Our customer requires assistance in establishing a robust enterprise-wide Privileged Access Management architecture across 3 networks to ensure 2-factor authentication requirements are met for its privileged users. A successful candidate will provide Operations Support leadership to deliver an enterprise privileged security solution and serves as the Information System Security Officer. This position is focused on the daily operations and sustainment of the system and will be responsible for the escalation of issues from the team. The position requires a deep understanding of the ICD-503 RMF framework. This drives a requirement for deep understanding of the overall system, its COTS, and underlying Operating Systems in order to be able to perform both system administration, operations leadership, and A&A duties.
GENERAL DUTIES
- Coordinate and maintain at least 9 Shield SPIDs, following all ConMon processes and possibly more for other contracts
- As required by Bana Solutions, coordinate and maintain the SPID of other Bana Solutions
- POA&M status and coordination, to include dates to complete, status, and POA&M Verification Reports (PVRs)
- Provide leadership to the project/program team in determining client requirements and translating requirements into operational plans
- Participate in team problem solving efforts and offer ideas to solve client issues
- Providing leadership in project/program requirements, scope, and change management issues
- Identify opportunities for efficiencies in work processes and innovative approaches to completing scope of work
- Maintain responsibility for completion and accuracy of work products
- Review and update security documentation such as that listed below to meet ICD 503, CNSSI 1253, NIST SP 800-37 and other applicable federal requirements
- Review policies and procedures as required for various security controls identified in the Security Controls Traceability Matrix (SCTM)
- Conduct reviews and validations of system configurations in accordance with applicable guidelines (i.e. customer, DISA STIGS and CIS Benchmarks).
- Work with program and stakeholder to gather and define requirements for the evolution and growth of the PAM architecture.
- Perform system administration duties on the PAM platform
- Identify risks by role, software, information type, and other categories and define acceptable and mitigation strategies. Oversee training, policies, and practices, including audits, to ensure systems are securely operated. Document and communicate policies, queries, vulnerabilities, and current state of the system. Assist with regulatory and data transfer procedures. Implement and monitor information security requirements, policies, and compliance
- Leads the daily team tag up to go over all team activities for the day (installs, new rotations, patching, etc.), known environment issues, and watch items
- Monitors and tracks all Service+ tickets submitted against external groups
- Based on the daily environment checks executed by the Ops team, document all issues encountered and track all to closure
- Monitor and maintain the user issue tracker and Ops issue tracker to be able to see previous issues and their fixes
- Own and maintain all Shield documentation on both SBU and SCI, including installation guides, configuration guides, troubleshooting guides, and detailed documentation on the system configuration
- Coordinates and engages Enterprise Services wherever required
- Coordinates, schedules, and executes CyberArk upgrades over the span of up to 6 weeks across all environments to ensure little-to-no downtime to Production
- Monitors and schedules long-term activities such as certificate expiration
- Coordinates and executes user migrations and rotations, knowing who is coming on board and when Maintains the Shield O&M support calendar to ensure 6 AM to 6 PM support is ensured 5 days a week
- Maintain and operate the analytics stack on SBU and SCI to ingest and display metrics
REQUIRED QUALIFICATIONS
- BS degree and 5 years of prior relevant experience
- Minimum of 5 years’ hands-on experience on DOD projects in a cybersecurity role.
- 2 years of experience in performing as an ISSO on DOD projects
- Experience with network and network security assessments and documenting the results using NIST SP 800-53A, completing security plans and recommending Security Controls for Federal Information Systems
- Documenting recommendations to correct security weaknesses resulting from security assessments and tracking implementation of corrective actions
- Developing network and network security policies and system security documentation and procedures
- Strong communication skills, both verbal and written
- Ability to quickly learn new software and IT concepts
- DevOps/Agile experience working in a SCRUM environment
- ICD-503 and NIST 800-53 security controls
- Proficiency in ACAS/NESSUS, SCAP
- Experience with the DoD Information Assurance Vulnerability Management (IAVM) Program
DESIRED QUALIFICATIONS
- Strong collaboration skills
- Ability to quickly learn new software and IT concepts
- Able to make decisions and progress with ambiguous information and imperfect knowledge
- Strong sense of ownership, urgency and drive
- Knowledge and experience of application development, modern development tools, frameworks, operating systems, and network
- DevOps/Agile experience working in a SCRUM environment
CLEARANCE
