Back to Directory

Responsibilities

• The Technical Lead (TL) identifies gaps in knowledge during the pre-assessment documentation review. In addition, the TL will drive additional documentation requests and gather the correct Subject Matter Experts (SMEs) to be interviewed for the assessment.
• The TL will lead the Technical Exchange Meetings (TEM). They must have a broad knowledge of the technical topics of the systems being covered during the TEM.
• The TL is also responsible for drafting the assessment report, including findings gained from the operator
• The TL will share all the information gained during the TEM with the entire assessment team
• The TL may assist the Assessment Lead (AL) with remediation activities
• The Contractor support staff will maintain an accurate list of HVA assets
• The Contractor support staff shall manage the assessment schedule of all Agency HVA assets
• Ensure that these plans conform to CISA reporting requirements
• Creating POA&Ms with appropriate milestones and the Contractor support staff shall maintain these findings and resolutions in the agency-identified data storage system
• The Contractor shall provide the Agency HVA POC with all HVA assessment reports within 30 days of the assessment’s completion via a CISA-established submission process

Certifications

• At least one of the following:
  • Certified Information System Auditor (CISA)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Systems Security Professional – Information Systems Security Architecture (CISSP-ISSAP)
  • Certified in Risk and Information Systems Control (CRISC)
  • (Recommended) GIAC Defensible Security Architecture (GDSA)

Qualifications

• Must have a Bachelor’s Degree in Computer Science or related field
• Must have an active Secret security clearance
• Must have 7 years of relevant work experience
• All Contractors on the HVA assessment team must have completed the CISA’s AES HVA Assessment course and pass all associated examinations necessary for AES qualification
• Ability to apply the methods, standards, and approaches for describing, analyzing, and documenting an organization’s enterprise information technology (IT) architecture
• Excellent verbal and written communication skills
• Knowledge of cybersecurity and privacy principles and organizational requirements
• Skill to apply cybersecurity and privacy principles to organizational requirements

Location

• This position requires the candidate to come on-site to the facility twice a week (Tuesday & Thursday), and work can be done remotely. The main facility is located in the National Capital Region within the DC Metropolitan area.

Salary

• Salary is based on the number of years of relevant experience you have.

Please email your resume to our HR Recruiters