Senior Manager Of Cybersecurity Controls And Configuration

Leidos Reston , VA 20190

Posted 2 months ago

Job Description:

The Leidos Corporate Information Security Group has an immediate opening for an experienced, and motivated Senior Manager of Cybersecurity Controls and Configuration to join our Security Controls and Configuration Team.

The Security Controls and Configuration (SCC) Team works with the Leidos Cybersecurity Intelligence and Response Center (CSIRC) and Security Engineering and Architecture (SAE) organizations to configure, maintain, and manage technical controls for Leidos enterprise security assets. These include the vendor configurations for Network and Host IDS, and our developed baseline for our custom IDS sensor. The role focuses on codifying our robust security policies, resolving change requests by assessing impact, and automating procedures wherever possible.

  • Act as a technical SME for the Cyber Security Capabilities team responsible for the technical security policies that defend the global Leidos network

  • Work closely with the CSIRC and respond to Intrusion Response activity with appropriate security countermeasures.

  • Work closely with ITS to ensure technical security policy balances security best practices and corporate usability.

  • Work closely with SAE to resolve NIDS/HIDS vendor bugs, and engineering capability gaps.

  • Support the development of a codified, robust baseline for all security policies across all platforms, and a streamlined approach to change management.

  • Be a SME in the vendor and open source capabilities available to stay ahead of the threats

  • Collaborate using information and knowledge sharing networks and professional relationships to achieve common goals.

  • Be a Cyber Operations leader, and provide mentorship for less experienced team members.

  • Manage and maintain Security Controls and Configuration (SCC) team level tasking; reporting status, risks, and areas for improvement on a consistent basis.

  • Manage and participate in an on-call rotation

CyberCIS

REQUIRED QUALIFICATIONS:

  • Bachelor's degree and 8+ years of relevant experience.

  • Hands on experience with popular NIDS and firewall remediation technologies, syntax, and CM control (Palo Alto, Juniper, FireEye, WildFire, etc.)

  • Hands on experience with popular HIDS remediation technologies, syntax, and CM control (Symantec, McAfee, Tanium, Cylance, etc.)

  • Demonstrated experience as a technical team lead.

  • Ability to write and verbally communicate information security and risk-related concepts effectively to both technical and non-technical audiences is essential.

  • Must have strong problem-solving and analytical skills and demonstrate poise and ability to act calmly and competently in high-pressure, high-stress situations.

  • Strong understanding of Operating Systems and Network Protocols.

  • Ability to create, modify, and implement countermeasures within common COTS and FOSS tools in order to gauge their effectiveness.

  • US citizenship is required and able to obtain security clearance.

PREFERRED QUALIFICATIONS

  • Understanding of behavioral based threat models, including ATT&CK, Cyber Kill Chain, Diamond Model, etc.

  • Foundational understanding of the Linux operating system.

  • Hands on experience with popular open source IDS technologies, syntax, and CM control (Snort, Bro, Suricata, etc.)

  • Proficiency with Microsoft Windows administrative tools, and the Unix/Linux command line.

  • Demonstrated experience performing cybersecurity analysis from an operators point-of-view

  • Active DoD Secret or higher clearance

  • Demonstrated knowledge of common information security management frameworks such as ISO/IEC 27001, ITIL, COBIT and NIST and an understanding of relevant legal and regulatory requirements such as Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry/Data Security Standard.

  • Familiarity with common scripting languages (like Perl and Python) to parse logs, automate processes, etc.

Leidos is a Fortune 500 information technology, engineering, and science solutions and services leader working to solve the world's toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company's 31,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $10.17 billion for the fiscal year ended December 29, 2017. (NYSE: LDOS) All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.


See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cybersecurity Compliance And Governance Analyst
New!

