Senior Cyber Risk Manager

MITRE CorporationBedford, MA
90d$123,000 - $185,000
Match Resume

About The Position

At MITRE, you can have both meaningful work and a fulfilling life. MITRE is a not-for-profit corporation dedicated to working for the public interest, with no commercial conflicts influencing our actions. Our R&D centers create lasting impacts in various fields, including cybersecurity, healthcare, aviation, defense, and enterprise transformation. We are committed to making a difference every day for a safer, healthier, and more secure nation and world. The Information Systems Security (ISS) Department manages various aspects of information systems security related to controlled unclassified and classified information systems. The department provides information assurance support through security authorization activities in compliance with The Risk Management Framework (RMF) and maintains an operational security posture to ensure compliance with security policies, standards, and procedures.

Requirements

  • Bachelor's Degree and 5 years related experience or equivalent combination of education and work experience within a Cyber/Security role.
  • Active Secret clearance.
  • Must be a U.S Citizen to be considered for a security clearance.
  • Must meet the requirements of an IAM Level I as a condition of employment.

Nice To Haves

  • Active Top Secret clearance.
  • IAM Level II or higher.
  • Experience with RMF, CNSSI 1253, NIST SP 800-53, and NISPOM.
  • Experience with Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance Checker (SCC).
  • Knowledge of Information Assurance Vulnerability Alerts (IAVAs).

Responsibilities

  • Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources.
  • Ensure that cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.
  • Document and escalate incidents that may cause ongoing and immediate impact to the environment.
  • Perform cyber defense trend analysis and reporting.
  • Perform event correlation using information gathered from various sources to gain situational awareness.
  • Perform security reviews and identify security gaps in security architecture.
  • Use cyber defense tools for continual monitoring and analysis of system activity.
  • Conduct research, analysis, and correlation across a wide variety of data sets.
  • Assess adequate access controls based on principles of least privilege and need-to-know.
  • Work with stakeholders to resolve computer security incidents and vulnerability compliance.
  • Provide advice and input for Disaster Recovery, Contingency, and Continuity of Operations Plans.
  • Plan and conduct security authorization reviews and assurance case development.
  • Review authorization and assurance documents to confirm that the level of risk is acceptable.
  • Verify that application software/network/system security postures are implemented as stated.
  • Perform risk analysis whenever an application or system undergoes a major change.
  • Ensure that plans of actions and milestones or remediation plans are in place for vulnerabilities.
  • Assure successful implementation and functionality of security requirements and IT policies.
  • Ensure that security design and cybersecurity development activities are properly documented.
  • Support necessary compliance activities.

Benefits

  • Competitive benefits.
  • Exceptional professional development opportunities for career growth.
  • Culture of innovation that embraces adaptability, collaboration, and technical excellence.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Industry

Professional, Scientific, and Technical Services

Education Level

Bachelor's degree

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service