Team Lead Cybersecurity Analysis and Reporting Team

Employer
USAJobs
Location
Bethesda, Maryland
Posted
Oct 05, 2022
Closes
Oct 12, 2022
Hours
Full Time
Duties

CSD oversees IC-wide efforts to safeguard the IC IE in support of the DNI's Title 44 statutory responsibilities. With a focus on security aspects of the IC IE, CSD utilizes proactive oversight and management levels of governance, policy, standards, architecture, engineering, risk management, testing investment, and reporting to drive a secure, robust, and integrated IC IE aligned with IC mission-related objectives and strategies. The Director of CSD is dual-hatted as the IC Chief Information Security Officer (IC CISO).
Serve as Lead, Cybersecurity Assessment and Reporting Team within the Risk Management Group, leading the execution, documentation, and authorization processes necessary to assure that new and current information technology systems meet the IC's Information Assurance requirements.
Enables the Intelligence Community (IC) Mission through the effective execution of the Risk Management Framework (RMF) and the application of adequate security controls across the entirety of the IC Information Environment (IE).
Ensures that the appropriate management and operational security posture is maintained for information systems.
Serves as a principal advisor on all info system security matters and is a subject matter expert in applying ICD 503, CNSS 1253, and NIST SP 800-53.
Executes functions that include; info security policy interpretation, reviewing security control assessments, providing briefings and presentations to senior audiences, negotiating among different parties, formulating positions across a wide range of cybersecurity issues.

Provides senior level analysis and review of risk considerations (mission, security, and costs tradeoffs) in context of IC missions, interpreting Security Assessment Reports (SARs), Risk assessment Reports (RARs), providing critical thinking in applying security controls to system design and risk determinations.
Performs and provides risk tradeoff analysis to implement the policies, processes, models, assessments, and standards needed to recommend risk acceptance authorization for complex systems and mission enablement.
Define and develop information security requirements and engineering solutions for new systems and plan, define, and review system security plans.
Directly support more senior security managers charged with developing security guidelines for the IC and ensuring that security processes are compliant with appropriate federal requirements.
Provides the information system owners detailed and constructive recommendations for correction, along with references to appropriate government regulations and explanations and desired specific outcome(s) of the corrections.Conducts activities and works with government personnel, supervisors, contractors, and liaise with other government agencies throughout the DoD and the IC.

Requirements

Conditions of Employment


Applicants may be considered for this position as a reimbursable detailee, if endorsed by the employing agency. Applicants must have current TS/SCI clearances with polygraph or have the ability to obtain one. The ODNI does not conduct polygraphs or provide security clearances for detailees.

Qualifications

Ability to examine available data, applying the facts and own experience, and making decisions that generally prove sound.

Demonstrated ability to balance security compliance with program cost, schedule, performance, or mission needs.

Developing and/or applying Information Assurance/ Cybersecurity principles, policies, practices, standards, and controls, to include application of the Risk Management Framework (RMF), relevant to confidentiality, integrity, availability, authentication, and non-repudiation.

Ability in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.

Knowledge of network security architecture and systems security engineering concepts, including topology, protocols, components, and principles (e.g., application of defense-in-depth).

Experience with virtual and cloud computing technologies and concepts, to include DevSecOps; experience with developing system security requirements.

Demonstrated ability to establish regular contact with high-level internal and external resources and customers, supplying or seeking information on security programs and issues; demonstrated ability to tactfully express ideas or opinions to senior leaders, customers, contractors, and other stakeholders.

Education

Experience: One year of specialized experience at the next lower GS-grade (or equivalent). IT related experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT Certification). IT- related experience demonstrating each of the four competencies (Attention to Detail, Customer Service, Oral Communication, and Problem Solving).

Education: Degree in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management or degree that provided a minimum 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems or networks.

Certification/Licenses: Certified Information System Security Manager (CISSM) and/or Certified Information System Security Professional (CISSP) preferred.

Additional information

Job Interview Travel: Candidates from outside the Washington, D.C., area may be selected for a telephone, teleconference, or in-person interview. If selected for an in-person interview, any travel or lodging will be at the applicant's personal expense. A current Federal Government employee, selected for a detail, will be assigned to the position at his or her current grade and salary.

A current Federal Government employee, selected for a detail, will be assigned to the position at their current grade and salary.

Reasonable Accommodations:
The ODNI provides reasonable accommodations to qualified applicants with disabilities. If you need a reasonable accommodation for any part of the application and hiring process, please notify the Reasonable Accommodations Officer by classified email at dni_reasonable_accommodation_wma@cia.ic.gov, by unclassified email at DNI_DRA@dni.gov, by telephone at 703-275-3900 or by FAX at 703-275-1217. Your request for reasonable accommodation will be addressed on a case-by-case basis. PLEASE DO NOT SUBMIT YOUR APPLICATION TO THE EEOD EMAIL ADDRESS. THIS EMAIL IS FOR REASONABLE ACCOMMODATION REQUESTS ONLY. PLEASE SUBMIT YOUR APPLICATION VIA THE EMAIL ADDRESS PROVIDED IN THE 'HOW TO APPLY' SECTION ABOVE.

COVID-19 Vaccination Requirement: To ensure compliance with an applicable nationwide preliminary injunction, which may be supplemented, modified, or vacated, depending on the course of ongoing litigation, the federal government will take no action to implement or enforce the COVID-19 vaccination requirement pursuant to Executive Order 14043 on Requiring Coronavirus Disease 2019 Vaccination for federal employees. Therefore, to the extent a federal job announcement includes the requirement that applicants must be fully vaccinated against COVID-19 pursuant to Executive Order 14043, that requirement does not currently apply. Federal agencies may request information regarding the vaccination status of selected applicants for the purposes of implementing other workplace safety protocols, such as protocols related to masking, physical distancing, testing, travel, and quarantine.

The ODNI is an equal opportunity employer and abides by applicable employment laws and regulations.