Cybersecurity Team Lead with Security Clearance

Company: SOS International LLC
Location: Sierra Vista
Posted on: March 16, 2023

Job Description:

Overview SOS International LLC (SOSi), is currently seeking a Cybersecurity Team Lead in Ft. Huachuca, AZ. The Cybersecurity Team Lead reports to the Information System Security Manager and is responsible for all cybersecurity services: identification, classification, remediation/mitigation, and documentation of potential vulnerabilities in the RCC-C environment. Responsibilities * Provide oversight and maintain responsibility for the identification, classification, remediation/mitigation, and documentation of potential vulnerabilities in the RCC- environment. * Provide oversight and maintain responsibility for the maintenance of the RCC-C ATO and all accreditation documentation. * Advise on Information Assurance, physical security, disaster recovery, incident response, business continuity, contingency planning and data backup systems. * Manage recurring reviews, internal security audits and vulnerability and threat assessments, and activates mitigation workflow in support of RMF / Continuous Monitoring. * Assess current technology architecture for vulnerabilities/weaknesses and recommends opportunities for improvement. * Provide Certification and Accreditation (C&A) support in the development of security and contingency plans by conducting risk and vulnerability assessments. * Assist with the continuous monitoring of RMF packages within eMASS (POA&Ms, Test Results, Risk Assessments, etc.). * Execute vulnerability scans (ACAS, SCAP, BNA, etc.) for all RCC-C service assets. * Document and coordinate findings with both internal and external asset owners for corrective actions. * Analyze and report findings to RCC-C technical teams for appropriate tracking, mitigation, and/or remediation of RCC-C controlled assets. * Document all scans and mitigation actions (POA&M) in eMASS. * Evaluate the information system for compliance with NIST SP 800-53 Controls, Special Directives, and other regulatory guidance. * Ensure enterprise security posture is correctly communicated to the Authorization Official (AO) and actively work with technical teams to minimize risk across the network. * Track all published IAVAs and assess against RCC-Cs current vulnerability status; coordinate with RCC-C teams to develop impact analysis. * Maintain IAVM compliance information in the RCC-C provided tracking tool and provide weekly reports to RCC-C leadership on organization compliance status. * Support RCC-C technical teams with research of DISA STIG checklists, regulations, and best practices. * Schedule and perform regular network audits to validate the posture of the network. * Through weekly ACAS scans, tracking of IAVA compliance, STIG checklist analysis, and diligent reporting, helps maintain DoDIN Secure by expediting critical Operating System and application code updates, scheduling efficient and achievable POAM milestones, and providing appropriate defense-in-depth mitigations whenever necessary for Risk Acceptance (RA) requests. * Identify, analyze, report, and provide recommendation for security breaches. * Create and maintain a security training program for internal team use and for the entire organization. * Follow ITIL best practices to manage tickets and processes. * Develop and/or maintain SOPs, TTPs, and SmartBooks associated with current knowledge of relevant technologies as assigned. * Provides guidance and work leadership and structure to less-experienced personnel. * Maintains current knowledge of relevant technologies and recommends improvements based on industry trends. * Provides timely notification to the Government for any critical or high incidents impacting critical systems and services. * Provides on-call support after business hours and during weekends when required. * Participate in special projects as required. * Collaborate with GTMs, Branch Chiefs, Division Chiefs and RCC-C Leadership. Qualifications * Active in scope SECRET clearance or the ability to obtain Interim SECRET eligibility * HS +12 years of IT/Cyber experience or AA/AS +10 or BA/BS +8 * An IAT II certification (CCNA-Security, CND, CySA+, GICSP, GSEC, Security+ CE, or SSCP) is required * Knowledge of network specific DISA Security Technical Implementation Guides and checklists Preferred Qualifications * ITIL Foundation Certification * Possess exceptional communication and interpersonal skills * DISA ACAS v5.3 * Knowledge of eMASS * Experience performing IA audits within a DoD organization * Experience with Risk Management Framework (RMF) * Fluency in a foreign language is desirable, but not required Working Conditions * Working conditions are normal for an office environment. * Fast paced, deadline-oriented environment. * May require periods of non-traditional working hours including consecutive nights or weekends (if applicable) SOSi is an equal employment opportunity employer and affirmative action employer. All interested individuals will receive consideration and will not be discriminated against on the basis of race, color, religion, sex, national origin, disability, age, sexual orientation, gender identity, genetic information, or protected veteran status. SOSi takes affirmative action in support of its policy to advance diversity and inclusion of individuals who are minorities, women, protected veterans, and individuals with disabilities.

Keywords: SOS International LLC, Sierra Vista , Cybersecurity Team Lead with Security Clearance, Other , Sierra Vista, Arizona