Contractor Cybersecurity Service Delivery Associate

Responsibilities :

• Responsible for assisting leadership in the development and maintenance of the Information Security education and awareness program to ensure a well informed and educated user base.
• Assists in tracking and reporting of security metrics to key stakeholders throughout Information Technology.
• Creates various periodic reports and presentations for distribution to variety of audiences and participates in miscellaneous Information Security program projects.
• Recommends and implements changes to enhance security processes and increase the effectiveness of the program.
• The essential functions listed represent the major duties of this role, additional duties may be assigned.
• Develop and maintain the annual Information Security education, training, and awareness calendar.
• Assist leadership with identifying and creating security awareness articles and educational content. Work with IT/Enterprise Communications and Learning and Development teams to distribute content.
• Perform research and analysis to identify new training opportunities based on changes in the IT environment, threat landscape, regulatory environment, security standards, and other applicable factors.
• Ensure computer-based trainings remain up-to-date and include pertinent information to the purpose and topics of each training. Track and report on Information Security training completion rates.
• In conjunction with leaders, process owners, and subject matter experts, create presentation and reports outlining Information Security plans, processes, key initiatives, and other information that may require formal communication and distribution to a variety of different audiences.
• Assist leadership and senior team members in the development and maintenance of the Information Security metrics program including the ongoing tracking and reporting of Key Goal Indicators, Key Performance Indicators, Key Risk Indicators, and other operational metrics that enable effective monitoring of the security program's maturity.
• Assist leadership and senior team members with assigned operational excellence activities or projects that support process improvements across the Information Security organization.
• Creates and coordinates completion of detailed security reports to fulfill audit, management or business owner requirements.
• Provides input to drive process improvements.
• Maintains and creates operational procedures and maintains Security Knowledge Base.

Required Skills:

• 2+ years related work experience
• Professional experience in Cybersecurity
• High school diploma or GED
• Associate Cybersecurity Specialist Program Management: GSEC* or Security+ (upon 180 days if converted to FTE)
• Working knowledge of Information Technology fields and computer systems
• Demonstrated organizational skills
• Demonstrated ability to adapt to change and collaborate as part of a team
• Ability to manage tasks independently without close supervision and take ownership of responsibilities
• Ability to learn from mistakes and apply constructive feedback to improve performance
• Must demonstrate initiative and effective independent decision-making skills
• Ability to communicate technical information clearly and articulately
• Must have an understanding of the systems development life cycle
• Must have basic security knowledge of the organization's existing platforms, systems, databases, and application security and are able to handle most regular issues independently.
• Demonstrated analytical thinking, problem solving, and quantitative analysis ability.
• Must have an understanding of Information Security concepts, protocols, industry best practices, and regulatory requirements.
• Must have proficiency with RACF, TSO and tools used to administer security on the mainframe
• Must have demonstrated proficiency with Active Directory groups and user accounts, Windows folder structures and folder security.
• Proficiency with Windows skills are required, e.g., Windows Explorer, Word, Excel, PowerPoint, Outlook, etc.
• Must have understanding of UNIX/Linux security and tools used to administer security in these environments
• Must have understanding of LDAP groups and user accounts and tools used to administer security in this environment
• Must have understanding of database security and be proficient with the use of tools used to administer security within the various databases, e.g., UDB, DB2, SQL and Oracle
• Works without daily supervision to meet customer expectations

Preferred Skills:

• Bachelor's degree in a related field
• Experience using PowerBI and Archer Integrated Risk Management platforms.
• Knowledge of and experience performing Six Sigma process reviews and projects.