Apply on Employer Site

Zermount, Inc. · 6 days ago

Zero Trust Process Re-Engineering SME

Virginia, United States

Full-time

Hybrid

Senior Level, Lead/Staff

10+ years exp

Zermount, Inc. is seeking a Zero Trust Process Re-Engineer SME to provide subject matter expertise in analyzing various federal requirements and developing agency-level policies and processes. The role involves collaborating with stakeholders to document and implement effective business processes in support of the Agency's Zero Trust initiative.

Cyber SecurityInformation TechnologyNetwork Security

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Assist with updates to the clients ZT roadmap and implementation plan

Review and interpret Executive Orders (EOs), OMB memos, Public Law (PL), DHS directives such as Binding Operational Directives (BODs), DHS Undersecretary Memos, NIST SPs, and recommended best practices and provide recommendations and potential solutions to meet requirements

Conduct gap analyses in existing Agency policy documentation (policies, processes, SOPs, standards, guidelines, white papers, and training) compliance with Cybersecurity mandates, requirements, and best practices; develop report and roadmap to meet compliance requirements and obtain client approval to implement appropriate policy documentation

Provide guidance and insights necessary for meeting requirements established through the OMB M's or EO's

Assist in the development of the enterprise ZT common Control Catalogue (CCC)

Assist leadership with ZT initiative to include planning, scheduling, guidance, solutions, reporting, performance metrics, and recommendations

Assist and support for all internal and external ZT data calls, requests, audits, compliance, and updates - ensuring accurate information and statuses are obtained and provided

Manage the policy inquiry/intake mailbox or policy help desk

Support the client in interpreting and implementing IT public policy initiatives. Typical support includes assistance with long-term strategy development, tracking legislation, and making policy recommendations. Meet with customers often daily to relay progress and establish priorities

Track and resolve cybersecurity policy related questions

Conduct internal and external policy research to support help desk policy inquiries using various sources and approved documentation

Review, interpret, edit, create, and update cybersecurity policy related documents utilizing the Zermount Agile approach

Create new cybersecurity policy documents as needed to address identified gaps or changes emanating from EO's, OMB M's, NIST, DHS, or TSA mandates

Modify/update existing IAD cybersecurity-related policy standard operating procedures (SOPs), technical standards (TSs), management directives (MDs), CCSH, TSA Forms, Open-Source Software (OSS) guide, SSI Program and Privacy Office related document reviews, and related Notification Memos capturing summary of changes

Qualification

IT cybersecurity experiencePolicy Analyst experienceNIST Guidelines knowledgeZero Trust architectureCybersecurity complianceTechnical analysis skillsRisk Management principlesCybersecurity policy documentationMicrosoft Suite proficiencyClient relationship managementAgile approachEffective communicationTeam collaboration

Required

A minimum of 10 years of IT cybersecurity experience, including direct support for the US Government and 5 years serving as a Policy Analyst for an enterprise IT system. 13 years if the candidate does not have a bachelor's degree

Knowledge of NIST Guidelines and FISMA Cybersecurity compliance requirements

Technical knowledge of complex enterprise IT systems

Knowledge and skill with Microsoft Suite such as Word, Excel, PowerPoint, Outlook and SharePoint management

Experience communicating effectively, both oral and written, with technical, non-technical, and executive-level customers

Knowledge of Zero Trust architecture, principles, and methodologies, EO 14028, OMB M 22-09, Federal, DoD, and CISA Zero Trust Architecture, Maturity Model, and Technical Reference Architectures

Experience with in-depth analysis of Cybersecurity, IT, and Risk Management principles, requirements, and principles

Ability to work independently and as part of a team

Ability to navigate complex and politically sensitive client environments with professionalism, patience, and tact

Demonstrated ability to effectively engage and manage relationships with highly political clients while maintaining a professional demeanor, exhibiting patience, and navigating sensitive situations with tact

Minimum of a Bachelor of Science (or higher) in one of the following: computer engineering, computer science, IT, cyber security, or a related field

A minimum of at least one of the following certifications is required: Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certificate of Cloud Security Knowledge (CCSK), Certified Chief Information Security Officer (CCISO), Similar certification

Minimum of an active Secret Clearance

Preferred

Bachelor preferable but professional experience is Permitted

Benefits

401(k) retirement account

Education assistance (e.g., training, certifications, degree) - $10,000 annually

Medical, dental, and vision plans with significant employer contributions

Employer paid basic group life insurance, short- and long-term disability plans

Personal Time Off (PTO) - 15 paid holidays

Federal Holidays - 11 days

Company

Zermount, Inc.

Zermount, Inc., a Certified SDVOSB, was founded by Terry Butler a proven leader and Cybersecurity/Information Technology (IT) professional with over15 years’ experience supporting the Federal Government and commercial clients.

Founded in 2013

Arlington, Virginia, USA

51-200 employees

https://www.zermount.com

Funding

Current Stage

Growth Stage

Leadership Team

Terry Butler

CEO

Company data provided by crunchbase