This job has Expired

univ_maryland.jpg

Cybersecurity Coordinator

University of Maryland

Job Description

Position Number:

128088

Title:

IT Coordinator

Functional Title:

Cybersecurity Coordinator

Category Status:

33-Exempt Regular

Applicant Search Category:

Staff

University Authorized FTE:

100

Unit:

VPR-Applied Research Lab for Intelligence & Security

Campus/College Information:

Founded in 1856, University of Maryland, College Park is the state’s flagship institution. Our 1,250-acre College Park campus is just minutes away from Washington, D.C., and the nexus of the nation’s legislative, executive, and judicial centers of power. This unique proximity to business and technology leaders, federal departments and agencies, and a myriad of research entities, embassies, think tanks, cultural centers, and non-profit organizations is simply unparalleled. Synergistic opportunities for our faculty and students abound and are virtually limitless in the nation’s capital and surrounding areas. The University is committed to attracting and retaining outstanding and diverse faculty and staff that will enhance our stature of preeminence in our three missions of teaching, scholarship, and full engagement in our community, the state of Maryland, and in the world.

Background Checks

Offers of employment are contingent on completion of a background check. Information reported by the background check will not automatically disqualify you from employment.

Vaccine Protocol

The University of Maryland has made the safety of our students, faculty and staff, and our surrounding communities a top priority. As part of that commitment, the University requires that students, faculty, and staff on the UMD campus be vaccinated against COVID-19. As a prospective and/or a new employee at UMD, you will be required to comply with the University’s vaccination protocol. Proof of full vaccination will be required before the start of employment in order to work at any University of Maryland location. Prospective or new employees may seek a medical or religious exemption to the vaccination requirement at return.umd.edu and must have an approved exemption prior to the start of their employment. Failure to provide proof of vaccination or to obtain approval for a medical or religious exemption will result in the offer of employment being rescinded.

Position Summary/Purpose of Position:

As a national security focused UARC, ARLIS must implement, operate, and maintain classified and CUI/Sensitive technology infrastructure to support the center’s RDT&E mission for the IC/DoD. The Cybersecurity Analyst/Coordinator provides essential support to this effort, supporting the hands-on A&A (Assessment & Authorization)/RMF (DoD Risk Management Framework) activities to ensure needed infrastructure achieves and maintains ATO (Approval-To-Operate). The incumbent provides hands-on support to the CONMON (Continuous Monitoring) program, assessment/audit processes, and Security-relevant system change management processes essential to maintaining authorization operation through a system’s life cycle (including decommissioning, sanitization, and equipment disposition). The Cybersecurity Analyst/Coordinator also supports the center’s cybersecurity incident response and remediation activities, development of cybersecurity relevant processes and procedures, and when necessary, coordinates system hardening and assessment tasks with the ARLIS security team.

Minimum Qualifications:

Education:
Bachelor’s degree in Cybersecurity, Computer Science, Computer Engineering, Information Systems, or closely related field required.

Experience:
  • Three (3) years hands-on experience in a technical engineering, systems administration, operations, or cybersecurity role, with at least two (2) years hands-on experience in a hands-on cybersecurity role (auditor, controls assessor, etc.) required. 
  • At least one (1) year of cybersecurity experience implementing controls and auditing/assessment on classified national security systems with IATT or IATO/ATO through a DoD/IC RMF-based process (or equivalent DoE or DHS process) required.

KSAs – Knowledge:
  • Working knowledge of DISA STIGs/SRGs, NIST SP800-171, and NIST SP800-53 common and technical controls and how to implement and assess commonly used systems (Windows Server2016/2019, Windows 10 Desktop, RHEL/CentOS, Ubuntu Linux, etc.) for compliance
  • Working knowledge of system and network security hardening, assessment, and monitoring tools (Nessus, DISA SCC, Microsoft SCCM, etc.).
  • Working knowledge of the security requirements of the RMF (Risk Management Framework), CONMON processes, and associated DoD A&A policies and procedures (NISPOM, ICDs, JSIG, etc.)
  • Significant security-related knowledge of common hypervisors (e.g. – VMware), operating systems (e.g. – Windows Server 2012 or later), hardware, and application software.
  • Knowledge of security issues controls, and auditing procedures related to cloud environments, including commercial cloud, hybrid, and on-premises implementations.
  • Knowledge of fundamental networking protocols and infrastructure and how to properly harden/secure network infrastructure.
  • Knowledge of DoD-related assured file transfer processes and proper media handling, labeling, accountability, control, and disposition/sanitization procedures.

KSAs – Skills
  • Highly skilled performing and updating system and network assessments.
  • Highly skilled at executing cybersecurity-related plans, processes, audit routines/checklists, and SOPs.
  • Skilled at working with sysadmins, systems staff, networking staff, and other hands-on technical staff to design, implement, and manage/monitor security controls and audits.
  • Skilled at rapidly assessing and responding to system incidents (hacking, spills, critical vulnerabilities, etc.) and developing appropriate system-specific mitigation/response actions.
  • Skilled at developing and disseminating training, briefs, and situation reports to users, clients, and government oversight of varying organizational levels and technical understanding.
  • Excellent oral and written skills including the ability to document and communicate technical information in an understandable manner; ability to communicate in a wide variety of environments and with personnel at all leadership levels and with varying levels of technology experience.

KSAs – Abilities
  • Demonstrated ability to provide excellent customer service and effectively interact with all levels of staff, subcontractors, government sponsors, and representatives of other external organizations.
  • Demonstrated ability to tackle and disaggregate complex technical problems into logical, actionable project/tasks that compromise an optimal solution given the requirements and constraints.
  • Ability to follow both agile and traditional project management approaches, understand risk analysis/mitigation methodologies, and apply technical analysis skills to work tasks and projects.
  • Ability to work independently with minimal direction as well as part of an interdisciplinary team.

Other:
  • US CITIZENSHIP REQUIRED – Active DoD or Intelligence Community TS/SCI security clearance with eligibility for SCI nomination required
  • Must have at minimum a current DoD 8570 IAT/IAM-I/II professional cybersecurity credential.

Preferences:

Preferences:
Completion of DoD training in the RMF (Risk Management Framework) and related roles strongly preferred.

Additional Certifications:








Job Risks

Not Applicable to This Position

Physical Demands

Ability to occasionally lift and install computers and networking equipment in a variety of environments including secure offices, computer labs, and IT closets; this may involve work under the facility raised floor and/or ceilings or other constrained environments. Sitting or standing for long periods of time in a variety of environments while configuring, troubleshooting, and/or monitor systems and infrastructure. Some responsibilities (e.g. – incident response/spills) may involve high consequence decision making and operation under significant stress and time constraints.

Posting Date:

01/27/2023

Closing Date:

02/18/2023

Open Until Filled

No

Best Consideration Date

02/12/2023

Diversity Statement:

The University of Maryland, College Park, an equal opportunity/affirmative action employer, complies with all applicable federal and state laws and regulations regarding nondiscrimination and affirmative action; all qualified applicants will receive consideration for employment. The University is committed to a policy of equal opportunity for all persons and does not discriminate on the basis of race, color, religion, sex, national origin, physical or mental disability, protected veteran status, age, gender identity or expression, sexual orientation, creed, marital status, political affiliation, personal appearance, or on the basis of rights secured by the First Amendment, in all aspects of employment, educational programs and activities, and admissions.

*Please mention you saw this ad on AcademicJobs.*

Apply Now

Be Seen By Recruiters at the
Best Institutions

Create Your FREE Profile Now!