• Responsible for implementation and application of technologies, processes, and practices designed to protect applications, networks, devices, programs, and data from malicious attack, damage, or unauthorized access
• Maximize the use of existing tools to correlate information and synthesize data into usable and actionable events
• Identify new technologies and assess their technical and performance characteristics and conduct research related to cybersecurity technologies, practices, policies and procedures
• Communicate complex technical concepts and project information clearly and concisely to both technical and non-technical audiences of varying position levels and provide situational awareness to facilitate better decision making by the government
• Provide insight into industry trends and make recommendations on future direction for the program cybersecurity systems and network defenses to provide effective incident response capabilities and usable and effective reports that address overall situational awareness
• Support other cybersecurity objectives, including patch and vulnerability management, network monitoring, intrusion detection, intrusion prevention, and log analysis
• Identify mitigating countermeasures to identified threats, vulnerabilities, and shortfalls
• Develop Plan of Action and Milestones, in support of risk mitigation
• Review and make recommendations on program-level documentation (e.g., requirements specification, system architecture, design documents, test plans, security plans, POA&Ms, etc.)

Required Qualifications:

• Bachelors degree
• At least 7 years of experience performing and/or supporting Cybersecurity activities in the Department of Defense (DoD) or federal agencies
• Excellent computer skills and the ability to create high-value deliverables, including but not limited to monthly performance reports, ad hoc reports, presentations, graphics, whitepapers and executive summaries to senior leadership
• Thorough understanding of DoD Cloud Computing Security Requirements Guide (DoD CC SRG) and Secure Cloud Computing Architecture (SCCA)
• Strong interpersonal skills and ability to work both independently and in a team environment
• Thorough knowledge of the Microsoft Office Suite
• At least 7 years of experience with Army or other Services/DoD cybersecurity policies and guides
• Strong familiarity with security standards and guidance (NIST, FIPS, FISMA, FedRamp, etc.)
• Must be IAT II Certified: Security+ CE, CSA+, CCNA Security, GICSP, GSEC, or SSCP
• At least 5 years of experience with Security Information and Event Management technologies (ArcSight, ELK Stack, or Splunk), Host-Based Intrusion Prevention Systems (HBSS/ESS), Vulnerabilities Management Tools (ACAS - Tenable Nessus)
• Understanding of Security Technical Implementation Guides (STIG), and Security Requirements Guide (SRG)
• Must have an active Secret Security Clearance. Only US Citizens are eligible to obtain a security clearance.

Preferred Qualifications:

• Familiarity with SAP solution design and business processes

NA