Cybersecurity / Information Assurance Lead
Calibrate North
<\/p>
<\/div>
<\/div>
Clearance Required:<\/b> All qualified candidates must have a minimum of an active DoD Secret clearance. <\/span><\/span><\/div>
Position Overview<\/span><\/span><\/b>
<\/h3>The Cybersecurity / Information Assurance (IA) Lead<\/b> is responsible for leading a small cybersecurity team while ensuring
full compliance with DoD cybersecurity and Risk Management Framework
(RMF) regulations. This role oversees the implementation, assessment,
and continuous enhancement of the organization’s security posture across
enterprise systems and programs. The Cybersecurity / IA Lead provides
technical leadership in risk identification, mitigation strategies,
security documentation, and authorization and accreditation activities.<\/span><\/span>
<\/p>The
ideal candidate is a proactive, detail -oriented leader who drives
continuous improvement and fosters a culture of security excellence,
accountability, and compliance.<\/span><\/span>
<\/p>
<\/div><\/span>
Requirements<\/h3>Required Education & Certifications<\/span><\/span><\/b>
<\/div>Bachelor’s degree in Information Assurance, Cybersecurity, Computer Science, or a related field<\/span><\/span>
<\/p><\/li>Active IAM Level II Certification<\/b>, including one or more of the following:<\/span><\/span>
<\/p>CGRC<\/span><\/span>
<\/p><\/li>CASP+<\/span><\/span>
<\/p><\/li>CISM<\/span><\/span>
<\/p><\/li>CISSP<\/span><\/span>
<\/p><\/li>GSLC<\/span><\/span>
<\/p><\/li>CCISO<\/span><\/span>
<\/p><\/li>HCISPP<\/span><\/span>
<\/p><\/li><\/ul><\/li><\/ul>Required Clearance<\/span><\/span><\/b>
<\/div>Active Secret Clearance or higher<\/span><\/span>
<\/p><\/li><\/ul>Required Experience<\/span><\/span><\/b>
<\/div>Minimum of ten (10) years of experience in an Information Assurance role, ideally as an ISSE or ISSM<\/span><\/span>
<\/p><\/li>At least three (3) years of experience managing technical staff<\/span><\/span>
<\/p><\/li>Experience
with Information Assurance guidance from various DoD and NIST
instructions to support implementation and decision -making<\/span><\/span>
<\/p><\/li>Experience
performing security testing and evaluations (certification and
accreditation testing), including developing plans and procedures to
implement a secure cyber environment<\/span><\/span>
<\/p><\/li><\/ul>Key Responsibilities<\/span><\/span><\/b>
<\/div>Provide full analysis of the enterprise security posture, including:<\/span><\/span>
<\/p>Enterprise vulnerability remediation<\/span><\/span>
<\/p><\/li>Building and maintaining ATO packages<\/span><\/span>
<\/p><\/li>Analysis of RMF security controls<\/span><\/span>
<\/p><\/li>Implementation of IA security guidelines and policy<\/span><\/span>
<\/p><\/li>Leveraging SIEM tools for endpoint analysis<\/span><\/span>
<\/p><\/li>Intrusion Detection Systems (IDS) and event management<\/span><\/span>
<\/p><\/li>Implementing and leveraging a Zero Trust framework<\/span><\/span>
<\/p><\/li><\/ul><\/li>Conduct
regular assessments of the organization’s security posture, identifying
vulnerabilities and recommending remediation strategies<\/span><\/span>
<\/p><\/li>Oversee the design, implementation, and maintenance of cybersecurity measures, including:<\/span><\/span>
<\/p>Network security<\/span><\/span>
<\/p><\/li>Endpoint protection<\/span><\/span>
<\/p><\/li>Intrusion detection and prevention systems<\/span><\/span>
<\/p><\/li>Security incident response procedures<\/span><\/span>
<\/p><\/li><\/ul><\/li>Act as a cybersecurity subject matter expert (SME), providing guidance and support to internal stakeholders and external clients<\/span><\/span>
<\/p><\/li>Lead
security incident and breach response efforts, including
investigations, coordinated response actions, and implementation of
preventative controls<\/span><\/span>
