23 days old

Cyber Security Framework SME

Bethesda, MD 20817
  • Job Code
    578632
  • Payrate
    $65 To $75

Looking for a Cybersecurity Framework Subject Matter Expert to support a federal government client under an exciting and cutting-edge national research program.


As a Cybersecurity Framework Subject Matter Expert, you will be responsible for supporting the implementation of the Framework across the various program components. This will include defining the target framework tiers and profiles of the program based on risk tolerance. The ideal candidate for this position is a security professional familiar with the NIST Cybersecurity Framework (CSF), experience in implementing and communicating Federal Information Security Modernization Act (FISMA) compliance for the Federal government, and a thorough understanding of cloud computing and cloud security principles.


Responsibilities



  • Engage with the program office to define the target tiers for security framework categories and continuously mature the program's framework documentation
  • Advocate security framework principles and the benefits for managing risk across components
  • Support the development and revision of component information systems security documentation templates (e.g. System Boundary development, System Security Plan (SSP), Contingency Plan, Contingency Plan Test, Business Impact Analysis, FIPS-199, eAuthentication, Privacy Threshold Analysis, etc.) based on changing NIST and federal guidance
  • Actively participate in stakeholder meetings and help shape security practices based on the framework
  • Assist component system owners, security personnel, and stakeholders in understanding assessment and authorization (A&A) documentation requirements. Review completed templates to ensure completeness and accuracy
  • Engage and collaborate with initiative stakeholders to support their solution design, implementation, and inter-connectivity requirements
  • Support the development of artifacts, such as project summaries, position statements, recommendations and point papers, for status reporting, executive communications, and stakeholder awareness
  • Coordinate with NIH Information Security Program resources and services to ensure timely completion of project activities, including identification of scope changes, critical path items, and dependencies


Qualifications / Requirements



  • Bachelor's degree with 12 years of A&A, cybersecurity, risk management, and/or cloud security experience



  • Experience with the NIST CSF, NIST SP 800-171 and scientific data sharing policies
  • Working knowledge of FISMA, FedRAMP, and HIPAA Security and Privacy Rules
  • Extensive federal healthcare experience
  • Knowledge of application and implementation of FedRAMP security control requirements
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Privacy Professional (CIPP)
  • Experience with highly visible federal government initiatives
  • Strong customer-service attitude, ability to multi-task and work independently
  • Strong in-person, written and verbal communication skills
  • High aptitude for learning and flexibility


Preferred:



  • Master's degree
  • Additional cybersecurity and privacy certifications, such as CISA and CRISC
  • Direct support of public sector agency Information Security Programs
  • Able to obtain a Top Secret clearance

Categories

  • Information Technology

Randstad utilizes a technology-driven focus with a human touch to provide better staffing and business solutions to organizations around the world. Our team of experts match professionals with available career opportunities in a variety of fields.

Featured Jobs

Career News

Share this job:

Cyber Security Framework SME

Randstad Technologies
Bethesda, MD 20817

Share this job

Cyber Security Framework SME

Randstad Technologies
Bethesda, MD
US

Separate email addresses with commas

Enter valid email address for sender.

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast