ARETUM is seeking a Senior IA/Cybersecurity Lead to oversee and enhance our information assurance strategies while ensuring compliance with cybersecurity regulations and frameworks. In this pivotal role, you will guide a talented team in developing, implementing, and maintaining robust information assurance and cybersecurity programs tailored for our government clients.
As a Senior IA/Cybersecurity Lead, you will be responsible for evaluating and strengthening security controls, conducting risk assessments, and managing compliance with Federal Information Security Management Act (FISMA) requirements. Your leadership will be crucial in establishing a security-first culture within the organization, and will directly contribute to safeguarding critical information systems.
Key Responsibilities
Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. May ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure. May respond to computer security breaches and viruses.
Monitor DOD, and other sites (e.g. Army Cyber) for new standards, regulations and policies.
Review contract deliverables for compliance.
Support risk management framework (RMF) implementation.
Assess Information Assurance Vulnerability Alert (IAVA) management plans and processes.
Develop and maintain Plans of Actions and Milestones (POAMs) for security related activities.
Manage DD2875 submissions and support provisioning activities.
Lead a Cybersecurity team and support interaction with other IT teams.
Requirements
A minimum of ten years of DoD IA experience
Possess one of the following certifications: GSLC, CISSP, CISM, and CISA, or another DoD 8570.01-M Level 3 authorized IAT/IAM certification.
A minimum of eight years of experience analyzing, assessing, and implementing corrective actions based on vulnerability management and penetration testing tools and work efforts.
A minimum of eight years of experience with the NIST RMF, NIST SP 800-53, STIGs, SCAP, IAVAs, and FISMA.
A minimum of eight years of experience supporting DoD defensive cyber operational activities, including, but not limited to, information system protection, defense, response (incident handling), reporting, and recovery.
A minimum of eight years of experience in managing complex DoD projects.
Possess a minimum of a favorably adjudicated NACLC/ANACI investigation (Tier 3) at proposal submission.
Active Top Secret Clearance
Desired Qualifications:
A bachelor’s degree in an IT related field
Strong verbal and written communication skills as well as the ability to work independently.
Experience leading teams.
Experience writing Standard Operation Procedures (SOP), COOP Planning, POA&Ms, and other documentation in support of RMF as required.
The ability to provide technical evaluation of proposed system(s) and application approaches.
ARETUM is an equal opportunity employer, committed to diversity and inclusion. All qualified candidates will receive equal consideration for employment without regard to disability, race, color, religious creed, national origin, sexual orientation/gender identity, or age.
ARETUM utilizes e-Verify to check employment authorization.