Orock Technologies

Posted Today

VIEW JOBS 11/21/2018 12:00:00 AM 2019-02-19T00:00 <div><strong>About ORock Technologies</strong><br /> ORock Technologies is a small business Cloud and Infrastructure as a Service (IaaS) provider that supports the specialized needs of organizations with the highest data security requirements, including Independent Software Vendors (ISVs), solution providers, and enterprise end users in such markets as Defense, Intelligence, Government, Financial Services, and Healthcare.<br />  </div> <div>As a Red Hat Certified Cloud & Service Provider (CCSP), ORock owns and operates a carrier-grade private fiber optic network with multiple data centers and a secure, open source, “pure-play” Red Hat cloud. Our state-of-the-art IaaS and Cloud solutions offer superior levels of security, performance, compliance, flexibility, and control for ORock customers, channel partners, and software vendors.<br />  </div> <div> <div> <div><strong>Currently we have a need for A Cybersecurity Compliance and Governance Analyst to work out of our Reston, VA HQ. YOU MUST BE A US CITIZEN and be eligible for a clearance of Secret level or above.</strong><br /> <br /> The Cybersecurity Compliance and Governance Analyst opening is a full-time position with responsibilities for knowing all applicable federal mandates and work with security team members ensuring all cyber security policies are adhered to and that required controls are implemented on a continuous basis.  The analyst will be responsible for developing security authorization packages, to include system security plans, security assessment reports, POAM summaries and a continuous monitoring plan/assessment schedule, and present executive level briefings.<br /> <br /> <strong>Primary Duties and Responsibilities:</strong> <ul> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Assists in developing and performing internal compliance efforts including preparation for audits, certifications, and other assessments.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Interfaces directly with third party assessment teams, coordinating response activities, preparing supporting documentation, and presenting findings and other compliance information</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Review, validate, and prioritize compliance assessment findings</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Assist in the ongoing assessment and compliance monitoring of security controls</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Brief and educate internal team members about governance and compliance responsibilities</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Manage, coordinate, and participate in internal and external assessment meetings and audit walkthroughs</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Create POA&Ms and work with appropriate teams to remediate, mitigate, and close POA&M findings and gather and upload supporting artifacts</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Work with Operations, Engineering, and Security teams to respond to SAR findings.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Create Risk Mitigation Plans (RMPs) for assessment findings and vulnerabilities that cannot be remediated</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Responsible for POA&M management and ticket resolution</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Developing detailed remediation reports and recommendations for compliance and security improvements across the enterprise</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Perform implementation of security and compliance-based control flowing NIST 800-53 Rev4 security controls</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Implement Security Control Assessments (SCAs) findings and possibly other advanced-level Continuous Monitoring Activities within cloud-based environments</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Develop security policies and processes based on federal standards and conduct security and awareness training</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Ensures security authorization boundaries are properly defined and captured in the SSPs, and that all interconnection agreements (MOUs/ISAs) are in place and current</li> </ul> <strong>Those successful in this position will have:</strong> <ul> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">5-10 Years of experience with NIST, RMF, FEDRAMP, Common Criteria, FISMA-related activities to include system security plans, contingency plans, incident response plans, configuration management plans, security control requirements and assessments, Plan of Action and Milestones (POA&M), and training requirements</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Experience in reviewing Federal information systems’ compliance with the Federal Information Security Management Act (FISMA). Specifically, security control assessments in accordance with NIST SP 800-53, 800-53A, CNSSI 1253, and the Risk Management Framework (RMF) described in NIST SP 800-37</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Knowledge of information security standards (e.g., ISO 17799/27002, etc.), rules and regulations related to information security and data confidentiality (e.g. HIPAA, HITECH, etc.) and experience in other Security Frameworks (ISO, COBIT, HIPAA/HITECH, etc.) and regulatory requirements</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Must be able to verify and validate the implementation of security controls for IT systems, applications, software products and common controls for security control baselines (Low, Moderate, and High) in accordance with NIST SP 800-37, SP 800-53 Rev 4, and SP 800-53A Rev 4 with an understanding of classified systems through CNSSI 1253</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Must be able to comprehend and interpret policies, standards, guidelines and procedures as they relate to National Institute of Standards and Technology (NIST) and Federal Information Security Management Act (FISMA)</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Knowledge of checklists or configuration guides and experience for compliance with local / organizational policy and procedures (i.e., DISA Security Technical Implementation Guides (STIGS), Best practice guides, hardening guidance and other similar configuration management checklists and processes</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Must be able to work with system security personnel to identify, obtain and review artifact evidence needed to determine compliance with security controls in accordance with NIST SP 800-37, SP 800-53 Rev 4, and SP 800-53A Rev 4</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">At least three (3) years of experience in the IT industry, with strong familiarity with the applicable NIST Special Publications 800-37 Revision 1, 800-53 Revision 3 or 4, and 800-53A Revision 1</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Experience reviewing Nessus output a plus, along with basic knowledge of networking components and various operating systems in a cloud environment</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Experience analyzing and documenting security control deficiencies and system vulnerabilities</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Knowledge and experience in writing policies, procedures, guidance, standards and instructional materials</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Must be able to clearly identify, document, and verbally communicate deficiencies in IT systems, documentation and organizational processes associated with all NIST SP 800-53 security control families.  Strong written and verbal communication skills including the ability to explain technical matters to a non-technical audience</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">BA or BS in Information Security, Information Assurance, Computer Science, or related field</li> </ul> </div> </div> </div> <div><br /> <em>ORock Technologies requires the candidate to prove eligibility to work in the United States. All final candidates will be asked to complete a background check. These record checks can include any or all of the following: education verification, employment verification, drug screening, criminal record check, and/or driving record check.</em><br />  </div> <div><em>ORock Technologies is an equal opportunity employer and considers qualified applicants for employment regardless of race, gender, gender identity, gender expression, age, color, religion, disability, veteran’s status, sexual orientation, or any other protected factor.</em></div> Orock Technologies Reston VA

Senior Manager Of Cybersecurity Controls And Configuration

Leidos