Cyber Security Training Awareness Coordinator

About The Position

Requirements

• Knowledge of the NIST Special Publications (800 Series) with particular emphasis on the SP 800-53 Security and Privacy Controls for Federal Information Systems & Organizations. Must be able to demonstrate knowledge of control structures and application of controls.
• Knowledge of the limitations and capabilities of computer systems; of technology across all network layers and computer platforms; of operational support of networks, operating systems, Internet technologies, databases, and security applications; and of information security practices, procedures, and regulations.
• Knowledge in analyzing, recommending, & developing enterprise-wide security policies, standards, & guidelines within appropriate organizational risk tolerances. Skill in implementing enforcement of security policy within technology solutions.
• Knowledge of enterprise security program management using Enterprise Governance Risk & Compliance solutions. Demonstrated experience with the implementation & development of business processes in Enterprise Governance Risk & Compliance solutions.
• Knowledge of effective project management practices & ability to effectively manage multiple priorities within a security function providing services to numerous clients. Has professional presentation skills.
• Excellent written, verbal communication, and presentation skills.
• Skill in the operation of computers and applicable software and in configuring, deploying, and monitoring security infrastructure.
• Skill in evaluating enterprise networks/systems for assurance of control requirements as specified by the IRS Pub.1075, Tax Information Security Guidelines for Federal, State & Local Agencies. Capable of managing control assertion & corrective action plan processes including the coordination of status updates & report submission.
• Critical thinking and solution development skills.
• Ability to resolve complex security issues in diverse and decentralized environments, to communicate effectively, and to assign and/or supervise the work of others.
• Ability to maintain the security and integrity of critical infrastructure systems by preventing unauthorized access and ensuring compliance with laws and regulations related to national security and foreign ownership restrictions
• Graduation from an accredited four-year college or university with major coursework in information technology security, computer information systems, computer science, management information systems, or a related field is generally preferred. Education and experience may be substituted for one another on a year for year basis.
• At least 3 - 7 years’ experience in information security analysis work.
• Experience developing and implementing IT security training and awareness programs, policy, standards, or procedures.

Nice To Haves

• Certified Information Systems Security Professional (CISSP)
• Certified Information Systems Auditor (CISA)
• Certified Information Systems Manager (CISM)
• Global Information Assurance Certification (GIAC) or similar security certifications.

Responsibilities

• Manage and operate the HHS Training and Awareness Program.
• Helps mature the Information Security Program
• Participates in a team that ensures sensitive data handling systems are in compliance with security controls that enforce agency policy and procedures.
• Provides leadership to other security analysts in the performance of their duties.
• Performs or leads other duties as assigned.

Benefits

• Our comprehensive benefits package includes 100% paid employee health insurance for full-time eligible employees, a defined benefit pension plan, generous time off benefits, numerous opportunities for career advancement and more.