Risk Management Task Lead

About The Position

Requirements

• Bachelor’s degree from an accredited university or equivalent years of relevant work experience
• A minimum of seven (7) years of experience leading teams in Information Systems Security Engineering (ISSE), security control assessment, and vulnerability management within the DoD
• Proven expertise in the application of the Risk Management Framework (RMF) for DoD systems
• Demonstrated experience with tools such as eMASS, ACAS, and DISA STIGs
• Candidate must possess an active Secret level clearance
• Possess an active DoD 8570.01-M Information Assurance Management (IAM) Level III certification (e.g., CISM, CISSP)
• Must be able to effectively communicate with customer and fulfill all duties and responsibilities as listed in the contract.
• Ability to work independently and collaboratively in a team environment
• Strong organizational and time management skills
• Ability to manage multiple priorities and meet deadlines in a fast-paced environment
• Strong analytical and problem-solving abilities

Responsibilities

• Provide ISSE life cycle support to the Government to assess potential risks, mitigation measures, residual risks, and provide Security Risk Assessment recommendations to the Government for approval or disapproval.
• Research and advise the SISO and other staff on recently developed countermeasures designed to protect command systems from new threats.
• Assist in the development, implementation, and administration of effective security programs for Government approval and provide guidance, cyber alerts, and best practice information to appropriate audiences (e.g., standard/privileged users, system administrators, ISSMs, PMs, etc.) throughout the command.
• Conduct risk assessments to determine risks associated with integrating new systems or capabilities into the USTRANSCOM environment.
• Utilize reports from tests and evaluations performed by other teams supporting USTRANSCOM to support risk assessments.
• Address risk factors, threats, vulnerabilities, likelihood of exploit, and security control effectiveness of systems.
• Evaluate risk within the context of DoD and USTRANSCOM layered defense architectures.
• Identify potential mitigation measures and specify residual risk after mitigations are applied.
• Responsibilities may evolve over time to support team and organizational goals, but will remain consistent with the overall scope of the role.

Benefits

• Paid time off and Holidays
• Medical, Dental, and Vision Insurance
• Paid Parental Leave
• Short-term disability, long-term disability, and life insurance - Employer Paid!
• 401(k)
• Additional Voluntary Life Insurance
• Tuition Reimbursement