Cyber Security Specialist

Job Title: Cyber Security Specialist

Job Function: Programmatic Assessor

Location: Remote

Duration: Full-time (with benefits)

Clearance: DOE Q/SCI (Equivalent to a DOD Top Secret/SCI)

About the Employer: Unwin Company is a respected federal government contractor supporting the Department of Energy (DOE) with a long-standing tradition of service and professionalism. Unwin Company offers a very competitive compensation package that includes eligibility to participate in a company matching retirement savings plan and group medical insurance.

Job Responsibilities:

Unwin Company is seeking a highly skilled and motivated Cyber Security Specialist to join our cybersecurity programmatic assessment team. The Cyber Security Specialist will assist the Department of Energy (DOE) in monitoring and assessing the Department's cyber program's performance while considering compliance with Federal Information Security Modernization Act (FISMA) implementation requirements. This position will lead and participate in comprehensive or focused cybersecurity assessments, creation of assessment reports, and presenting the assessment results to senior management. Assessment areas can be tailored to best assess the site's implementation and may include program management, account management, risk management, configuration management, contingency planning, incident response, system security plans, security controls assessments, Plan of Action and Milestones reviews, and vulnerability scan reviews.

Other duties and responsibilities:

· Plan, execute, and lead cybersecurity assessments across the department.

· Help develop assessment objectives that will provide value to the program and department.

· Evaluate the efficiency, effectiveness and performance of operation processes with department security policies and related government regulations.

· Conduct subject matter expert interviews in order to develop an understanding of the current cybersecurity policies, processes, procedures, and risks to the department.

· Assess the exposures resulting from ineffective or missing control practices.

· Develop rigorous "best practice" recommendations to improve cybersecurity on all levels.

· Develop assessment findings and prepare assessment reports.

· Provide written and verbal reports of assessment results.

· Other duties as specified by manager or organization.

Position Requirements:

· Must possess at least a bachelor's degree from an accredited university or college, in such fields as an engineering discipline, business administration, security management, computer science, or information management or equivalent combination of education and experience.

· 5 years of experience in cybersecurity risk and compliance, IT governance, IT assessments, or an IT/cybersecurity-related field.

· Must be a U.S. citizen.

· Ability to successfully receive and maintain a DOE Q/SCI (TS/SCI) Clearance.

· Must have detailed knowledge of NIST requirements and DOE policies and procedures.

· Must have detailed knowledge of DOE missions, sites, facilities, operations, and organizational roles and responsibilities.

· Must be able to demonstrate detailed knowledge in cybersecurity management programs, including classified and unclassified computer systems, broad working knowledge of state-of-the-art computer security applications, and familiarity with current and emerging information technologies as they apply to the protection of classified information.

· Must be knowledgeable about computer networks, penetration techniques, viruses, classified computer systems, Federal computer security requirements and techniques, national standards, and comparable industrial/commercial applications.

· Must have familiarity with a broad range of tools and techniques used for network scanning, automated penetration testing, data encryption, and virus detection.

· Must have a demonstrated ability to develop reports and presentations (oral and written) that are understandable to a management audience.

· Must have excellent oral and written communication skills, and a proven ability to meet deadlines and perform under pressure in an uncertain environment.

· Up to 25% travel may be required

Desired Skills, Knowledge, and Abilities:

• Previous experience as a cybersecurity assessor in a similar function.
• Previous experience as an Information System Security Manager (ISSM).
• Previous experience managing a cybersecurity program.
• A solid understanding of DOE missions, sites, facilities, operations, and organizational roles and responsibilities.
• Possess one or more nationally recognized certifications.

To Apply: For consideration please submit your cover letter and resume with salary requirements.

Job Type: Full-time

Pay: $ $95.00 per hour

Benefits:

• 401(k)
• 401(k) matching
• Dental insurance
• Health insurance
• Health savings account
• Life insurance
• Paid time off

Work Location: Remote