Salary $110,000 - $120,000 a year job type full-time
Full job description
Goldenwolf is seeking a dedicated and proactive individual to join and manage an expanding system security and planning support team for a rapidly growing 8(a), service-disabled veteran owned small business (sdvosb), and woman-owned (wosb) small business government contracting firm specializing in facilities management.
Goldenwolf is a trusted advisor and facilities management support provider for military medical facilities and other federal clientsOur team members are highly skilled and experienced in medical facilities management and bring deep expertise and cultural understanding to our clients’ unique challenges working not only in medical facilities but also within the department of defense political and fiscal environmentOur history demonstrates a broad and deep range of engineering, technical, and strategic servicesGoldenwolf’s goal is to develop innovative and executable solutions in all facets of facilities management.
The system security mananger will serve as part of a program management team providing consultation and advice to government and contractor personnel tasked to support dha facilities life cycle managementProvide worldwide support for capital strategy management (csm) within the dha facilities enterprise (fe) medical military construction (milcon), major repair, and other programsThe technical support services will provide capabilities, support services and expertise in health facility planning, project management, requirements identification, design development, construction management, initial outfitting and transition (io&t) management, total building commissioning (tbcx), operations and maintenance, post-occupancy evaluations, and the application of u.sBuilding codes and standards, dod and dha criteria and other regulatory requirements and standards as it relates to the cybersecurity of low voltage systems (lvs), facility related control systems (frcs) and information management/ information technology (im/it)Provide technical support of the frcs cybersecurity project management office (pmo) during the planning, design, construction, initial outfitting & transition (io&t) and commissioning phases of dha fe military construction (milcon) and operations and maintenance (o&m) repair projectsProvide design submittal technical reviews and comments, represent dha fe during all project phases with the agent to enforce dha criteria and standards, assist in the planning of rpie frcs for dha fe projectsVerify completeness and accuracy of design submittals; contribute to technical documents to enhance accuracy of project criteria and standards; participate in post occupancy evaluations (poe) to provide and recommend updates to rpie frcs cybersecurity criteria and planning standardsIncreased capacity to coordinate with internal and external stakeholders to ensure rpie frcs cybersecurity standards and criteria remain relevantSupport cybersecurity planning for military facilities and provide training and development to new iot it planners in support of the portfolio of projects supported by dha fe.
Roles and responsibilities:
Technical support services and capabilities to support real property installed equipment (rpie) lvs, frcs, and im/it planning and program management worldwide in support of dha fe projects include but are not limited to:
Provide cybersecurity/isse services and technical support, in the role of information system security manager (issm)Tasks related to issm support include, but are not limited to:
Maintain communication with government lead in order to ensure the needs of the mission are being meetReceive guidance or direction from government lead when questions/issues arise.
Develop and maintain an organizational or system-level cybersecurity program that includes cybersecurity architecture, requirements, objectives and policies, cybersecurity personnel, and cybersecurity processes and procedures.
Support the program establish frcs vendor interoperability testing with the medical community of internet (med coi) enclave, to type authorize dha frcs, and develop an dha frcs approved products list (apl).
Ensure that ios and stewards associated with dod information received, processed, stored, displayed, or transmitted on each dod is and pit system are identified in order to establish accountability, access approvals, and special handling requirements.
Support the effort to update and complete an inventory and risk assessment of all frcs across the dha medical treatment facilities (mtfs).
Maintain a repository for all organizational or system-level cybersecurity-related documentation.
Develop frcs rmf templates for use by dha facilities enterprise project teams to support risk mitigation, assessment compliance, and rmf authorization.
Establish policy for frcs within dha fe milcon projects to advance the cybersecurity requirements within dha milcon projects.
Collaborate with the frcs designated sca/scar to insure frcs compliance with dha rmf requirements and to socialize frcs pmo policy
Monitor compliance with cybersecurity policy, as appropriate, and review the results of such monitoring.
Ensure that cybersecurity inspections, tests, and reviews are synchronized and coordinated with affected parties and organizations.
Ensure implementation of is security measures and procedures, including reporting incidents to the appropriate reporting chains and coordinating system-level responses to unauthorized disclosures in accordance with references for classified information or references for cui, respectively.
Act as the primary cybersecurity technical advisor to the security control assessor (sca) or his representative (scar) for dod frcs systems under their purview.
Ensure that cybersecurity-related events or configuration changes that may impact dod frcs systems authorization or security posture are formally reported to the sca/scar and other affected parties, such as ios and stewards and aos of interconnected dod iss.
Ensure the secure configuration and approval of frcs below the system level (i.e., products and it services) in accordance with applicable guidance prior to acceptance into or connection to a dod frcs system .
Participate in project/site coordination meetings as requested by the program manager (pm) to address technical questions and to develop points of contactThis includes, as directed, coordinating with huntsville center project management, engineering and change management personnel, other huntsville center contractors supporting dha, and installation points of contact (poc), collecting data and distributing rmf artifacts to support successful completion of dha projects.
Review documentation, submittals, and status reports received from the project teams.
Technical quality assurance:
Review rpie lvs, frcs and im/it technical documents for accuracy, completeness, and consistencyTypes of technical documents include, but are not limited to, performance work statements, design documents, requests for proposal, design and construction submittals, policy, standard operating procedures, criteria, and regulations.
Coordinate reviews and comments with dha facilities enterprise project managers, dha csm planners and sme’s, usace employees, service component staff, designers, constructors, io&t contractors, and other stakeholders.
Review and provide recommendations for improvement to all project phasesExamples include, but are not limited to dha rpie lvs, frcs, and im/it recommended contract language and specification update.
Contribute to technical documents that support the implementation of standardization across dha feSuch documents include, but are not limited to, performance work statements, requests for proposal, lessons learned documents, im/it/lvs functional processes, and the dha fe frcs cybersecurity procedures.
Support the capability to prepare and conduct training for all planners, project managers, io&t managers, and facility operations (fo) on their roles and responsibilities associated with the cybersecurity of rpie lvs, frcs and im/it.
Support the capability to conduct training for dha facilities enterprise staff as required by the csm chief.
Minimum of 5 years working on military construction (milcon) projects, reviewing designs, providing technical expertise and solution development, and supporting rmf efforts associated with the project.
Minimum 5 years supporting military hospitals at various levels.
Expertise working with engineering & design teams to develop enterprise technical solutions in accordance with dod instructions and cybersecurity policy and guidance
Working understanding of routers, switches, firewalls, proxy servers, various operating systems, vpn and palo alto networks
Two or more of the following certifications: cisco certified network associate (ccna), project management professional (pmp), certified information system security professional (cissp), and sans giac global industrial cyber security professional (gicsp)
Bachelor’s degree preferred
Must be able to obtain security clearance
Prolonged periods sitting at a desk and working on a computer.
Must be able to work remotely.
Salary range: $110,000.00-$120,000.00 annually(compensation based upon experience and skill level.)
Job type: full-time (40 hours a week)
Benefits offered for full time employees:
10 federal observed holidays
Medical, dental, vision benefits
401k retirement savings
Paid time off
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual preference, gender identity or national origin.