<\/p><\/li>Provide
oversight for security testing and evaluations, RMF security
certification, and accreditation of systems, networks, and sites<\/span><\/span>
<\/p><\/li><\/ul>
<\/div><\/span>
Benefits<\/h3>- 401K with tiered match and 100% vested
<\/span><\/li>- Health, Dental, Vision, Life insurance
<\/span><\/li>- 20 Days of PTO
<\/span><\/li>- 40 Hours of paid sick/personal time
<\/span><\/li>- Parental leave
<\/span><\/li>- 11 Federal Holidays
<\/span><\/li>- 2 Corporate Holidays
<\/span><\/li>- Pre -Tax Commuter Benefits
<\/span><\/li>- Professional Development Reimbursement Program
<\/span><\/li><\/ul>
<\/div><\/span>
<\/p>
The
ideal candidate is a proactive, detail -oriented leader who drives
continuous improvement and fosters a culture of security excellence,
accountability, and compliance.<\/span><\/span> Bachelor’s degree in Information Assurance, Cybersecurity, Computer Science, or a related field<\/span><\/span> Active IAM Level II Certification<\/b>, including one or more of the following:<\/span><\/span> CGRC<\/span><\/span> CASP+<\/span><\/span> CISM<\/span><\/span> CISSP<\/span><\/span> GSLC<\/span><\/span> CCISO<\/span><\/span> HCISPP<\/span><\/span> Active Secret Clearance or higher<\/span><\/span> Minimum of ten (10) years of experience in an Information Assurance role, ideally as an ISSE or ISSM<\/span><\/span> At least three (3) years of experience managing technical staff<\/span><\/span> Experience
with Information Assurance guidance from various DoD and NIST
instructions to support implementation and decision -making<\/span><\/span> Experience
performing security testing and evaluations (certification and
accreditation testing), including developing plans and procedures to
implement a secure cyber environment<\/span><\/span> Provide full analysis of the enterprise security posture, including:<\/span><\/span> Enterprise vulnerability remediation<\/span><\/span> Building and maintaining ATO packages<\/span><\/span> Analysis of RMF security controls<\/span><\/span> Implementation of IA security guidelines and policy<\/span><\/span> Leveraging SIEM tools for endpoint analysis<\/span><\/span> Intrusion Detection Systems (IDS) and event management<\/span><\/span> Implementing and leveraging a Zero Trust framework<\/span><\/span> Conduct
regular assessments of the organization’s security posture, identifying
vulnerabilities and recommending remediation strategies<\/span><\/span> Oversee the design, implementation, and maintenance of cybersecurity measures, including:<\/span><\/span> Network security<\/span><\/span> Endpoint protection<\/span><\/span> Intrusion detection and prevention systems<\/span><\/span> Security incident response procedures<\/span><\/span> Act as a cybersecurity subject matter expert (SME), providing guidance and support to internal stakeholders and external clients<\/span><\/span> Lead
security incident and breach response efforts, including
investigations, coordinated response actions, and implementation of
preventative controls<\/span><\/span> Provide
oversight for security testing and evaluations, RMF security
certification, and accreditation of systems, networks, and sites<\/span><\/span>
<\/p>
<\/div><\/span>Requirements<\/h3>
<\/div>
<\/p><\/li>
<\/p>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li><\/ul><\/li><\/ul>
<\/div>
<\/p><\/li><\/ul>
<\/div>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li><\/ul>
<\/div>
<\/p>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li><\/ul><\/li>
<\/p><\/li>
<\/p>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li><\/ul><\/li>
<\/p><\/li>
<\/p><\/li>
<\/p><\/li><\/ul>
<\/div><\/span>Benefits<\/h3>
<\/span><\/li>
<\/span><\/li>
<\/span><\/li>
<\/span><\/li>
<\/span><\/li>
<\/span><\/li>
<\/span><\/li>
<\/span><\/li>
<\/span><\/li><\/ul>
<\/div><\/span>