Job Description Job Title: Cybersecurity Manager Location : Arlington, VA Security Clearance: Secret / Top Secret Job Type: Full-time Position Overview: As the Cybersecurity Manager shall manage all areas of IT cybersecurity and advise the client in managing the risk of operating a network including system support and tracking. The Cybersecurity Manager will assess the impact of Information Assurance Vulnerability Alert (IAVA), Computer Network Defense (CND) Directives, and Secure Technical Implementation Guideline (STIG) implementation. The Cybersecurity Manager will maintain the client infrastructure in a manner compliant with Federal Information Security Management Act (FISMA), DoD RMF, and National Institute of Standards and Technology (NIST) guidance. Duties and Responsibilities: Facilitate the following aspects of cybersecurity: physical, personnel, facility, and information systems through policies and controls IAW Army Regulation (AR) 25-2, AR 380-5, Chairman of the Joint Chiefs of Staff Instruction (CJCSI) 6510.01F, and DoD 5220.22-M, DoD Directive (DoDD) 8140.01, DoD Instruction (DoDI) 8500.01, DoDI 8530.01, DoDI 8510.01, and DoD 8570.01-M. Maintain the client LAN and its management systems are in compliance with all IAVAs. Conduct weekly security scans of all client networked equipment using the client systems and remediate vulnerabilities according to SLA. Review HBSS and Tanium reports for end-point security compliance and remediate identified vulnerabilities, as required. Track Information Assurance Vulnerability Management (IAVM) compliance. Create and submit appropriate security related reports such as intrusion, virus infection incidents, FISMA, and others as requested by the Government. Support and validate access requests for network access and managed services through Service Operations. Provide consultation on cybersecurity perspectives for proposed changes, initiatives, and projects. Monitor and review development in the technology and regulations governing the industry, DoD, and Federal Government security operations. Maintain and draft memorandums for record, system interconnection agreement, and/or equivalent to document any and all system connections to the networks. Validate client-managed assets are in compliance with Army Gold Master configuration, National Security Agency (NSA) Configuration Guidance, and NIST Configuration Guidance through coordination with Asset Management. Keep the client in compliance with the Tenant Security Plan (TSP) for the client portion of DODIN-A NIPR and SIPR in support of the Authority to Connect (ATC) and Authority to Operate (ATO). Develop a Security Test and Evaluation (ST&E) Test Plan (Section F, Deliverable 33) that addresses all the requirements identified in NIST SP 800-53 and the appropriate DoD, Army, and client information system security testing requirements. Prepare, at a minimum, two ST&E Test Plans and support the resulting testing activities during the life of the project. · Create POA&Ms and track CCRI findings through POA&Ms and report status during MPSRs. Competencies A minimum of five years of experience with DoD Risk Management Framework (RMF) security control implementations. A minimum of five years of experience working with/on FISMA, NIST, RMF, POA&Ms, and ATOs. A relevant educational degree. Hands-on work experience on at least one Service Management tools like BMC Remedy, BMC Remedy, ServiceNow, HPSM or any other equivalent industry standard ITSM tool. Strong analytical, communication, presentation and documentation skills. Good client-interfacing skills, Customer and service focused approach. Knowledge of Microsoft Excel, Power Point and MS Visio. Required Education and Experience Required: Active Secret Clearance / Top Secret preferred. Information Assurance Technical (IAT) Level III or IAM Level III. ITIL Foundation Level Certification. A minimum of five years of experience managing cybersecurity for a DoD agency with requirements, infrastructure, and tools similar to those of the client environment. Experience and knowledge of FISMA and respective security controls. Experience applying IT systems security methods and techniques to systems designs. Experience in alternatives analyses and implementing complex technical solutions. Tools: BMC Remedy / Service Now / ITSM or any other industry standard ticketing tool. Our competitive benefits package includes medical and dental coverage, 401k plan with employer contribution, paid holiday, vacation and sick leave, metro-check program, and tuition reimbursement. If you enjoy being a part of a chance to work with bright, highly motivated people dedicated to excellence, please apply today! Nationwide IT Services, Inc. provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetic. Company Description Nationwide IT Services Inc. (NIS) is a registered and verified Service-Disabled Veteran-Owned Small Business (SDVOSB). We are designated 8(a) by the Small Business Administration (SBA) as of January 2014. Our portfolio includes: Management Consulting, IT Solutions, Cybersecurity and Program Support. We are in eleven (11) states and the District of Columbia; Support 10 Federal Agencies; and have 18 contracts and we are a Prime on all of them.