NET ESOLUTIONS CORPORATION (NETE) is a multi-award winning company founded in 1999. NETE is a full service Information Technology (IT) company dedicated to providing value focused services to the Federal Government and the Biomedical Research and Health IT Sector. NETE offers a collaborative working environment where growth is encouraged and nurtured. In addition, we offer competitive salaries that may include performance bonuses and a comprehensive benefits package.

Job Description

NETE is seeking an Information Security Product Coordinator who will be a key member of a consulting team providing advice and support, to federal agencies and in the Risk Management areas of Information Security. This role is primarily responsible for either directly managing information security products or managing the package of support functions required to field and maintain the readiness and operational capability of systems and components.

Responsibilities

• Develop methods to monitor and measure risk, compliance, and assurance efforts.
• Perform needs analysis to determine opportunities for new and improved business process solutions; Provide advice on project costs, design concepts, or design changes.
• Provide enterprise cybersecurity and supply chain risk management guidance for development of the Continuity of Operations Plans. Develop and document supply chain risks for critical system elements, as appropriate.
• Provide ongoing optimization and problem-solving support.
• Provide recommendations for possible improvements and upgrades.
• Evaluate the effectiveness of procurement function in addressing information security requirements and supply chain risks through procurement activities and recommend improvements.
• Ensure that all acquisitions, procurements, and outsourcing efforts address information security requirements consistent with organization goals.
• Coordinate and manage the overall service provided to a customer end-to-end.
• Gather feedback on customer satisfaction and internal service performance to foster continual improvement.
• Ensure that appropriate Service-Level Agreements (SLAs) and underpinning contracts have been defined that clearly set out for the customer a description of the service and the measures for monitoring the service.
• Work with other service managers and product owners to balance and prioritize services to meet overall customer requirements, constraints, and objectives.
• Manage the internal relationship with information technology (IT) process owners supporting the service, assisting with the definition and agreement of Operating Level Agreements (OLAs).
• Participate in the acquisition process as necessary.
• Conduct import/export reviews for acquiring systems and software.
• Develop supply chain, system, network, performance, and cybersecurity requirements.
• Draft and publish supply chain security and risk management documents.

Job Requirements

• BA or BS degree in Computer Science, Security or related discipline (Preferred but not required).
• Industry standard certifications such as CRISC, PMP or related (required).
• Preferred experience in Federal Government, procedure development, report writing and presentations.
• Minimum 5 years’ experience in managing products or the project support functions, in cybersecurity risk management, is required along with minimum of 3 years of experience in at least 3 of the following:
  • Enterprise cyber security and supply chain risk management guidance.
  • Monitor and measure risk, compliance, and assurance efforts.
  • Provide advice on project costs, design concepts, or design changes.
  • Developing Service or Operating Level Agreements.
  • Drafting supply chain security and risk management documents.
  • Process improvement concepts and process maturity models e.g. Capability Maturity Model Integration (CMMI).
• Able to communicate, verbally and in writing, complex-technical issues with simplicity & clarity
• Able to exercise discretion and maintain confidentiality
• Highly proficient in reporting, presenting and answering analytical questions
• Must be able to communicate complex-technical issues in simple terms and clearly, both orally and in writing, to a wide audience; Strong Interpersonal skills and the ability to work as part of a team.
• Must be able to exercise discretion and maintain confidentiality
• Applicants selected will be subject to a Public Trust background security investigation and may need to meet eligibility requirements for access to sensitive information. US Citizens or Permanent Residents preferred.

Must know

• Risk management processes (e.g., methods for assessing, mitigating and accepting risks).
• Cybersecurity principles, security models, organizational requirements (w.r.t. confidentiality, integrity, availability, authentication, non-repudiation), cyber threats, risks and vulnerabilities, cryptography and cryptographic key management concepts, host/network access control mechanisms (e.g., ACLs), network access, identity, & access management (e.g., PKIs), Computer networking concepts and protocols, and network security methodologies. 

Must-have knowledge 

• Operational impacts of cyber security lapses.
• capabilities and requirements analysis.
• Industry-standard and organizationally accepted analysis principles and methods.
• Information technology (IT) architectural concepts and frameworks.
• Risk Management Framework (RMF) requirements.
• New and emerging information technology (IT) and cybersecurity technologies.
• Resource management principles and techniques.
• System life cycle management principles, including software security and usability.
• The organization’s enterprise information technology (IT) goals and objectives.
• How information needs, and collection requirements are translated, tracked, and prioritized across the extended enterprise.
• Supply Chain Risk Management Practices (NIST SP 800-161)
• The organization's core business/mission processes
• Organizational process improvement concepts and process maturity models (e.g., Capability Maturity Model Integration (CMMI) for Development, CMMI for Services, and CMMI for Acquisitions).

Benefits

• Paid Time Off (PTO)
• 9 Paid Federal holidays
• Various wellness programs
• Free parking at corporate offices
• Employee Referral Bonus Program (ERBP)
• Vision coverage through UHC national network
• Dental coverage through UHC national network
• 401(K) with significant company match & no vesting period
• Short and Long-Term Disability coverage (paid by company)
• Competitive salaries with opportunity for performance bonuses
• Discount plan for pet care, legal services, & identify theft protection
• Basic Life and AD&D coverage (paid by company; option to purchase additional coverage)
• Medical coverage through UHC national network (option to choose between 3 available plans)
• Flexible Spending Accounts:
  • Healthcare (FSA)
  • Parking Reimbursement Account (PRK)
  • Dependent Care Assistant Program (DCAP)
  • Transportation Reimbursement Account (TRN)

NETE is a multi-award winning company as well as offers a collaborative working environment where growth is encouraged and nurtured. In addition, we offer competitive salaries that may include performance bonuses; and a comprehensive benefits package.

NET ESOLUTIONS CORPORATION (NETE) uses E-Verify to validate all new hires' ability to legally work in the United States.

Disclaimer: The above description is intended to describe the general nature of work and level of effort being performed by individual’s assigned to this position or job description. This is not to be construed as a complete or exhaustive list of all skills, responsibilities, duties, and/or assignments required. Individuals may be required to perform duties outside of their position, job description, or responsibilities as needed.