Subject Matter Expert-Program Protection Cybersecurity

About The Position

Requirements

• Bachelor’s degree in cybersecurity, information security, information assurance, computer science (with cybersecurity concentration), systems engineering (with cybersecurity/information assurance focus) or similar fields.
• Current Secret Clearance or ability to obtain one
• 15+ years of relevant Cybersecurity and Program Protection experience
• Proficiency with Microsoft Office suite
• Strong oral and written communication skills and the ability to present a polished and professional image to clients
• Deep knowledge of NIST Special Publications 800-160 and 800-37, Systems Engineering Lifecycle (SELC), and Risk Management Framework
• Understanding of the 2017 Memorandum of Agreement between DHS and DoD regarding Cybersecurity and System Security Engineering policies
• Experience developing security requirements and conducting Critical Program Information (CPI) analysis
• Ability to produce comprehensive written products including policy documents, guidelines, and technical reports

Nice To Haves

• Master’s degree cybersecurity, information security, information assurance, computer science (with cybersecurity concentration), systems engineering (with cybersecurity/information assurance focus) or similar fields
• Certified Information Systems Security Professional (CISSP) - Industry standard or Certified Authorization Professional (CAP) - Directly relevant to Risk Management Framework or DoD 8570/8140 IAM Level III or IASAE Level III
• Active DHS/USCG Entry of Delivery (EOD) clearance
• Experience with DHS Cybersecurity Through the Acquisition Lifecycle Framework (DHS Instruction 102-01-012) and DoD Risk Management Framework for DoD Information Technology (DoD Instruction 8510.01)
• Demonstrated ability to conduct research on cybersecurity policy and DHS/USCG mission-related topics

Responsibilities

• Provide subject matter expertise in the development and management of USCG acquisition policy for Cybersecurity / Program Protection in support of all CG Level 1, 2, and 3 acquisitions, including advisory support to USCG personnel, offering expert recommendations and insights regarding Cybersecurity / Program Protection policies and practices
• Assist in drafting, reviewing, and updating relevant policy documents, guidelines, and templates to ensure alignment with current DHS and DoD Cybersecurity policies
• Engage with stakeholders through meetings and consultations to gather information, discuss cybersecurity concerns, and propose actionable solutions
• Support the integration of Cybersecurity / Program Protection into the Systems Engineering Lifecycle (SELC) and Risk Management Framework, ensuring compliance with NIST Special Publications 800-160 and 800-37
• Define Cybersecurity/Program Protection stakeholder objectives, needs and concerns, security requirements, and associated validation methods
• Develop processes to conduct Critical Program Information (CPI) analysis and Criticality Analysis (CA) to identify CPI, Critical Functions (CF), and Critical Components (CC) as part of developing a comprehensive Program Protection Plan (PPP)
• Identify, quantify, and evaluate the costs/benefits of security functions and considerations to inform analysis of alternatives, engineering trade-offs, and risk management
• Review and provide actionable feedback for Cybersecurity / Program Protection related acquisition program documents including the USCG Acquisition Cybersecurity Strategy (ACSP), Program Protection Plan (PPP), Risk Assessment Report (RAR), Cybersecurity Risk Recommendation Memo (CRRM), and USCG Cybersecurity Manual (COMDTINST 5500.13 series)

Benefits

• Chevo offers a comprehensive benefits package including medical, dental and vision coverage, paid leave, observes all 11 federal government holidays, 401K plan with matching, monthly SMART card employer contribution for commuting expenses, tuition assistance and more!