Risk Assurance SME

We are looking for a skilled and adaptable Risk Assurance SME to support our $4.3 billion DOD Healthcare Management System Modernization (DHMSM) program in Vienna, VA, providing the modernization, global deployment and sustainment of the Electronic Health Record (EHR) capabilities for the Department of Defense. This is one of the most exciting, cutting-edge programs that you can be a part of with Team Leidos.  Our solutions will improve the quality of healthcare for some 10 million military personnel and their families. Let talk about how good it feels when you know you are making that kind of difference!!

The Risk Assurance SME will support the effort of ensuring successful implementation of a comprehensive and sustainable cyber security risk assurance program based on a defined strategy. They will accomplish this thru supporting the Cyber Assurance Lead in identification and implementation of risk assurance and RMF processes across multiple different delivery methods and engineering teams.

Responsibilities

• Assess and report on identified and anticipated project risks
• Support risk avoidance or mitigation strategies to minimize project impact
• Coordinate artifacts across multiple delivery teams to provide to DHMSM ISSOs.
• Work with Cyber Assurance Lead to ensure assessments are properly tracked and performed when additional capabilities are added into the enclave.
• Lead internal and external project meetings, providing updates on progress against critical paths and milestones
• Support maintaining and developing Integrated Master Plan thru rolling up multiple project schedules.
• Support efforts to align schedule to schedule dashboard for DHMSM Cyber team.
• Support an intake process for all engineering teams for cyber requirements
• Engage and manage third party resources as needed to support project objectives for Risk Assessment projects and IV&Vs.
• Conduct presentations and briefings to cybersecurity leadership and external stakeholders to discuss trends, anomalies, and necessary actions.
• Work across DHMSM Accreditation teams to ensure scheduling coordination of resources occurs.
• Coordinates the daily activities of a work group, setting priorities to ensure task completion.
• Implement tools and solutions to automate and visualize metrics, reporting, and dashboards.
• Coordinate daily release of risk status and approach deadlines of packages to stakeholders.
• Coordinate daily meetings, when necessary, with stakeholders to ensure a scrum approach is being followed for escalated risk assessments.
• Coordinate with engineering stakeholders to explain processes and procedures to deliver artifacts are followed.

Qualifications

• US Citizen with Current U.S. Government Secret clearance, contract requirement
• BS degree and 4-8 years of prior relevant experience, additional experience and/or cybersecurity certifications may be considered in lieu of degree.   
• DoD 8570 IAM Level 1 or IAT Level 2 certification, or able to obtain within 6 months of hire.
• Excellent written and verbal communication skills and the ability to effectively interact and work with internal team members, vendors and clients.
• Strong critical thinking skills to evaluate insights from metrics and trend-analysis.
• Ability to organize and prioritize numerous customer requests independently in a fast-paced deadline driven environment and take ownership of responsibilities.
• Proficiency in Microsoft tools such as Outlook, Excel etc. and project management tools such as JIRA
• Ability to organize and prioritize numerous customer requests in a fast-paced deadline driven environment.

Preferred Qualifications

• Extensive knowledge of the MHS GENESIS system and capabilities
• Experience with DOD/DHA Cyber security policies and IA standard security principles
• Extensive knowledge of DHMSM risk Coordination and processes thru implementation practices.
• Extensive knowledge of DHMSM or DHA processes and procedures tied to additional Risk being added to an environment.
• Knowledge of networks, cyber defense toolsets and processes. Strong understanding of related technologies and significant knowledge of particular networking technologies, operating systems, and security tools, tactics, techniques, and procedures.
• Experience with DoD Information Assurance Vulnerability Management (IAVM) Program
• Proficiency in ACAS/NESSUS, SCAP, HBSS
• eMASS and Continuous Monitoring Risk Scoring System (CMRS) experience
• Experience implementing the DHA RMF Process and NIST 800-53 technical controls, as well as achieving and maintaining an Authorization to Operate (ATO)
• Strong operational knowledge of the cybersecurity tool landscape and have a track record of building insights from metrics reporting and managing security metrics data and dashboards.
• Strong knowledge of tools to capture security metrics and build visually engaging security dashboards.
• Strong communication skills in presenting cybersecurity metrics and trends to senior leadership and external stakeholders

Original Posting:

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.