Cybersecurity Specialist

At Jacobs, we are seeking a highly skilled Cybersecurity Compliance and Validation Specialist to join our team. As a key member of our Cybersecurity program, you will be responsible for performing comprehensive assessments, compliance, and validation of IT systems to support the Cybersecurity program at USSOCOM, its Component Commands, TSOCs, and deployed forces.

• Perform timely application of software maintenance patches
• Conduct security assistance visits (SAVs) and inspections
• Validate various capability packages
• Support emerging technologies, including WLAN, VPN, Mobility Access, Data at Rest, and Enterprise Gray network solutions
• Perform duties in accordance with policies, procedures, regulations, directives, and software development guidelines from USSOCOM and Joint Staff, DoD, DIA, DISA, NSA, and USCYBERCOM

• Provide onsite support for Cybersecurity assessments, compliance, and validation
• Perform Cybersecurity Compliance and Validations, including Cybersecurity site visits, inspections, scanning, remediation, patch compliance, and reviews
• Assess organizational security posture of USSOCOM's Component Commands, TSOCs, and deployed forces and verify their compliance with DoD, DIA, and USSOCOM guidance
• Identify common security risks by analyzing findings, developing metrics, and trends
• Validate the patching of systems, perform validation scanning using ACAS, develop Plans of Action & Milestone (POA&Ms), and report as directed by applicable policies, procedures, and regulations
• Assist Component Commands, TSOCs, and deployed forces with required scanning and vulnerability management programs
• Track and report to higher headquarters organizations (e.g., USCYBERCOM, DIA) compliance with applicable Cybersecurity regulations and directives
• Maintain records documenting compliance with federal laws, directives, policies, and procedures and provide USSOCOM, its Component Commands, TSOCs, and deployed forces
• Provide POA&M for correcting or mitigating the weakness (as required) and track POA&Ms and provide status updates
• Periodically review USSOCOM, Component Command, TSOC, and deployed forces' Information Security Plans and Physical Security Plans and recommend measures to safeguard classified, sensitive, and unclassified information
• Identify and document that physical security elements identified to support DoD networks, systems, services, and devices are in compliance with security controls for access control
• Execute Information Assurance Vulnerability Management (IAVM) programs; track and report compliance with Information Assurance Vulnerability Alerts (IAVAs) and Information Assurance Vulnerability Bulletins (IAVBs)
• Coordinate with subordinate organizations for required reporting and compliance status
• Track and report the status of POA&Ms through their completion
• Execute Cybersecurity self-inspection programs; track and report on compliance and completion
• Perform FISMA network and system security reviews
• Perform and publish trend analyses of SIE Cybersecurity assessments, lessons learned, and recommended mitigation approaches
• Provide subject matter expertise for COA development and the implementation of Cybersecurity mitigation strategies
• Develop and implement required processes, procedures, and capabilities to mitigate vulnerabilities and weaknesses for software and hardware deployment
• Respond to Cybersecurity Requests for Information (RFIs) from external organizations and NetOps decision makers