Cybersecurity Principal Specialist #5316
Cybersecurity Principal Specialist #5316
NATURE OF WORK
This is advanced professional work coordinating, developing, evaluating, and implementing cybersecurity standards and procedures to protect centralized and distributed information systems, applications, and data. Work may include leading a team of employees responsible for providing a full range of cybersecurity support to Senators, Senate Committees and other Senate offices. Work includes coordinating and re-directing work assignments to ensure timelines and customer needs are met. The incumbent assists the supervisor in coordinating and directing staff work assignments. The incumbent may assign and inspect work and provide training to less experienced workers. This work involves extensive interactions with customers, Sergeant at Arms (SAA) business units, other agencies, and vendors. Responsibilities include providing leadership, functional expertise, project management, coordination, support, and oversight of work efforts. This position is under the direction of a Supervisor and supports oversight and coordination of the cybersecurity program.
EXAMPLES OF WORK
(This list is not absolute or restrictive, but indicates approximate duties and responsibilities, which may be redefined pursuant to operational needs.)
● As functional expert, the incumbent may be called upon to recommend short- and long-term strategic direction for Senate technology.
● As project manager, the incumbent may be assigned project management responsibilities to include the coordination and review of staff and contractor work efforts, budget monitoring, timetables and service level agreements.
● Work involves close cooperation with business owners to define, implement, and review effective cybersecurity requirements.
● Provides expert level functional support in the area of cybersecurity to SAA Cybersecurity Department staff and staff throughout the SAA organization.
● Administers key Cybersecurity service to Senate offices (ex: vulnerability assessments, cybersecurity defense operations, Information Assurance Audits and/or Awareness presentations).
● Assists the supervisor in coordinating all activities of the team; plans, coordinates and reviews work; provides feedback to supervisor for the purpose of evaluating subordinates.
● Provides advanced instruction to staff; trains, assigns and inspects work; schedules training.
● Serves as backup to supervisor, attending meetings and assisting in overseeing day-to-day operations; compiles weekly statistics and prepares necessary system reports and forms to assess workload.
● Leads advanced project teams and contractors; plans, assigns, directs, and coordinates work efforts; develops project plans, timetables and staff requirements.
● Serves as an authority on the interoperability, and system integration of operational security products which affect application systems, development initiatives, network efforts and computer acquisition plans of organizations within the Senate’s automation architecture.
● Serves as primary or backup Contracting Officer’s Representative (COR) for cybersecurity projects; helps coordinate activities of contractors, vendors, SAA customer support staff, and IT support staff; reviews vendor contracts for compliance and accuracy; assists in adjusting contract statement of work as business needs change; develops reporting mechanisms for evaluating contractor adherence to service level agreements; submits periodic reports on service level agreement compliance.
● Serves as team leader and/or project manager on assigned projects; plans, assigns, directs and coordinates work efforts; develops project plans, calculates level of effort and resource requirements, sets timetables.
● Promotes disaster recovery planning by assisting in identifying critical computer services and applications; develops and documents emergency responses and contingency plans; leads coordination role of planning and carrying out exercises.
● Works with Senate business owners to ensure appropriate logical, physical, management, and cybersecurity controls are employed in all applications; periodically reviews application controls for efficiency and effectiveness.
● Develops, reviews, maintains and recommends standards, policies, procedures, guidelines and security controls to protect Senate centralized and distributed computer operations from unauthorized access, use, disclosure and interruption of service.
● Assists in short- and long-range strategic planning activities for the Senate in the area of cybersecurity, monitors the impact of technological development; identifies, researches, and evaluates emerging IT security products; proposes solutions and countermeasures.
PHYSICAL DEMANDS AND WORKING ENVIRONMENT
Work requires extended periods of confined sitting and hand-eye coordination working with computers. Work is conducted in common office environments, secured spaces, and security operations centers. Occasional evening and weekend work may be required to resolve problems, handle incidents, participate in Continuity of Operations (COOP) exercises, or assist SAA staff in meeting critical deadlines. Expected to work unusual and perhaps unexpected hours during a (COOP) event.
Work requires a Bachelor’s Degree in computer science, telecommunications, or a related field, and eight to ten years of progressively responsible experience within a Certified Information Systems Security Professional (CISSP)-type environment or any equivalent combination of education and experience that provides the following knowledge, skills and abilities:
• Knowledge of project management principles and practices; ability to set goals and to plan, monitor and evaluate project or contract budgets; ability to organize and coordinate resources to achieve project and organizational goals and objectives efficiently and effectively.
• Skill in critical thinking to identify strengths, weaknesses, alternative solutions, conclusions and approaches to problems.
• Creates and leads interactive learning exercises that support an effective learning environment.
• Uses appropriate instructional strategies such as lectures, demonstrations, interactive exercises, multimedia presentations, video courses, and web-based courses to create an effective learning environment for the SAA cyber community.
• Designs instructional materials (e.g., standard operating procedures, production manual) to provide detailed guidance to the relevant portion of the workforce.
• Skill in making processes more efficient.
• Ability to identify potential security events to the team; developing action plans, and carrying them out quickly and effectively.
• Ability to support the team Supervisor in interacting effectively with individuals at all levels of the organization, Member offices, external agencies and committees, and contractors.
• Ability to communicate effectively and possess excellent written, oral and presentation skills.
• Ability to handle sensitive information in compliance with established Senate standards and guidelines for managing sensitive data.
LICENSES, CERTIFICATION AND OTHER REQUIREMENTS
Ability to obtain a security clearance.