DHS's Hunt and Incident Response Team (HIRT) secures the Nation's cyber and communications infrastructure. HIRT provides DHS's front line response for cyber incidents and proactively hunting for malicious cyber activity. Nightwing, as a prime contractor to DHS, performs HIRT investigations to develop a preliminary diagnosis of the severity of breaches. Nightwing provides HIRT remote and onsite advanced technical assistance, proactive hunting, rapid onsite incident response, and immediate investigation and resolution using host-based and network-based cybersecurity analysis capabilities. Nightwing is seeking an Information Systems Security Specialist to support this critical customer mission. Responsibilities: - Work as part of a team of Information Assurance professionals to manage the full Risk Management Framework lifecycle for Information Technology systems - Assisting technical/management leadership on major tasks or technology assignments - Establishing goals and plans that meet project objectives - Assisting in direction and control activities, having overall responsibility for security management, methods, and staffing to ensure that technical requirements are met - Participating in client negotiations and interfacing with senior management - Supporting decision making and domain knowledge that may have a critical impact on overall project implementation - Providing support to plan, coordinate, and implement a cybersecurity lab's information security - Providing support for facilitating and helping the lab identify its current security infrastructure and define future programs, design and implementation of security related to lab systems - Assisting the efforts of security staff to design, develop, engineer and implement solutions to security requirements - Implementing and development of the DHS IT security standards - Gathering and organizing technical information about the lab's mission goals and needs, existing security products, and ongoing programs - Performing risk analyses which also includes risk assessment - Planning and leading major technology assignments - Evaluating performance results and recommends major changes affecting short-term project growth and success - Functioning as a cyber technical expert across multiple project assignments - Working closely with ISSM and CISO to respond to Data Calls and satisfy requirements of ATOs Required Skills: - U.S. Citizenship - Must have an active TS/SCI clearance - Must be able to obtain DHS Suitability - 5+ years of directly relevant experience in information security management - Hands on experience with Linux operating systems or Amazon Web Services - Experience supporting the NIST Risk Management Framework (RMF) process and contributing to a full ATO effort from initiation through authorization, including development of security documentation, control implementation statements, supporting assessment (audit) activities, and performing full POA&M management - Beginning to end Knowledge of RMF and Assessment and Authorization (A&A) documentation to include SSP, Contingency, Incident & Configuration Mgmt planning and execution - Experience working on multiple complex assignments which are broad in nature, requiring originality and innovation in determining how to accomplish tasks - Ability to apply a comprehensive knowledge across key tasks and high impact assignments - Knowledge of Computer Network Defense (CND) policies, procedures & regulations - Knowledge of defense-in-depth principles and network security architecture - Knowledge of ATO requirements and strong experience with POAMs. - Knowledge and experience with full range of Microsoft Office products (Word, Excel, Powerpoint, and Visio) - Knowledge of boundary protection and network segmentation - Knowledge of authentication and access management techniques - Experience with implementing and assessing security controls for hardware, software, and network deployments - Must be able to work collaboratively with internal and external stakeholders across physical locations Desired Skills: - Experience with Risk Management Framework software (CSAM, Xacta, Archer, RegScale) - Experience with host and network scanning software (Nessus, Security Center, Tenable Vulnerability Management, nmap, Wiz, burp) - Experience with Endpoint Protection tools like CrowdStrike or CarbonBlack - Working knowledge of SIEM tools like Splunk, SOAR, or ELK - Familiarity with role-based account processing operations - Familiarity with zero trust architectures - Familiarity with scripting languages (python, AWS CLI, Lambda, bash, powershell) Required Education: BS Information Management, Cybersecurity, Computer Science or related degree, or High School Diploma and 7+ years of information security management experience. Desired Certifications: - DoD 8140.01 IAT Level III, CISSP, AWS, Cisco, Microsoft Syndeo: ESS-3606