Returning Candidate? Log back in! Senior Cyber Security Specialist (Remote) Location US-Remote ID 2025-5469 Category Cyber Security Services Position Type Full-Time Overview

GovCIO is currently hiring for a Senior Cyber Security Specialist (Remote). This position is 100% remote. Core Hours: Monday - Friday, 8am-5pm Eastern Standard Time (EST).  This individual will support cybersecurity efforts across multiple stakeholders and agencies in support of the VA Health Services Portfolio.

Responsibilities

The Senior Cyber Security Specialist will provide expert-level support to cybersecurity efforts across multiple stakeholders within the VA Health Services Portfolio. This position involves leading strategic security initiatives, consulting on complex projects, and overseeing teams to ensure comprehensive security compliance and risk management.

 

 

Operational Expertise

 

Correlates threat data from various sources to establish the identity and modus operandi of hackers active in client's networks and posing a potential threat. Provides the customer with assessments and reports facilitating situational awareness and understanding of current cyber threats and adversaries. Develops cyber threat profiles based on geographic region, country, group, or individual actors. Produces cyber threat assessments based on entity threat analysis. May provide computer forensic and intrusion support to high technology investigations in the form of computer evidence seizure, computer forensic analysis, data recovery, and network assessments. Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding and network security and encryption.

Communicate and provide consultative support on the VA on matters related to system security certification & accreditation and Authority to Operate (ATO)Coordinate and lead security and privacy activities within project teams and develop security and privacy related artifactsReview and identified system/applications security controls in accordance with NIST SP-800 53 Rev 4 guidance and VA Handbook 6500Perform cyber security and information system risk analysis, vulnerability assessment, and regulatory compliance assessment and gap analysis on existing systems and systems in developmentResponsible for on time deliverables of assigned and related security and privacy artifactsMust be able to identify and mitigate risks to the programDemonstrated experience in a remote work environmentAbility to proactively communicate and coordinate with various internal and external project stakeholders, depending on needsIdentifying and communicate symptoms for process improvementSupport adoption of new technologies and products by performing research, identifying security-related issues, and developing adoption plansAbility to work independently with minimal guidance and supervisionWell versed in the VA Veteran-Focused Integration Process (VIP) project management methodologyParticipate in support activities related to the integration of security architecture & engineering efforts in the SDLC IT lifecycleSupport a team of other cyber security professionalsSupport Application development/maintenance and IT operations with DevSecOps and Agile practicesThe candidate will participate in new task orders to ensure Cyber concepts are considered within the design and architecture phasesBuild and develop cyber security related artifactsImplement scans, cloud security solutions; analyze, evaluate, and plan enterprise solutionsResolve requests for assistance in troubleshooting issuesParticipate in the planning of upgrades, replacement, configuration, and maintenance of security architecture and engineering projectsParticipate in new and existing IT modernization, expansion, and improvement of security architecture and engineering projects support enterprise operationsWork with system owners to address POA&M and continual system security evaluation processes and findingInterface with internal and external agency security personnel to establish and maintain Interagency Security Agreements (ISAs)Will work closely with the internal Federal Customers and External Agency ISA Coordinators to assist with the coordination and approval of ISA documentationAnalyze process improvement areas/recommend changes to processes/procedures for efficiencies/cost-savingsSupport ATO, the VA System Steward, and the VA ISSO in support of ATCs, ATOs, eMASS, REEF, and other security tracking systemsTypical tasks for this role include but are not limited to:Authority-to-Operate (ATO) & Authority to Connect (ATC) remediation effortsSystem scans and audit preparationCloud Migration and scanseMASS updates, and reportingSystem production monitoringSOP Creation and UpdatingArtifact ResearchPIA (Privacy Impact Analysis) and PTA (Privacy Threshold Analysis) DocumentationProgram and administrative support (meeting notes, reports, org/role documentation, etc.)Ad hoc remediation response supportCommunications support Qualifications

Required Skills and Experience

Bachelor's with 12+ years (or commensurate experience) Strong understanding and hands-on experience working with Federal Information Security Management Act (FISMA), NIST-800-53 guidance, HIPAA, and HITECH Act.Must have experience achieving an ATO for projects within the VA or other Federal AgenciesExperience supporting Information Assurance Certification and Accreditation (C&A) and associated IA processes, procedures, and activities with capability and expertise to implement applicable NIST and CNSS IA directives, instructions, guidelinesTicketing systems experience such as Remedy, ServiceNowExperience in collaborating with other enterprise technologists both internal and external to resolve complex technical issuesAbility to work both independently with minimal guidance and to supervise and lead collaborations with project team members, program customers, and program and external stakeholders on behalf of the VA Technical Lead. This position requires significant hands-on work execution by the candidateDemonstrated experience in a remote work environmentAbility to proactively communicate and coordinate with various internal and external project stakeholders, depending on needsSecurity+ or other applicable certificationExperience applying security engineering concepts, processes, practices, and procedures on technical assignments, working with several different mission applicationsExperience supporting and obtaining an Authority to Operate (ATO)Analytical and investigation skillsExperience with the VA Risk and Governance Tool (Risk Vision)Technical/Security: transaction security and virus protection tools, network monitoring tools, development tools, web tools, operating system software, object-oriented coding, network, and VPN tools, database tools, ERP tools, business intelligence toolsSpecific Tools: Knowledge of service-oriented architecture. Interfaces (middleware, APIs, SOAP, XML, etc.) to components. Health or data brokering standards (HL7, Remote Procedure Calls, etc.). Note that no coding is required, but an understanding of these concepts is importantAble to obtain Suitability/Public Trust Clearance

Preferred Skills and Experience

Experience as a VA ISSO or System StewardExperience with the VA’s Governance, Risk management and Compliance (GRC) Tool - eMASSEvaluation and creation of POA&MsCISSP certificationExperience with Federal Risk and Authorization Management Program (FedRAMP) is a definite plusExperience with achieving an ATO for Software as a Service (SaaS) and/or Cloud based applications is a definite plusWell versed in the VA Veteran-Focused Integration Process (VIP) project management methodology and other VA security related reporting methodologiesOther experience: Microsoft and Linux Server Operating Systems; Cloud Engineering and Agile/Scrum; HBSS, ACAS, and NESSUS scanning, analysis, mitigation, and implementation; cloud migration and security architecture; event-driven architecture; HL7; and VistA

 

Clearance Required: Suitability/Public Trust

 

Company Overview

GovCIO is a team of transformers--people who are passionate about transforming government IT. Every day, we make a positive impact by delivering innovative IT services and solutions that improve how government agencies operate and serve our citizens.

But we can't do it alone. We need great people to help us do great things - for our customers, our culture, and our ability to attract other great people. We are changing the face of government IT and building a workforce that fuels this mission. Are you ready to be a transformer?

We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, or status as a protected veteran. EOE, including disability/vets.

 

Posted Pay Range

 

The posted pay range, if referenced, reflects the range expected for this position at the commencement of employment, however, base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, education, experience, and internal equity. The total compensation package for this position may also include other compensation elements, to be discussed during the hiring process. If hired, employee will be in an “at-will position” and the GovCIO reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, GovCIO or individual department/team performance, and market factors.

Posted Salary Range USD $140,000.00 - USD $180,000.00 /Yr. Options Apply for this job onlineApplySubmit a referral to this jobRefer Sorry the Share function is not working properly at this moment. Please refresh the page and try again later. Share on your newsfeed Application FAQs

Software Powered by iCIMS
www.icims.com