Job Listing
Information Technology Specialist (Security) (Direct Hire)
Headquarters, NASA · Posted today
About the Role
As a classified Cybersecurity Risk Manager (CSRM), in the NASA Cybersecurity and Privacy Division (CSPD), you will provide expertise on policy and procedures, assessments, authorizations, continuous monitoring, and risk management activities for classified information systems. You will collaborate with others to provide guidance, subject matter expertise, and support in identifying, evaluating, communicating, and managing cybersecurity risks.
What You'll Do
- →Validate that security controls are correctly implemented and remain effective throughout the system lifecycle.
- →Design or advise on technical solutions to complex problems which require extensive technical expertise and ingenuity.
- →Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
- →Lead all classified information system stakeholders by ensuring their assessment readiness, effective continuous monitoring, and ongoing adherence to risk management activities, while providing technical oversight and cybersecurity consultation.
- →Interpret patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program.
- →Performs security analysis of classified environments, threats, vulnerabilities and internal interfaces to define and assess compliance with accepted government standards and regulations.
- →Advise senior management, such as Authorizing Officials, Chief Information Officer (CIO), and Chief Information Security Officer (CISO) on cybersecurity risk levels and security posture.
- →Develop methods to monitor and measure risk, compliance, and assurance efforts.
- →Ensure selected security controls operate as intended in every phase of the information system lifecycle.
- →Coordinate with program security, cybersecurity management, stakeholders, and other relevant parties to clarify requirements and resolve issues while balancing mission needs against compliance mandates.
Personality Fit
Job ID: 9245d935-d246-41d4-bb55-2b2f55fab0e1
Posted via USAJobs