This program consists of network operations, architecture and engineering support, security engineering, change management, special application deliveries.
The Security Team lead will have the responsibility to ensure the adequate security posture for numerous network security tools and applications supporting network security and infrastructure activities. The responsibilities also include the maintenance of the System Security Plan (SSP) is required, the management of cybersecurity governance and risk, security assessment and authorization (A&A) compliance, vulnerability management, security configuration management, delivery of Customer deliverables, creation of Customer briefs for status and regular meetings. The security team lead will interface across the program ensuring support of the technical roadmap interfacing with Network Operations as well as the architecture engineering group.
Primary Responsibilities:
Provide on-site support to the health agency in MD
Lead a team of security engineers for delivery of Cybersecurity project management, continuous diagnostics and mitigation, threat mitigation and incident response, security architecture support, critical infrastructure protection, patch management, vulnerability management, risk management, information assurance, penetration testing, cybersecurity services, and Security Assessment and Authorization (SA&A) documentation.
Manage Firewall, Web Filtering, Intrusion Prevention Systems (IPS), Intrusion Detection Systems (IDS), Network Access Control (NAC), Domain Name Systems (DNS), Remote Access VPN (RA-VPN), Application Delivery/Load Balancing, Secure Sockets Layer (SSL) Certificate Management solutions
Lead implementation of new security projects including estimation, design, development, testing and deployment and track status throughout
Support operations team with cybersecurity guidance for day-to-day operations
Prioritize and assign tasks to the security engineering staff
Recommend best business practices and secure methodologies to maintain and/or improve security posture of the information systems within the designated service area to the SAM and system owners
Provide support to service areas with implementing new security policy / procedures / mandates, processes, memos, and guidance (e.g., OMB, NIST 800-37 rev2)
Required Qualifications:
Bachelor's Degree in Computer Science, Information Systems, Engineering or other related discipline or equivalent related experience
Minimum of seven (7) years of Network Security experience
Active CCNP or CCIE Certification
Minimum of three (3) years of experience leading a cybersecurity tea
Minimum three (3) years of experience supporting SA&A activities for a Federal customer
Deep technical understanding of core current cybersecurity technologies as well as emerging capabilities
Demonstrated understanding of security best practices, security solutions, and methodologies for risk management
Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs)
Demonstrated experience working with enterprise firewall, IPS/IDS, DNS, PKI, and remote access VPN solutions
Must be able to obtain a public trust security clearance
Preferred Qualifications:
Active CISSP certification strongly desired
ITIL 4, CCIE, CCNP
Operational experience with environments employing cloud or software-defined networking
Operational experience using ScienceLogic SL1
Demonstrated experience implementing successful continuous process improvement within an IT infrastructure environment
Experience using ServiceNow Project Portfolio Management