CYBERSECURITY REVIEWER

POSITION OVERVIEW

Conduct DODIN cybersecurity reviews on site at CONUS, OCONUS, and DOD mission partner locations.Location: Fort Meade, MD and/or Chamberburg, PA.Tasks include:

  • Conduct at least 8 mission sets per year

  • Conduct assessments of systems and networks within the network environment or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy

  • Assist in developing EXSUMs/ Briefings/Reports

  • Develop and maintain cybersecurity vulnerability review, inspection, and audit SOPs, TTPs, checklists, and guides

  • Support on-the-job training and certify new Reviewers via the reviewer certification process

  • Perform technical Security Readiness Reviews (SRR)

  • Prepare audit reports that identify technical and procedural findings and provide recommended remediation strategies/solutions

QUALIFICATIONS

Required:

  • Active TS/SCI clearance

  • Must be able to formulate and apply optimizing methods to develop and interpret information that assists in decision making and policy formulation. 

  • Must have experience in collecting, analyzing, and assessing data in order to provide formal feedback. Specifically, able to analyze organization's cyber defense policies and configurations and evaluate compliance with regulations and organizational directives (i.e., analysis of mitigations).

  • Senior reviewers must have at least 2 years of direct experience

  • Must be cross-certified or able to be cross-certified in multiple non-traditional IT areas such as

    • Supply Chain Risk Management (SCRM)

    • Cybersecurity Contracts

    • Cross Domain Solution (CDS)

    • Cloud (Cloud Services, Software as a Service (SaaS)

    • Platform as a Service (PaaS)

    • Infrastructure as a Service (IaaS)

    • Control Systems (CS) / Operational Technology (OT) / Industrial Control Systems / Supervisory Control and Data Acquisition (SCADA) (e.g., Rockwell Automation, OMRON, SIEMENS, and GE)

    • Platform Information Technology (PIT) (as defined in DoDI 8500.01, “Cybersecurity”)

  • Experience in measuring effectiveness of defense-in-depth architecture against known vulnerabilities and risk indicators

  • Experience with maintaining deployable cyber defense audit toolkit (e.g., specialized cyber defense software and hardware) to support cyber defense audit missions.

  • Must have knowledge of applicable cyber defense policies, regulations, and compliance documents specifically related to cyber defense auditing

  • Travel is expected to worldwide locations. Travel will be conducted in accordance with the Task Order guidelines.

  • Current DOD 8140/8570 IAT Level II certification, or

  • Current DOD 8140/8570 IAM Level II certification

    Preferred:

  • Current DOD 8140/8570 CSSP-Auditor certification

  • Current DOD 8140/8570 IAM Level III certification

  • BS/BA in Cybersecurity or other related field

APPLY NOW