Cybersecurity Risk Manager

Job description

Amentum is seeking a dynamic and innovative **Cybersecurity Risk Manager** to provide research, planning, analysis and integration support to the U.S. Indo-Pacific Command (USINDOPACOM) operations, activities, and investments (OAIs) at Ford Island, Hawaii.

Amentum is seeking a dynamic and innovative Cybersecurity Risk Manager to play a key role within the USINDOPACOM J7 (Training and Exercises Directorate) information security team.

The Cybersecurity Risk Manager will be tasked to detect, evaluate, and prioritize risks to organizational data and cyber assets.

The Cybersecurity Risk Manager will work with the various Information Technology (IT) teams to mature the current risk management programs, such as risk assessment execution, control testing and monitoring, and procedure documentation.

The Cybersecurity Risk Manager will also provide cybersecurity advice to mission partners to effectively manage risk to operations and will validate that security and technology controls are implemented to support operational and security requirements.

Candidates should have effective task management skills and the ability to communicate effectively.

**Essential Responsibilities:**

+ Develop and implement cybersecurity policies.
+ Partner with Business Units to identify, analyze and mitigate security risk, internal and third party, associated with activities executed throughout the enterprise.
+ Conduct ongoing risk evaluations for compliance and cybersecurity operations.
+ Identify risk that is outside of acceptable risk thresholds and escalate appropriately.
+ Develop risk mitigation methods and capabilities.
+ Ensure vulnerabilities are identified, understood, remediated, and communicated.
+ Monitor security controls to ensure continued effectiveness of controls.
+ Develop contingency plans and recovery processes.
+ Ability to translate technical details into non-technical verbiage when discussing risk with leadership.
+ Create needed documentation for organizational and compliance purposes.
+ Provide security consultation for new and ongoing enterprise initiatives.
+ Educate and build awareness of security requirements across the organization.
+ Publish executive-level security reporting across governance, risk, and compliance activities.

**Knowledge, Skills, and Abilities:**

+ Vulnerability management experience
+ Must be customer focused and possess the ability to identify issues, analyze, interpret data, and develop solutions to a variety of moderately complex technical problems
+ Experience with documenting requirements, security controls, and POA&M creation

**Required Qualifications:**

+ BS/BA in Computer Science, Information Systems, or a technical field preferred and 8 years of experience in information technology or cybersecurity; or an equivalent combination of experience and education from which comparable knowledge and skills may be acquired
+ Security + Certification
+ Experience with DoD Risk Management Framework (certification and accreditation)
+ Experience with Microsoft cloud environments
+ Experience with risk management in SaaS, PaaS, IaaS, and other cloud environments
+ Experience with the NIST frameworks and publications
+ Vulnerability management experience
+ Must have an Active Top Secret/SCI US Government Clearance.

Note: US Citizenship is required to obtain a Top-Secret Clearance.

**Preferred Qualifications:**

+ Certified Information Systems Security Professional (CISSP)
+ Certified in Risk and Information Systems Control (CRISC)

**Compensation & Benefits:**

HIRING SALARY RANGE: $150K - $165K (Salary to be determined by the education, experience, knowledge, skills, and abilities of the applicant internal equity, and alignment with market data.)

This position includes a competitive benefits package.

For more detailed information on our Benefits and what it is like to work for Amentum: please visit our careers site: www.amentumcareers.com

Amentum is proud to be an Equal Opportunity Employer.

Our hiring practices provide equal opportunity for employment without regard to race, sex, sexual orientation, pregnancy (including pregnancy, childbirth, breastfeeding, or medical conditions related to pregnancy, childbirth, or breastfeeding), age, ancestry, United States military or veteran status, color, religion, creed, marital or domestic partner status, medical condition, genetic information, national origin, citizenship status, low-income status, or mental or physical disability so long as the essential functions of the job can be performed with or without reasonable accommodation, or any other protected category under federal, state, or local law.

Learn more about your rights under Federal laws and supplemental language at Labor Laws Posters (https://postings.govdocs.com/#/vxSkbztPuAwwxfs) .

Required Skill Profession

Other General