SBD is looking for an Information Assurance Lead to join our team in support of our DoD client based in Arlington, VA. This role requires a DoD Top Secret clearance and reports onsite in Arlington.

The Information Assurance Lead is responsible for developing effective initiatives for information assurance and management options. The lead is responsible for ensuring the IA and Cybersecurity requirements are integrated into the system development lifecycle. Provide the artifacts required to achieve initial authority to test and Authorization to Operate (ATO).

Responsibilities Include:

• Confer with users to discuss issues such as computer data access needs, security violations, and programming changes.
• Coordinate implementation of computer system plan with establishment personnel and outside vendors.
• Coordinates with IT and facilities security and recommends improvements
• Develop plans to safeguard computer files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs.
• Develops and leads security awareness by providing briefings, educational material, and on-going communication.
• Develops custom A&A documentation, champions the approval process, and at times personally assists with the negotiation of the approval process.
• Document computer security and emergency measures policies, procedures, and tests.
• Encrypt data transmissions and erect firewalls to conceal confidential information as it is being transmitted and to keep out tainted digital transfers.
• Encrypts data transmissions and erects firewalls to conceal confidential information as it is being transmitted.
• Ensures authorized access by investigating improper access, revoking access, reporting violations and monitoring information requests.
• Ensures networks, applications and information systems meet security posture and makes recommendations for improvement.
• Ensures that systems are safeguarded by ensuring that regular backups are performed, procedures are followed for source code management and disaster preparedness and recommending improvements.
• Establishes computer and physical security by developing standards, policies, and procedures.
• Executes and manage the A&A process for multifaceted systems, networks, and enclaves.
• Leads project teams and performs all duties associated with supervising/managing employees.
• Maintain permanent fleet cryptologic and carry-on direct support systems required in special land, sea surface and subsurface operations.
• May serve as an expert resource on RMF, emerging cyber tools, threats, techniques, and vulnerabilities to many projects/programs
• Modify computer security files to incorporate new software, correct errors, or change individual access status.
• Monitor current reports of computer viruses to determine when to update virus protection systems.
• Monitor use of data files and regulate access to safeguard information in computer files.
• Other duties may include providing support to audits and assessments
• Perform risk assessments and execute tests of data processing system to ensure functioning of data processing activities and security measures.
• Review violations of computer security procedures and discuss procedures with violators to ensure violations are not repeated.
• Train users and promote security awareness to ensure system security and to improve server and network efficiency.
• Updates job knowledge by participating in educational opportunities, reading professional publications, and maintaining Continuous Education Units (CEU).

Required Experience and Qualifications:

• Active DoD Top Secret clearance
• Bachelor's degree from an accredited institution in one of the following: Information Assurance, Cyber, Computer Science, Engineering, or related discipline
• 10+ years of experience in IA/Cyber Assurance
• Must meet DoD IAWD 8570 IAM Level II requirements, i.e., must have and maintain at least one of the following certifications: CAP, CASP+, CISM, CISSP, GSLC, CCISO
• Experience leading the successful capturing and refining of information protection requirements and ensuring their integration into IT systems through purposeful security design or configuration
• Experience with DIACAP and RMF
• Must reside within a commutable distance to Arlington, VA (Ballston) in order to work onsite full time.
• Must be able to pass a comprehensive background check.
• Must be fully vaccinated for COVID-19, unless a medical exemption or religious accommodation is approved. Individuals are considered fully vaccinated two weeks after their last dose of their vaccine. Confirmation of vaccine is required.