Cyber Security Project Manager (TS/SCI + Poly)

Description

The DarkStar Group is seeking a Cyber Security Project Manager with a TS/SCI + Poly clearance (applicable to this customer) to join one of our top projects in Herndon, VA. Below is an overview of the project, as well as information on our company, our benefits, and our $25,000 referral program.

THE PROGRAM

The DarkStar Group is a member of 100% of the winning teams for the largest technology program in the Intel Community. We've been supporting this customer on many different sub-projects of this program since our founding in 2013. We've grown on this effort by providing the customer with Engineers who have done exceptional work, and we've retained our staff by paying very strong salaries, and working hard to ensure each Engineer is doing work that aligns with their career interest.

THE PROJECT

The Sponsor is responsible for the integration, application, and implementation of the Information Security (Cyber Security) program, as well as the development, coordination, and promulgation of Communication Security (COMSEC) policies. The Sponsor provides early and consistent involvement with programs based on an established Project Management Framework (PMF) incorporating all aspects of security and provides clear and concise security guidance, while maintaining transparent security processes. The Sponsor requires support specializing in Cyber Security to provide support to large scale, enterprise systems.

THE ROLE

• The Contractor shall participate in forums, communicate regularly with multiple offices within Sponsor purview, and be expected to manage, collaborate, and ultimately assist with cyber security risk assessments of Sponsor systems.
• The Contractor shall be responsible for providing technical security assistance such as proposing, coordinating, implementing and enforcing information systems security policies, standards, and methodologies.
• The Contractor shall plan for new technology insertion by keeping up with new technologies and capabilities such as encryption, transport, networking, and routing.
• The Contractor shall support the development or modification of System Security Plans (SSPs), security requirements, and other supporting documentation for the Assessment and Authorization process.
• The Contractor shall communicate policies supportive of the Sponsor's Cyber Security vision, goals and objectives.
• The Contractor shall review and approve security plans for IT projects.
• The Contractor shall work with various teams in advising on security measures to safeguard information against accidental or unauthorized modification, destruction or disclosure.
• The Contractor shall assist projects in determining their security requirements by analyzing project's business needs.
• The Contractor shall evaluate industry offerings to identify products that meet security requirements.
• The Contractor shall develop and implement test plans for commercial off the shelf (COTS) and custom developed systems.
• The Contractor shall work with stakeholders to create and perform quality control on Sponsor's partners risk management framework (RMF) body of evidence documentation.
• The Contractor shall review assessment reports and assist projects in identifying technical and non-technical security risks.
• The Contractor shall develop mitigation strategies such as Plans of Action and Milestones (PoAMs).
• The Contractor shall ensure projects complete mitigation strategies as scheduled to ensure timely delivery to customer.
• The Contractor shall provide security reviews and approvals for changes to accredited systems such as installation of new software, opening new ports and determination of Security Relevant Changes.
• The Contractor shall provide security reviews of network firewall changes.
• The Contractor shall provide security approvals for devices being brought into Sponsor buildings.
• The Contractor shall provide feedback to the Sponsors computer incident team to resolve cyber incidents.
• The Contractor shall provide input to improve group processes such as by recording lessons learned and creating standard operating procedures.
• The Contractor shall ensure all products and administrative documentation is completed and maintained in order to ensure continuity and historical reference.
• The Contractor shall ensure deliverables meet all relevant quality and security standards.

Required Skills

• Demonstrated experience with encryption technologies.
• Demonstrated experience with operating systems.
• Demonstrated experience with database technologies.
• Demonstrated experience with networking including Open Systems Interconnection (OSI) model, TCP/IP, Multiprotocol Label Switching (MPLS), Synchronous optical networking (SONET), Ethernet.
• Demonstrated experience with routing, switching, firewalls, data protection.
• Demonstrated experience with cloud computing.
• Demonstrated experience with information storage.
• Demonstrated experience with virtual machine technology.
• Demonstrated experience with cyber risks, exploits, vulnerabilities and associated mitigations.
• Demonstrated experience with technical guidance and oversight both to technical and non-technical, and senior level personnel.
• Demonstrated experience conducting security reviews and assessments.
• Demonstrated experience with information technology and a practical understanding of application, system, and network security best practices.
• Demonstrated experience with information security policies.
• Demonstrated experience in identifying and managing information security risks in an enterprise environment.
• Demonstrated experience making reasoned, timely, and fact based decisions and conveying reason to customers and team members.

Desired Skills (Optional)

• Bachelor's in computer science, management information systems, cyber security, information assurance, computer engineering or other technical field, or equivalent experience.
• Demonstrated experience with the Sponsor's Authorization and Accreditation (A&A) process and the Project Management Framework.
• Demonstrated experience with the Sponsor's diverse information technology infrastructure including operating systems, major application systems, and network architecture.
• Demonstrated experience with the Sponsor's Authorization and Accreditation (A&A) process and the Risk Management Framework.
• Demonstrated experience and understanding of Sponsor's cloud computing environment
• Certifications:
  • Certified Information Systems Security Professional (CISSP).

About The DarkStar Group

Our Company

The DarkStar Group is a small business that solves BIG problems. We're one of the Inc. 5000 fastest-growing private companies in the US, and our engineers and scientists support the most critical national security missions in Virginia, Maryland, and elsewhere. Data Science, Software Engineering, Cloud/AWS Infrastructure, and Cyber/CNO are our core areas of expertise. We offer interesting and important work, job security, some of the best and most flexible benefits you'll find in the IC, and salaries so strong that they'll likely surprise you.

Our Benefits

The DarkStar Group offers exceptional compensation and benefits:

• very strong salaries;
• 100% company-paid medical, dental, and vision premiums for you and all dependents;
• the ability to get increased salary if you don't need medical/dental/vision;
• 100% company-paid disability and life insurance benefits;
• a generously-funded HSA;
• an 8% 401(k) contribution;
• 31 days of PTO/holidays to start (more with tenure);
• the ability to flex time across pay periods without using your PTO;
• a generous training budget;
• $25,000 employee referral bonuses;
• business development / growth incentives; and
• top notch company swag.

** We have a huge growth opportunity, so we are offering up to a $25,000 reward for anyone new you refer whom we hire. **

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.