Cybersecurity Manager

Responsibilities for this Position

Location: USA VA Virginia Beach
Full Part/Time: Full time
Job Req: RQ213625

Type of Requisition:
Pipeline

Clearance Level Must Currently Possess:
Top Secret

Clearance Level Must Be Able to Obtain:
Top Secret

Public Trust/Other Required:
None

Job Family:
Cyber and IT Risk Management

Job Qualifications:

Skills:
Information Technology (IT), Security Requirements, Security Standards
Certifications:
None
Experience:
7 + years of related experience
US Citizenship Required:
Yes

Job Description:

Job Description

We are GDIT. The people supporting and securing some of the most complex government, defense, and intelligence projects across the country. We ensure today is safe and tomorrow is smarter. Our work has meaning and impact on the world around us, but also on us, and that's important

GDIT is your place. You make it your own by embracing autonomy, seizing opportunity, and being rested to deliver your best every day.

We think. We act. We deliver. There is no challenge we can't turn into opportunity. And our work depends on a CYBER SECURITY Manager joining our team to support Navy Enterprise Tactical Training Network (NETTN) activities. They shall provide cybersecurity operations in support of this effort.

Support shall include vulnerability management, risk management framework assessment and authorization, network security, cybersecurity incident response, Host Base Security System support, information system auditing, patching support, cross domain solution support, cybersecurity configuration management and annual cybersecurity inspections.

RESPONSIBILITIES INCLUDE:

• Determines enterprise information assurance and security standard for authentication and authorization.
• Develops and implements information assurance/security standards and procedures.
• Serves as the project manager to lead the implementation of a digital identity and multi-factor authentication effort for multiple web applications
• Coordinates, develops, and evaluates security programs for an organization.
• Recommends information assurance/security solutions to support customers' requirements.
• Establishes and satisfies information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands.
• Performs analysis, design, and development of security features for system architectures.
• Review and assesses current application authentication topologies and develops a recommended path forward to implement a centralized federated authentication solution
• Leads the development of the design documentation associated with the to-be federated authentication topology
• Assists with the development and implementation of a Zero-Trust architecture roadmap
• Shall ensure that its cyberspace workforce (CSWF) personnel are identified, categorized, certified, qualified and/or otherwise competent for their assigned tasking IAW all applicable DoD directives, instructions, manuals and policies and updates thereto, including the most current version of SECNAV M-5239.2 and deliver a report identifying all of its certified CSWF personnel IAW CDRL A008 Cybersecurity Workforce (CSWF) Report
• shall institute a scan- remediate-rescan and validation methodology covering all networked and stand-alone systems utilizing the DISA Assured Compliance Assessment Solution or other current DoD mandated tool
• Develop documented Vulnerability Management procedures establishing a methodology for scan-remediate-rescan and quarterly STIG validation and maintain the procedures in IMS
• Shall ensure all networks and systems are covered by automated or manual authenticated scans and remediate or mitigate any vulnerabilities
• Scan assets on a weekly basis, at a minimum, to ensure remediation efforts are successfully implemented and perform asset discovery scans at minimum on a monthly basis
• Shall develop documented patch management procedures establishing a methodology for patching and confirming patch management
• Perform duties as assigned

Minimum Requirements:

• Seven (7) years of information technology experience with DoW government contracting efforts
• Five (5) years of managerial experience with DoW government contracting efforts, including leading a team of at least 20 plus cybersecurity professionals
• Experience managing dispersed workforce in support of securing an integrated network as well as a dispersed group of networks
• Bachelor's degree in computer science, Information Systems, Software Engineering, Business, or other related discipline with 8 years of increasingly responsible and relevant experience in defining security requirements. Without a degree at least 12 years of relevant experience is required
• Knowledge of computer communications systems, and networks that are used to support Navy and Joint training events
• Familiarity with ISO 9000:2015 Quality Management System
• 6+ years of hands-on cybersecurity experience, including the NIST Risk Management Framework (800-63-3), architecture, digital identity, federated authentication, and penetration testing, firewalls, encryption, security monitoring, event and anomaly analysis and intrusion detection/prevention.
• 3+ years of hands-on experience with the development federated authentication solutions and digital identity management
• 3+ years of hands-on experience leading a team of Cyber Security professionals
• 3+ years' experience in the design and implementation of SAML and Open Connect authentication methodologies
• Hands-On experience with the implementation of Zero-Trust principles applicable to business (web) applications
• Experience in Microsoft and Linux including Red Hat web server platforms
• Required certifications in accordance with DODI-8140/8570: CISSP or CISM or CCSP or GCIH or GCIA or GSEC or OSCP or CHFI or CEH

Desired Qualifications:

• Experience with Anti-Virus, Intrusion Detection/Protection Systems, Firewalls, Active Directory, Vulnerability Assessment tools and other security tools found in large network environments.
• Experience with technologies, including ADFS, Ping Federate, SAML and Open Connect Authentication, Azure or AWS cloud application experience
• ITIL v3 or v4 certification

Active Top-Secret DOW Clearance

Location: Virginia Beach, VA

GDIT IS YOUR PLACE
At GDIT, the mission is our purpose, and our people are at the center of everything we do.
Growth: AI-powered career tool that identifies career steps and learning opportunities
Support: An internal mobility team focused on helping you achieve your career goals
Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
Flexibility: Full-flex work week to own your priorities at work
Community: Award-winning culture of innovation and a military-friendly workplace

OWN YOUR OPPORTUNITY
Explore a career in cyber at GDIT and you'll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.

