Cyber Security Specialist
1 week ago
Summary
DUE TO U.S. GOVERNMENT CONTRACT REQUIREMENTS, ONLY U.S. CITIZENS ARE ELIGIBLE FOR THIS ROLE.
The Cybersecurity Specialist implements the Risk Management Framework for assessment and authorization of cloud based applications and simulator training systems. The primary role of the candidate is to ensure compliance with National Institute of Standards and Technology (NIST) Special Publications (800 -37, 800-53, 800-171) and Department of Defense (DoD) Instructions 8500.01 Cybersecurity and 8510.01 Risk Management Framework. The Cybersecurity Specialist requires ability to develop plans and procedures, conduct vulnerability and compliance scanning, assess and implement security controls, and develop plans of actions and milestones to resolve information security vulnerabilities. The candidate's role is to support the Information Security staff in the continuous monitoring of information systems ensuring that the authorized security posture is maintained.
Essential Duties and Responsibilities
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
- Maintain a clear understanding of NIST and DoD Cybersecurity and Information Assurance instructions
- Assess and implement operational, management and technical security controls and make recommendations and proposals for correcting deficiencies; develop compensating controls for information security deficiencies
- Assist with developing or updating of Information Security related plans, procedures, work methods and documentation
- Review current programs and define the steps needed for meeting the applicable cybersecurity and information assurance instructions. This includes detailed planning of all aspects of IA Compliance
- Conduct information security vulnerability and compliance scanning using the DoD's Assured Compliance Assessment Solution (ACAS) (Tenable Security Center and Nessus Software)
- Produce information security vulnerability scanning reports and develop Plans of Action and Milestones (POA&Ms) to resolve information security vulnerabilities
- Support, monitor, test and troubleshoot hardware and software cybersecurity issues and patches
- Apply computer changes to comply with DoD Security Technical Implementation Guides (STIGs)
- Application of DoD Information Assurance Vulnerability Management Program (IAVM)
- Work closely with information technology staff to define required tasks to be accomplished to meet IA instructions
- Work closely with customers to define program IA requirements.
- Writing Information Assurance documents to define plans and scope of IA requirements.
- Write Proposal sections to explain how CAE will meet IA instructions.
- Operating system level setup of computers to implement controls and apply patches to eliminate vulnerabilities.
- Perform other administrative functions/duties as assigned
Qualifications and Education Requirements
- B.S. degree in Computer Science, Computer Engineering, Information Technology, Electrical Engineering or other technical equivalent
- Two years of related experience, or an equivalent combination of education and related experience. USAF experience highly desired.
- DoD 8570.01-M Information Assurance Technical level II (IAT II) Certification
- Familiarity with DFARS 252.204-7012 Safeguarding Covered Defense Information requirements and NIST SP 800-171 R1 Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations
- Familiarity with DoD's Cybersecurity RMF Assessment and Authorization processes
- Familiarity with NIST SP 800-37 Guide for Applying the Risk Management Framework and NIST SP 800-53 R4 Security and Privacy Controls for Federal Information Systems and Organizations
- Prior experience in operating system setup and updates to apply patches to mitigate information security vulnerabilities.
- Related skill areas should include technical writing and presentation skills.
- Excellent written and verbal communication skills are required. Analytical and mathematical modeling ability.
- Ability to read, analyze, and interpret professional journals, technical procedures, or governmental regulations.
- Ability to write reports, business correspondence, and procedure manuals.
- Ability to apply principles of logical or scientific thinking to a wide range of intellectual and practical problems.
- Should be familiar with and able to support Engineering or Operations staff on any type and sub-component of training devices.
- The types of devices that will be encountered include full flight motion devices, maintenance training devices, and fixed base training devices.
- Ability to travel domestically and internationally
- At least one certification must be from this list: CCNA Security, CySA, GICSP, GSEC, Security+ CE and SSCP
- DUE TO U.S. GOVERNMENT CONTRACT REQUIREMENTS, ONLY U.S. CITIZENS ARE ELIGIBLE FOR THIS ROLE.
Security Responsibilities
Must comply with all company security and data protection / usage policies and procedures. Personally responsible for proper marking and handling of all information and materials, in any form. Shall not divulge any information, or afford access, to other employees not having a need-to-know. Shall not divulge information outside company without management approval. All government and proprietary information will be accessed and stored electronically on company provided resources.
• Incumbent must have a DoD Personal Security Clearance
Work Environment and Physical Demands
This job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines.
- Work is performed in an environment where irritants such as noise from telephones, temperature and lighting variations may exist, but there is little chance of injury, accident or occupational health problems.
