Akima Mission Optimization (AMO) is looking for a Information Assurance Policy and Compliance- Ops lead to work in Albuquerque, New Mexico. To join our team of outstanding professionals, apply today!
Responsibilities- Lead Tier-2 and higher cybersecurity operations, ensuring 24/7 security monitoring and rapid response to threats.
- Analyze security alerts, intrusion attempts, and advanced persistent threats (APTs) to mitigate risks.
- Coordinate incident response efforts, investigating security events and implementing corrective actions.
- Manage and maintain firewalls (Cisco ASA, Palo Alto, or equivalent), intrusion detection/prevention systems (IDS/IPS), and security logs to ensure compliance and security integrity.
- Utilize SIEM tools to correlate security logs, identify anomalies, and proactively address vulnerabilities.
- Conduct log analysis, security forensics, and root cause investigations for cyber incidents.
- Information Assurance (IA) Policy & Compliance
- Ensure compliance with DoD, DOE, and Law Enforcement cybersecurity regulations, including RMF, NIST 800-53, and FISMA.
- Develop, implement, and enforce IA policies, security guidelines, and best practices to safeguard IT systems.
- Oversee patch management, system hardening, and vulnerability scanning to maintain compliance.
- Conduct regular audits, risk assessments, and security control evaluations to identify gaps and recommend improvements.
- Generate compliance reports, incident summaries, and vulnerability assessment findings for Federal stakeholders.
- Vulnerability Management & Network Security
- Oversee the configuration, maintenance, and administration of network security appliances.
- Perform penetration testing, vulnerability scanning, and remediation efforts to identify and address security weaknesses.
- Maintain up-to-date knowledge of cyber threats, attack vectors, and security technologies to enhance defensive strategies.
- Implement intrusion prevention measures, malware detection strategies, and endpoint security solutions.
- Leadership & Team Collaboration
- Serve as the Cybersecurity Operations Lead, managing Tier-1 and Tier-2 security analysts in their daily tasks.
- Train and mentor cybersecurity personnel, fostering a culture of continuous learning and security awareness.
- Assign and oversee team workloads, ensuring the execution of security operations and incident resolution.
- Collaborate with Federal stakeholders, IT teams, and contractors to align cybersecurity operations with mission objectives.
- Strategic Planning & Security Improvements
- Perform risk analysis and cybersecurity threat modeling to enhance system security postures.
- Develop strategic plans for cybersecurity improvements, system hardening, and security automation.
- Identify and implement emerging security technologies to strengthen the organization's cyber defense.
- Conduct security tabletop exercises and penetration testing drills to improve response capabilities.
- Communication & Reporting
- Prepare and deliver technical reports, security incident summaries, and risk mitigation strategies to Federal leadership.
- Act as a liaison between cybersecurity teams, developers, and executive stakeholders, ensuring alignment on security initiatives.
- Maintain comprehensive documentation of security procedures, IA policies, and operational workflows.
Qualifications- An active DOE Q clearance or equivalent is required for consideration
- Minimum 4 years of experience as a Tier-2+ Cybersecurity Operations Lead in a DoD, DOE, or Law Enforcement environment.
- Minimum 3 years of experience in information security operations, incident analysis, vulnerability management, intrusion detection, and system patching.
- 8+ years' experience leading information technology and cybersecurity teams
- BA/BS in Information Technology, Cybersecurity, Computer Science or 4 years of equivalent years of experience in IT and/or Cyber Operations
- Working knowledge with:
- Firewalls (Cisco ASA, Palo Alto, or equivalent)
- SIEM solutions (Splunk, ArcSight, or ELK Stack)
- Intrusion detection/prevention systems (IDS/IPS)
- Incident response and forensic analysis tools
- Vulnerability assessment and penetration testing tools
- Knowledge of cyber threat intelligence, risk assessments, and compliance frameworks (NIST, RMF, FISMA, FedRAMP, etc.).
- Proven ability to lead teams, mentor security analysts, and foster collaboration.
- Strong problem-solving and analytical skills to assess security risks and implement countermeasures.
- Excellent written and verbal communication skills, with the ability to present complex security concepts to technical and non-technical audiences.
Job ID2025-18651
Work TypeOn-Site