Cybersecurity Assessment Lead

About The Position

Requirements

• An ACTIVE and MAINTAINED SECRET Federal or DoD security clearance
• Bachelor’s Degree
• A Minimum of FIVE (5) or more years’ of experience related to Cybersecurity Risk Assessment or Cybersecurity Program Management or HVA Assessment and/or HVA Program Management

Nice To Haves

• An ACTIVE and MAINTAINED TOP SECRET Federal or DoD security clearance preferred
• One of the following certifications: Offensive Security Certified Professional (OSCP) or GIAC Penetration Tester (GPEN) or Certified Ethical Hacker (CEH) Certification, CISSP.
• Excellent oral and written communication and presentation skills.
• Communicates effectively and demonstrates leadership role with clients and fellow team members.
• Experience managing direct client engagement team to deliver impactful support to Federal clients.
• Experience developing and maintaining working relationships while serving Federal clients onsite.
• Ability to identify obstacles and opportunities that impact the success of plans or initiatives.
• Previous passing of the CISA AES HVA Assessment or ability to pass the CISA AES HVA Assessment course.
• Experience supporting US government cybersecurity programs.
• CISSP or CISM certifications.
• PMP Certification.
• Experience with managing/supporting and/or knowledge of cybersecurity or high value asset program, and Security Architecture Review.
• Certified CISA AES HVA Assessment Lead with experience conducting HVA assessments or performing Risk and Vulnerability Assessments.
• Knowledge of Cybersecurity Framework, Risk Management, NIST 800-83 Rev 5.

Responsibilities

• Accountable for the activities of an Assessment Team
• Lead the planning and execution of High Value Asset (HVA) Cybersecurity Assessments
• Lead the execution of HVA assessments which include penetration testing services
• Serve as the Assessment Lead and responsible for overall assessment execution and guidance of technical and operator team members
• Develop executive-focused Assessment Report sections
• Develop current state security architecture diagrams
• Lead the communication with senior executives and stakeholders on assessment requirements
• Lead technical interviews with system stakeholders to determine if risks to the HVA are identified, evaluated, and managed
• Lead the documentation of Rules of Engagement to guide the scope, develop test plan, and assist with acquiring management approval
• Lead Penetration Team Operators to perform network mapping and reconnaissance, internal and external Testing including Red Team testing activities that focus testing activity towards accessing specific target datasets
• Analyze test results, develop a report on discovered vulnerabilities, and provide risk-based recommendations to remediate those vulnerabilities
• Confirm all deliverables are completed and meet expected quality standards
• Manage cybersecurity or HVA Program to ensure compliance with regulatory requirements and mitigate cyber risks to systems

Benefits

• Medical, Rx, Dental & Vision Insurance
• Personal and Family Sick Time & Company Paid Holidays
• Position may be eligible for a discretionary variable incentive bonus
• Parental Leave and Adoption Assistance
• 401(k) Retirement Plan
• Basic Life & Supplemental Life
• Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
• Short-Term & Long-Term Disability
• Student Loan PayDown
• Tuition Reimbursement, Personal Development & Learning Opportunities
• Skills Development & Certifications
• Employee Referral Program
• Corporate Sponsored Events & Community Outreach
• Emergency Back-Up Childcare Program
• Mobility Stipend