- Works at job activities that require sitting, standing or walking for short periods throughout the day and focused visual concentration or focused listening
- Moderate to high levels of stress, associated with technical, schedule, and customer issues are to be expected with this position. Extended work hours and possible 2nd and 3rd shift assignments are likely to be encountered.
- May be required to sit down for long lengths of time.
- May be required to climb stairs.
- Must be able to travel CONUS and to International sites and work overtime as necessary
- Must be able to climb stairs to enter and exit a simulator
Salary Range: $91,500 to $106,800
The actual compensation rate is subject to the evaluation of the following factors (but not limited to): the candidate's work experience, qualifications, skills, internal equity, and market.
Other Duties
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for their job. Duties, responsibilities, and activities may change at any time with or without notice.
Seniority level- Associate
- Full-time
- Other
- Industries
- Airlines and Aviation
-
Director, Cyber Security
2 weeks ago
Eastern Ontario, Canada Ontario Teachers' Pension Plan Full timeThe opportunityAs the Director, Cyber Security, you will be responsible for leading and overseeing the cyber security strategy, architecture, governance, and program delivery for Ontario Teachers' Pension Plan (OTPP), one of the world's largest and most innovative pension funds. You will ensure that OTPP's cyber security posture is aligned with its business...
-
Director, Cyber Security
4 weeks ago
Eastern Ontario, Canada Ontario Teachers' Pension Plan Full timeThe opportunityAs the Director, Cyber Security, you will be responsible for leading and overseeing the cyber security strategy, architecture, governance, and program delivery for Ontario Teachers' Pension Plan (OTPP), one of the world's largest and most innovative pension funds. You will ensure that OTPP's cyber security posture is aligned with its business...
-
Director, Cyber Security
4 days ago
Eastern Ontario, Canada Ontario Teachers' Pension Plan Full timeThe opportunityAs the Director, Cyber Security, you will be responsible for leading and overseeing the cyber security strategy, architecture, governance, and program delivery for Ontario Teachers' Pension Plan (OTPP), one of the world's largest and most innovative pension funds. You will ensure that OTPP's cyber security posture is aligned with its business...
-
Cyber Security Leadership Position
7 days ago
Eastern Ontario, Canada Ontario Teachers' Pension Plan Full timeAbout the OpportunityThe Director, Cyber Security position is a high-level leadership role that oversees the cyber security strategy, architecture, governance, and program delivery for Ontario Teachers' Pension Plan (OTPP), one of the world's largest and most innovative pension funds. This individual will be responsible for ensuring that OTPP's cyber...
-
SENIOR SPECIALIST BA RESILIENCE
3 weeks ago
Eastern Ontario, Canada City of Toronto Full timeSENIOR SPECIALIST BA RESILIENCE (CLOUD SECURITY ASSESSMENT)Job ID: 54159Job Category: Information & TechnologyDivision & Section: Office of the CISO, Cyber OperationsJob Type & Duration: Full-time, PermanentSalary: $122,305.00 - $163,639.00, PSG #TM5099 and wage grade 8.Shift Information: Monday to Friday, 35 hours per weekAffiliation: Non-UnionNumber of...
-
Security Specialist
3 weeks ago
Eastern Ontario, Canada Security Industry Specialists, Inc. Full timeAbout this position:Department: RetailLocation: Providence, RIEmployment Type: FlexAbout us:Security Industry Specialists, Inc. (SIS) provides security solutions to some of the most recognized companies and brands in the world. We deliver services that consistently exceed those of our peers through innovation, constant process improvement, and an...
-
Cyber Security Specialist
3 weeks ago
Eastern Ontario, Canada CAE USA Full timeSummaryDUE TO U.S. GOVERNMENT CONTRACT REQUIREMENTS, ONLY U.S. CITIZENS ARE ELIGIBLE FOR THIS ROLE.The Cybersecurity Specialist implements the Risk Management Framework for assessment and authorization of cloud based applications and simulator training systems. The primary role of the candidate is to ensure compliance with National Institute of Standards and...
-
Cyber Security Specialist
3 days ago
Eastern Ontario, Canada CAE Inc Full timeAbout This Role Who We Are:CAE Vision: Our vision is to be the worldwide partner of choice in defense and security, civil aviation, and healthcare by revolutionizing our customers' training and critical operations with digitally immersive solutions to elevate safety, efficiency and readiness.CAE Defense & Security Mission: CAE's Defense and Security business...
