Job Summary
- Company
- Catapult Technology Ltd
- Location
- Reston, VA
- Industries
- Computer Hardware
- Computer Software
- Computer/IT Services
- Job Type
- Full Time
- Employee
- Job Reference Code
- 10919
Strategic Security Planning - IT Subject Matter Specialist
About the Job
Title: Strategic Security Planning - IT Subject Matter Specialist
Location: Primary (>60%) Reston, VA, Secondary (<40%) Bethesda, MD
Provides extremely high-level subject matter proficiency to include:
o Targeted consulting services to the Information Technology and Security Office (ITSO)
o Strategic security planning and facilitation support to perform necessary strategic planning, workforce planning, reengineering efforts
o Information Technology (IT) security analysis
o Management analysis
o Oral briefings
o Integration of science information and security controls at a bureau level
• Provides advanced technical knowledge and analysis of highly specialized applications and operational environment, high-level functional systems analysis, design, integration, documentation, training, and implementation advice on complex problems that require doctorate level knowledge of the subject matter for effective implementation including:
o Contributing to the Defense in Depth IT security planning project
o Providing collaborative assistance in publishing Information Technology Security Policy
o Performing internal review of information security Certification & Accreditation (C&A) processes
o Analyzing risk management, information security governance, education and awareness, and common security controls
o Supporting the development and execution of C&A processes and strategic long term IT security improvement planning efforts
o Assisting with strategic planning and strategy development, including additional work on the comprehensive Information Security Strategic Plan
o Participating in activities related to the Plan Of Action & Milestones (POA&M) remediation project
o Developing and maintaining executive-oriented position and strategy papers and Microsoft PowerPoint briefing materials
o Incorporating strategic financial models and supporting business strategies
o Developing and maintaining project plans to support activities identified within the strategic plan and POA&M remediation project
o Providing facilitation support (including agenda construction, note taking, and report compilation
o Conducting site inspections (including written reports)
o Attending listening sessions for field offices and regional/discipline representatives
o Drafting policies and guidelines for implementing security controls
o Coordinating the formation of an executive level Information Security Advisory Council
• 10 years of related work experience
• Ability to ensure that information protection is fully integrated into the Capital Planning and Investment Control (CPIC) process
• Ability to eliminate duplication, streamline activities, standardize products, and optimize services
• 7 years managing C&A of IT systems for the Federal government, either in accordance with the Department of Defense (DoD) Information Assurance Certification and Accreditation Process (DIACAP) or NIST C&A Guidance, with direct experience in overseeing all of the following areas:
o Understanding the Purpose of Certification
o Initiation of the System Authorization Process
o Certification Phase
o Accreditation Phase
o Continuous Monitoring Phase
• Working knowledge of the Federal Information Security Management Act (FISMA), Federal Information Processing Standards (FIPS), and the National Institute of Standards and Technology (NIST) series of Special Publications (SP)
• Excellent oral and written communication skills
• Must be able to work with changing and evolving requirements
• Travel Requirements: < 25%
• Bachelor's degree in information assurance, information systems management, business administration, or related discipline and at least 10 years related experience
• Or, a Master’s degree in information assurance, information systems management, business administration, or related discipline and at least 7 years related experience
• Or, a Doctoral degree in information assurance, information systems management, business administration, or related discipline and at least 3 years related experience
• Active Certified Information System Security Professional (CISSP)
• Working knowledge of the Federal Cyber Security Asset Management (CSAM) system
• Masters or Doctoral Degree in information assurance, information systems management, business administration, or related discipline
• Active Certification and Accreditation Professional (CAP) certification or the ability to obtain CAP within 6 months of hire
We are proud to be an EEO/AA employer M/F/D/V. We maintain a drug-free workplace and perform pre-employment substance abuse testing.
Location: Primary (>60%) Reston, VA, Secondary (<40%) Bethesda, MD
Provides extremely high-level subject matter proficiency to include:
o Targeted consulting services to the Information Technology and Security Office (ITSO)
o Strategic security planning and facilitation support to perform necessary strategic planning, workforce planning, reengineering efforts
o Information Technology (IT) security analysis
o Management analysis
o Oral briefings
o Integration of science information and security controls at a bureau level
• Provides advanced technical knowledge and analysis of highly specialized applications and operational environment, high-level functional systems analysis, design, integration, documentation, training, and implementation advice on complex problems that require doctorate level knowledge of the subject matter for effective implementation including:
o Contributing to the Defense in Depth IT security planning project
o Providing collaborative assistance in publishing Information Technology Security Policy
o Performing internal review of information security Certification & Accreditation (C&A) processes
o Analyzing risk management, information security governance, education and awareness, and common security controls
o Supporting the development and execution of C&A processes and strategic long term IT security improvement planning efforts
o Assisting with strategic planning and strategy development, including additional work on the comprehensive Information Security Strategic Plan
o Participating in activities related to the Plan Of Action & Milestones (POA&M) remediation project
o Developing and maintaining executive-oriented position and strategy papers and Microsoft PowerPoint briefing materials
o Incorporating strategic financial models and supporting business strategies
o Developing and maintaining project plans to support activities identified within the strategic plan and POA&M remediation project
o Providing facilitation support (including agenda construction, note taking, and report compilation
o Conducting site inspections (including written reports)
o Attending listening sessions for field offices and regional/discipline representatives
o Drafting policies and guidelines for implementing security controls
o Coordinating the formation of an executive level Information Security Advisory Council
• 10 years of related work experience
• Ability to ensure that information protection is fully integrated into the Capital Planning and Investment Control (CPIC) process
• Ability to eliminate duplication, streamline activities, standardize products, and optimize services
• 7 years managing C&A of IT systems for the Federal government, either in accordance with the Department of Defense (DoD) Information Assurance Certification and Accreditation Process (DIACAP) or NIST C&A Guidance, with direct experience in overseeing all of the following areas:
o Understanding the Purpose of Certification
o Initiation of the System Authorization Process
o Certification Phase
o Accreditation Phase
o Continuous Monitoring Phase
• Working knowledge of the Federal Information Security Management Act (FISMA), Federal Information Processing Standards (FIPS), and the National Institute of Standards and Technology (NIST) series of Special Publications (SP)
• Excellent oral and written communication skills
• Must be able to work with changing and evolving requirements
• Travel Requirements: < 25%
• Bachelor's degree in information assurance, information systems management, business administration, or related discipline and at least 10 years related experience
• Or, a Master’s degree in information assurance, information systems management, business administration, or related discipline and at least 7 years related experience
• Or, a Doctoral degree in information assurance, information systems management, business administration, or related discipline and at least 3 years related experience
• Active Certified Information System Security Professional (CISSP)
• Working knowledge of the Federal Cyber Security Asset Management (CSAM) system
• Masters or Doctoral Degree in information assurance, information systems management, business administration, or related discipline
• Active Certification and Accreditation Professional (CAP) certification or the ability to obtain CAP within 6 months of hire
We are proud to be an EEO/AA employer M/F/D/V. We maintain a drug-free workplace and perform pre-employment substance abuse testing.
Company Tools
Contact Information
Catapult Technology Ltd
