Cybersecurity Posture Assessment Services Lead
Job Description: Type of Requisition:Regular Clearance Level Must Currently Possess:Top Secret Clearance Level Must Be Able to Obtain:Top Secret Suitability:No Suitability Required Public Trust/Other Required:None Job Family:Cyber Security Job Description: Cybersecurity Posture Assessment Services Lead We are GDIT. We support and secure some of the most complex government, defense, and intelligence projects across the country. At GDIT, cyber security is not just a singular part of our missionit connects every one of us because its embedded into every aspect of what we do. GDIT is your place. You make it your own by bringing your ideas and unique perspective to our culture. By owning your opportunity at GDIT, you are helping us ensure today is safe and tomorrow is smarter. Our work depends on a Cybersecurity Posture Assessment Services Lead joining our team to support NASA activities in the Washington DC area. At GDIT, people are our differentiator. As a Cybersecurity Posture Assessment Services Lead supporting NASA, you will provide leadership and support Cybersecurity Posture Assessment Services across the entire NASA enterprise. Cybersecurity Posture Assessment Services (CPAS) encompass scans, reviews, testing, exercises, and other technical activities that enable NASA to maintain a continuous understanding of the cybersecurity posture of Agency networks, systems, applications, processes, and personnel. These services are performed by enterprise service providers and, in some cases, by Center and mission organizations. RESPONSIBILITIES:Ensure that all findings from CPAS activities are reported in NASAs authoritative enterprise cybersecurity repositories or solutions, as directed by the GovernmentUse only NASA-authorized tools, solutions, and information systems in the performance of all CPAS activitiesUse NASA enterprise tools in the performance of all CPAS activitiesEnsure that any infrastructure, hardware, and software required for the performance of CPAS activities meet the requirements for obtaining and maintaining an ATOAssist the Government in planning, developing, implementing, maintaining, and continuously improving a comprehensive capabilities and processes for performing network, system, and application vulnerability scanningFor all scanning activities, track findings to closure using enterprise reporting and ticketing toolsAssist with the integration of NASAs vulnerability management requirements, processes, and capabilities with cybersecurity risk managementAssist the Government in developing risk mitigation strategies to resolve identified vulnerabilities and recommend security changes to systems as neededAssist the Government in tracking and dispositioning CyHy findingsDevelop and implement a plan for initial and ongoing reviews of the security posture of NASA OT systems.Based on lessons learned and results from cybersecurity scanning and other CPAS activities, provide recommendations for improving NASAs CPAS capabilitiesSupport vulnerability management policy development, process analysis, systems engineering, compliance oversight, documentation, and technical support servicesEvaluate NASAs cybersecurity and privacy incident response readiness and effectiveness through Incident Response Assessments (IRA), and Red Team assessments.Conduct all penetration testing in accordance to established rules of engagement and NASA policies and proceduresSupport the Government in developing the plans, procedures and solutions needed to conduct social engineering assessments in compliance with Federal mandates and NASA requirements WHAT YOULL NEED: Bachelors degree in related field with 10+ years of relevant experience, or equivalent combination of education and experienceActive TS/SCI clearanceOne or more DoD 8570.01-M Cyber CertificationsKnowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.Demonstrated ability to manage teams/activities in a geographically diverse, complex federal enterprise large organization Knowledge of emergent IT technologies and industry trends and the impact on cybersecurity requirements and solutions WHAT GDIT CAN OFFER YOU:Full-flex work week401K with company matchInternal mobility team dedicated to helping you own your careerCollaborative teams of highly motivated critical thinkers and innovatorsAbility to make a real impact on the world around you Scheduled Weekly Hours:40 Travel Required:Less than 10% Telecommuting Options:Some Telecommuting Allowed Work Location:USA DC Washington Additional Work Locations:USA MD Greenbelt This position requires being fully vaccinated against COVID-19 by December 8, 2021 or the start date, if after December 8. We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.