-
Chief Information Security Officer Role
6 days ago
Eastern Ontario, Canada Ontario Teachers' Pension Plan Full timeJob DescriptionThe Senior Cybersecurity Manager will lead and manage the development and implementation of a comprehensive and integrated cyber security strategy, framework, program, and roadmap for Ontario Teachers' Pension Plan (OTPP). This includes aligning cyber security posture with business objectives, cyber risk appetite, and required regulatory...
-
Eastern Ontario, Canada State Street Full timeWho we are looking forWe are looking for a highly skilled and experienced Cyber and Data Analytics Auditor, Assistance Vice President to join our global Cyber Audit team. To succeed in this role, you need to have a deep understanding of cyber risks processes, controls, industry standards, and should have a strong knowledge of NIST, MITRE, and Defense in...
-
Senior Cyber Security Specialist
1 day ago
Eastern Ontario, Canada Nokia Full time**Job Description**We are seeking an experienced Senior Security Software Development Engineer to join our team. As a member of our Applied R&D group, you will be responsible for designing, developing, and implementing secure software solutions that meet the needs of our clients.
-
Data Strategy Lead, Cyber
2 weeks ago
Ontario, Canada Bank of Canada Full time**Data Strategy Lead, Cyber (Remote - Canada)** **Take a central role** The Bank of Canada has a vision to be “a leading central bank—dynamic, engaged and trusted—committed to a better Canada.” No other employer in the country offers you the unique opportunity to work at the very center of Canada’s economy, in a diverse and inclusive organization...
-
Director of Cybersecurity Strategy
6 days ago
Eastern Ontario, Canada Ontario Teachers' Pension Plan Full timeAbout the JobThis Chief Information Security Officer (CISO) role is responsible for leading and managing all aspects of cyber security at Ontario Teachers' Pension Plan (OTPP). The successful candidate will have a minimum of 10 years of progressive experience in cyber security, information security, or IT risk management, preferably in the financial services...
-
Senior Cybersecurity Manager Opportunity
6 days ago
Eastern Ontario, Canada Ontario Teachers' Pension Plan Full timeAbout the RoleThe Director, Cyber Security position is a critical leadership role that oversees the development and implementation of a comprehensive cyber security strategy, framework, program, and roadmap for Ontario Teachers' Pension Plan (OTPP). This individual will work closely with senior leadership and key stakeholders to ensure that OTPP's cyber...
-
Security Specialist III
1 week ago
Eastern Ontario, Canada JT4 Full timeSecurity Specialist III - COMSEC Responsible Officer (CRO)1 day ago Be among the first 25 applicantsJT4, LLC provides engineering and technical support to multiple western test ranges for the U.S. Air Force, Space Force, and Navy under the Joint Range Technical Services Contract, better known as J-Tech II. JT4 develops and maintains realistic, integrated...
-
Vice President
3 weeks ago
Eastern Ontario, Canada Reinsurance Group of America Full timePress continue to see content specific to your location.Vice President - Technology Risk OversightTorontoCAD 150,000 - 200,000Reinsurance Group of AmericaAt RGA, we specialize in providing life and health-related reinsurance and financial solutions to help our clients effectively manage risk and capital.RGA is a purpose-driven organization working to solve...
-
Director, Swift Security
4 weeks ago
Eastern Ontario, Canada RBC Full timeJob SummaryJob DescriptionWhat is the opportunity?As Director, SWIFT Security, you will be at the forefront of driving security compliance and mitigating operational risks related to Swift within the organization. You will lead a dedicated team, ensuring adherence to Swift’s customer security controls framework and championing governance and assessment...
-
Lead, Network Security Engineering
1 week ago
Eastern Ontario, Canada Scotiabank Full timeRequisition ID: 198839Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.We are looking for a dynamic and experienced Lead Network Security Engineer to join our team. As the Lead Network Security Engineer, you will be responsible for providing technical leadership and strategic direction in the design,...
-
Lead, Network Security Engineering
3 weeks ago
Eastern Ontario, Canada Scotiabank Full timeRequisition ID: 198839Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.We are looking for a dynamic and experienced Lead Network Security Engineer to join our team. As the Lead Network Security Engineer, you will be responsible for providing technical leadership and strategic direction in the design,...
-
Security Specialist III
1 week ago
Eastern Ontario, Canada JT4 Full timeJT4, LLC provides engineering and technical support to multiple western test ranges for the U.S. Air Force, Space Force, and Navy under the Joint Range Technical Services Contract, better known as J-Tech II. JT4 develops and maintains realistic, integrated test and training environments and prepares our nation's war-fighting aircraft, weapons systems, and...
