Cybersecurity Specialist Job Listing at SPA in Norfolk, VA (Job ID 2024-19086)

Description

Qualifications

Required:

• Active NATO or National Secret (or higher) security clearance
• Bachelor's or Master's degree in Information and Communication Technologies (ICT), Computer Science, or related discpline; OR 8 years of experience as a Cybersecurity Professional
• Proven knowledge of software development (Agile/DevSecOps) as, for example, Developer or Solution/Software Architect, and their relevancy to security
• Experience working as a Security professional within the NATO enterprise or at a national level, including knowledge of the NATO/National Security policies and supporting directives
• Able to identify, engineer, implement, and monitor security measures for the protection of computer systems, networks, and information, based on security risk assessment methodologies and tools
• Knowledgeable of (self-hosted) cloud native applications and associated production cycles
• Knowledgeable of industry standard security tools (SonarQube, Nessus, etc.) and able to create tailored configurations applicable to specific information systems
• Proven knowledge with modern software solutions, technologies, and concepts (anti-virus software, intrusion detection, firewall, content filtering, Cloud, Docker, IdAM, Proxy, CI/CD, technology stacks, and other relevant technical concepts) and their relevancy to security
• AWS (or similar) Security Specialties certification

Desired: 

• Knowledge of information security management frameworks ISO/IEC 27001 and/or ISO/IEC 27005 and/or an (active) CISSP certification
• Experience with Agile teams and Minimum Viable Products (MVPs)
• Experience with or knowledgeable about NATO's standards for security

The Cybersecurity Specialist will assess and enhance security for the Innovation Hub Laboratory Capability through implementing security-first policies in the Innovation Hub. The successful candidate will collaborate with relevant (NATO) organizations to achieve ACT cloud-based information system (Platform) and software products accreditation, and to obtain NATO specific Approval for Testing. Will create and maintain necessary security documentation for rapid NATO network deployment and provide security accreditation guidance to the Innovation Hub's platform, infrastructure, and MVP teams throughout product life cycles. Will conduct security risk assessment in support of products/services based on cloud computing architectures (public cloud); in particular, identify the level of threats and vulnerabilities for all the assets comprising products/services, derive the residual risks, and provide risk management recommendations.