for end-point security compliance and remediate identified vulnerabilities, as required.
- Track Information Assurance Vulnerability Management (IAVM) compliance.
- Create and submit appropriate security-related reports such as intrusion, virus infection incidents, FISMA, and others as requested by the Government.
- Support and validate access requests for network access and managed services through Service Operations.
- Provide consultation on cybersecurity perspectives for proposed changes, initiatives, and projects.
- Monitor and review development in the technology and regulations governing the industry, DoD, and Federal Government security operations.
- Maintain and draft memorandums for record, system interconnection agreement, and/or equivalent to document all system connections to the networks.
- Validate client-managed assets comply with Army Gold Master configuration, National Security Agency (NSA) Configuration Guidance, and NIST Configuration Guidance through coordination with Asset Management.
- Keep the client in compliance with the Tenant Security Plan (TSP) for the client portion of DODIN-A NIPR and SIPR in support of the Authority to Connect (ATC) and Authority to Operate (ATO).
- Develop a Security Test and Evaluation (ST&E) Test Plan (Section F, Deliverable 33) that addresses all the requirements identified in NIST SP 800-53 and the appropriate DoD, Army, and client information system security testing requirements. Prepare, at a minimum, two ST&E Test Plans and support the resulting testing activities during the life of the project.
- Create POA&Ms and track CCRI findings through POA&Ms and report status during MPSRs.
- Manage information security risks and report findings to the Government.
- Active Top-Secret Clearance
- Information Assurance Technical (IAT) Level II or IAM Level III.
- ITIL Foundation Level Certification.
- A minimum of five years of experience managing network services to include LAN and VTC experience.
- A bachelor’s degree or higher in one of the following areas: Computer Science, Information Systems, IT, Cybersecurity, Statistics, Business Administration, Systems Engineering, Computation Science, Computer Engineering, Electrical Engineering, Data Analytics, Information Security and Assurance, Mathematics, Software Engineering, or Telecommunications.
- A minimum of five years of experience operating and maintaining network services for COOP sites.
- A minimum of five years of experience working on LAN network services.
- A minimum of five years of experience working on and repairing VTC issues.
- A relevant educational degree.
- Hands-on work experience on at least one Service Management tool like BMC Remedy, BMC Remedy, ServiceNow, HPSM, or any other equivalent industry standard ITSM tool.
- Strong analytical, communication, presentation, and documentation skills.
- Good client-interfacing skills, Customer and service-focused approach.
- Knowledge of Microsoft Excel, PowerPoint and MS Visio.
- Experience applying IT systems security methods and techniques to systems designs.
- Experience in alternative analyses and implementing complex technical solutions.
NIS is an IT and Management consulting company, is a CVE-verified Service-Disabled Veteran- Owned Small Business. Our mission is to deliver value-added services to our customers, leveraging technology, people, and industry best practices to implement innovative solutions through our trusted employees and team members.
Our benefits package includes medical, dental, and vision insurance, life and disability insurance, 401(k) plan with employer match, paid holidays, PTO (sick/vacation), commuter benefits, employee assistance program (EAP), and educational reimbursement along with Pet Insurance.
Nationwide IT Services, Inc. provides equal employment opportunities (EEO) to all qualified applicants without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, genetics, disability, or protected veteran status.