The likely salary range for this position is $128,039 - $173,229. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:
40

Travel Required:
Less than 10%

Telecommuting Options:
Onsite

Work Location:
USA VA Virginia Beach

Additional Work Locations:

Total Rewards at GDIT:
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at
gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

PI281847774

Job Description



We are GDIT. The people supporting and securing some of the most complex government, defense, and intelligence projects across the country. We ensure today is safe and tomorrow is smarter. Our work has meaning and impact on the world around us, but also on us, and that's important



GDIT is your place. You make it your own by embracing autonomy, seizing opportunity, and being rested to deliver your best every day.


We think. We act. We deliver. There is no challenge we can't turn into opportunity. And our work depends on a CYBER SECURITY Manager joining our team to support Navy Enterprise Tactical Training Network (NETTN) activities. They shall provide cybersecurity operations in support of this effort.


Support shall include vulnerability management, risk management framework assessment and authorization, network security, cybersecurity incident response, Host Base Security System support, information system auditing, patching support, cross domain solution support, cybersecurity configuration management and annual cybersecurity inspections.



RESPONSIBILITIES INCLUDE:

• Determines enterprise information assurance and security standard for authentication and authorization.
• Develops and implements information assurance/security standards and procedures.
• Serves as the project manager to lead the implementation of a digital identity and multi-factor authentication effort for multiple web applications
• Coordinates, develops, and evaluates security programs for an organization.
• Recommends information assurance/security solutions to support customers' requirements.
• Establishes and satisfies information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands.
• Performs analysis, design, and development of security features for system architectures.
• Review and assesses current application authentication topologies and develops a recommended path forward to implement a centralized federated authentication solution
• Leads the development of the design documentation associated with the to-be federated authentication topology
• Assists with the development and implementation of a Zero-Trust architecture roadmap
• Shall ensure that its cyberspace workforce (CSWF) personnel are identified, categorized, certified, qualified and/or otherwise competent for their assigned tasking IAW all applicable DoD directives, instructions, manuals and policies and updates thereto, including the most current version of SECNAV M-5239.2 and deliver a report identifying all of its certified CSWF personnel IAW CDRL A008 Cybersecurity Workforce (CSWF) Report
• shall institute a scan- remediate-rescan and validation methodology covering all networked and stand-alone systems utilizing the DISA Assured Compliance Assessment Solution or other current DoD mandated tool
• Develop documented Vulnerability Management procedures establishing a methodology for scan-remediate-rescan and quarterly STIG validation and maintain the procedures in IMS
• Shall ensure all networks and systems are covered by automated or manual authenticated scans and remediate or mitigate any vulnerabilities
• Scan assets on a weekly basis, at a minimum, to ensure remediation efforts are successfully implemented and perform asset discovery scans at minimum on a monthly basis
• Shall develop documented patch management procedures establishing a methodology for patching and confirming patch management
• Perform duties as assigned

Minimum Requirements:

• Seven (7) years of information technology experience with DoW government contracting efforts
• Five (5) years of managerial experience with DoW government contracting efforts, including leading a team of at least 20 plus cybersecurity professionals
• Experience managing dispersed workforce in support of securing an integrated network as well as a dispersed group of networks
• Bachelor's degree in computer science, Information Systems, Software Engineering, Business, or other related discipline with 8 years of increasingly responsible and relevant experience in defining security requirements. Without a degree at least 12 years of relevant experience is required
• Knowledge of computer communications systems, and networks that are used to support Navy and Joint training events
• Familiarity with ISO 9000:2015 Quality Management System
• 6+ years of hands-on cybersecurity experience, including the NIST Risk Management Framework (800-63-3), architecture, digital identity, federated authentication, and penetration testing, firewalls, encryption, security monitoring, event and anomaly analysis and intrusion detection/prevention.
• 3+ years of hands-on experience with the development federated authentication solutions and digital identity management
• 3+ years of hands-on experience leading a team of Cyber Security professionals
• 3+ years' experience in the design and implementation of SAML and Open Connect authentication methodologies
• Hands-On experience with the implementation of Zero-Trust principles applicable to business (web) applications
• Experience in Microsoft and Linux including Red Hat web server platforms
• Required certifications in accordance with DODI-8140/8570: CISSP or CISM or CCSP or GCIH or GCIA or GSEC or OSCP or CHFI or CEH

Desired Qualifications:

• Experience with Anti-Virus, Intrusion Detection/Protection Systems, Firewalls, Active Directory, Vulnerability Assessment tools and other security tools found in large network environments.
• Experience with technologies, including ADFS, Ping Federate, SAML and Open Connect Authentication, Azure or AWS cloud application experience
• ITIL v3 or v4 certification

Active Top-Secret DOW Clearance



Location: Virginia Beach, VA



GDIT IS YOUR PLACE
At GDIT, the mission is our purpose, and our people are at the center of everything we do.
Growth: AI-powered career tool that identifies career steps and learning opportunities
Support: An internal mobility team focused on helping you achieve your career goals
Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
Flexibility: Full-flex work week to own your priorities at work
Community: Award-winning culture of innovation and a military-friendly workplace


OWN YOUR OPPORTUNITY
Explore a career in cyber at GDIT and you'll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.


The likely salary range for this position is $128,039 - $173,229. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.



Scheduled Weekly Hours:
40



Travel Required:
Less than 10%



Telecommuting Options:
Onsite



Work Location:
USA VA Virginia Beach



Additional Work Locations:



Total Rewards at GDIT:
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.


We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.


Join our Talent Community to stay up to date on our career opportunities and events at
gdit.com/tc.


Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

PI281847774