GovernmentCIO

  • Cybersecurity Program Manager

    Job Locations US-DC-Washington | US-MD-Rockville
    Posted Date 1 month ago(1 month ago)
    Job ID
    2018-1438
    # of Openings
    1
    Category
    Information Technology
  • Overview

    GovernmentCIO is looking to bring on a Cybersecurity Program Manager to help support our team. 

    Responsibilities

     

    The Cybersecurity Cybersecurity Program Manager is responsible for effectively managing teams and working with clients to implement information security risk organization-wide requires the following key elements:

    • Overall management of all the cybersecurity tasks involved in the contract
    • Project resourcing, scheduling, cost analysis, reporting; Manage project scope and contractual obligations; Manage teams and assign deliverables; Manage and lead efforts for quality and continuous improvement;
    • Stakeholder engagement and communications;
    • Ongoing recognition and communication to senior leaders/executives of the information security risks to organizational operations and assets, individuals, other organizations, and the Nation arising from the operation and use of information systems;
    • Accountability to senior leaders/executives for their risk management decisions and for the implementation of effective, organization-wide risk management programs.

    GCIO seeks a Cybersecurity Program Manager with the following:

    • Knowledge of Program and Project Management
    • Experience managing cybersecurity teams for medium to large complex projects
    • Experience working onsite with client to obtain requirements and clearly communicate them to the team
    • Knowledge of strategic planning for cybersecurity risk management
    • Knowledge of cybersecurity risk management implementation (strategy and plan to exeute)
    • Knowledge of NIST 800-39 Managing Information Security Risk (Organization, Mission, and Information System view).  The is different focus than 800-37 Guide for Applying the Risk Managment Framework
    • Knowledge of NIST Cybersecurity Framework (Identify, Protect, Detect, Respond, Recover) new framework that D/A are applying to their cybersecurity program and it is how they are reporting FISMA metrics to DHS
    • Knowledge of GRC (governance, risk management, compliance)
    • Knowledge of FISMA
    • Knowledge of 800-53 controls
    • Senior level communications
    • Strategic planning
    • Excellent analysis and writing skills

    The Cybersecurity Program Manager will:

    • Ensure timely and consistent communication with the client
    • Lead and manage teams that provide value added cybersecurity services
    • Ensure that senior leaders/executives recognize the importance of managing information security risk and establish appropriate governance structures for managing such risk;
    • Ensure that the organization’s risk management process is being effectively conducted across the three tiers of organization, mission/business processes, and information systems;
    • Foster an organizational climate where information security risk is considered within the context of the design of mission/business processes, the definition of an overarching enterprise architecture, and system development life cycle processes; and
    • Help individuals with responsibilities for information system implementation or operation better understand how information security risk associated with their systems translates into organization-wide risk that may ultimately affect the mission/business success.

    Qualifications

     

    Certification Requirements:

    CISSP is preferred. PMP is preferred. Key positions require CISSP and PMP. CISM, Security +, CISA.

    Skills Requirements:

    Enterprise Risk Management, Cybersecurity Risk Management, Governance Risk and Compliance (GRC), Cybersecurity Framework (CSF), FISMA, NIST 800-39, NIST 800-37, NIST 800-53, Program and Project Management based on Project Management Institute (PMI)

    Tools & Software Experience:

    n/a

    Education Requirements:

    BS/BA

    Years of Experienced Required:

    8 to 10 years experience maybe even more senior level at 12 years

    Anticipated Disqualifications:

    Level 5: Public Trust - Moderate Risk. Contractor/subcontractor employees assigned to Level 5 positions with no previous investigation and approval shall undergo a Suitability Determination and a Minimum Background Investigation (MBI), or a Limited Background Investigation (LBI).

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed