Cybersecurity Supervisor

Location
Washington D.C.
Posted
Jan 26, 2018
Closes
Mar 02, 2018
Hours
Full Time

The U. S. Senate is seeking a Cybersecurity Supervisor to support its Cybersecurity program. The successful applicant will work as the Supervisor of the Cybersecurity / Information Assurance / Audit.

Responsibilities will include:

  • Maintain deployable cyber defense audit toolkit (e.g., specialized cyber defense software and hardware) to support cyber defense audit missions
  • Maintain knowledge of applicable cyber defense policies, regulations, and compliance documents specifically related to cyber defense auditing
  • Make recommendations regarding the selection of cost-effective security controls to mitigate risk (e.g., protection of information, systems and processes)
  • Perform an information security risk assessment
  • Perform cybersecurity testing of developed applications and/or systems
  • Perform technical (evaluation of technology) and nontechnical (evaluation of people and operations) risk and vulnerability assessments of relevant technology focus areas (e.g., local computing environment, network and infrastructure, enclave boundary, etc.)
  • Prepare audit reports that identify technical and procedural findings, and provide recommended remediation strategies/solutions
  • Analyze computer-generated threats for counter intelligence or criminal activity
  • Assess the effectiveness of security controls
  • Conduct required reviews as appropriate within environment (e.g., Technical Surveillance, Countermeasure Reviews [TSCM], TEMPEST countermeasure reviews)
  • Determine the extent of threats and recommend courses of action or countermeasures to mitigate risks
  • Develop procedures and test fail-over for system operations transfer to an alternate site based on system availability requirements
  • Document original condition of digital and/or associated evidence (e.g., via digital photographs, written reports, hash function checking)
  • Ensure all systems security operations and maintenance activities are properly documented and updated as necessary
  • Ensure the execution of disaster recovery and continuity of operations
  • Examine recovered data for information of relevance to the issue at hand
  • Implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation

 

Knowledge, Skills and Abilities:

  • Knowledge of organization's risk tolerance and/or risk management approach
  • Knowledge of the judicial process, including the presentation of facts and evidence
  • Knowledge of crisis management protocols, processes, and techniques
  • Knowledge of current and emerging threats/threat vectors
  • Knowledge of enterprise incident response program, roles, and responsibilities
  • Knowledge of information security program management and project management principles and techniques
  • Knowledge of organizational training policies
  • Skill in conducting application vulnerability assessments
  • Skill in identifying gaps in technical delivery capabilities
  • Skill in identifying measures or indicators of system performance and the actions needed to improve or correct performance, relative to the goals of the system
  • Skill in the use of penetration testing tools and techniques
  • Skill in the use of social engineering techniques. (e.g., phishing, baiting, tailgating, etc.)
  • Skill in using network analysis tools to identify vulnerabilities. (e.g., fuzzing, nmap, etc.)
  • Skill to develop insights about the context of an organization’s threat environment
  • Skill to translate, track, and prioritize information needs and intelligence collection requirements across the extended enterprise
  • Ability to design valid and reliable assessments
  • Ability to monitor advancements in information privacy technologies to ensure organizational adaptation and compliance
  • Ability to monitor and assess the potential impact of emerging technologies on laws, regulations, and/or policies.

To be considered for this position, all applicants MUST submit a U.S. Senate Sergeant at Arms Application for Employment with a cover letter and current resume to Resumes@saa.senate.gov by February 09, 2018.

The SAA application can be found at:

http://www.senate.gov/employment/saa/pdf/Employment_Application.pdf

To view the full vacancy announcement go to: https://s3.amazonaws.com/atds-jobs-production/positions/cybersecuritysupervisorpdf_2018_1_26_171.pdf

*Note: The application link is case sensitive*

 

*Application Packages submitted without a U. S. Senate Sergeant at Arms Application will not be considered*

 

*Hiring for this position is governed by the Veterans Employment Opportunities Act*

Similar jobs