Cyber Governance NSS Team Lead

Oak Ridge National Laboratory - Oak Ridge, TN

posted 2 months ago

Full-time - Mid Level
Oak Ridge, TN
Professional, Scientific, and Technical Services

About the position

We are hiring a Cyber Governance Team Lead to mature and manage governance, risk, and compliance program initiatives for National Security Systems (NSS) and related platforms! In this role, you'll collaborate with various groups across the Oak Ridge National Laboratory complex and manage a team of analysts and Information Systems Security Officers in leading security initiatives for NSS, ensuring appropriate risk identification, directing policy for data and network cyber protection, and enabling mission and business objectives. The Cyber Governance NSS Team Lead will develop a coordinated approach to policy documents, security control assessments, and risk mitigation strategies for NSS, enabling metrics and reporting. Reporting to the Cyber Governance Group Leader, the selected candidate will interact with all levels of the organization. This position resides in the Cybersecurity division in the Information Technology Services Directorate at Oak Ridge National Laboratory (ORNL). The NSS Team Lead in the Cybersecurity Division's Governance Group is responsible for the development, review, and updating of cybersecurity policies and procedures, ensuring compliance with federal and industry standards and regulations. This position will lead, liaise, and assist with audits and risk assessments, as well as participate in incident response activities, documenting findings and corrective actions. The Team Lead will maintain accurate records of cybersecurity activities, task tracking, and all efforts in support of program enhancement, and prepare reports for senior management. Additionally, they help conduct security assessments and ensure data protection measures are effective.

Responsibilities

  • Lead ORNL's Cyber Governance Team for NSS across all functions and disciplines.
  • Identify, review, and provide analysis and recommendations to meet NSS requirements, translating them into policies, procedures, and control structures.
  • Provide guidance on NSS policies and controls to support appropriate risk levels, facilitate risk tolerance discussions, and recommend controls based on industry standards.
  • Lead initiatives to mature Governance, Risk, Compliance (GRC) platform capabilities for NSS.
  • Coordinate NSS risk management efforts, including risk assessment processes, mitigation strategies, and staff training.
  • Participate in internal/external compliance audits and assessments for NSS.
  • Develop and present risk and compliance metrics, performance measures, and remediation tracking for NSS compliance programs.
  • Represent ORNL in risk and compliance initiatives related to NSS.
  • Identify and implement process improvements for NSS operations.
  • Work with other teams as appropriate to automate and integrate NSS applications and processes.

Requirements

  • A BS in cybersecurity, information technology, computer science, computer engineering, science, engineering, business, or a related field of study and eight (8) to twelve (12) years of aligned experience in cybersecurity with a focus on classified systems is required for consideration.
  • At least five (5) years' proven leadership experience.
  • Experience writing and implementing Cybersecurity Plans for NSS at enterprise and system levels.
  • Knowledge of and experience performing security control assessments for NSS.
  • Strong analytical and problem-solving skills to understand Cyber risk and exposure for NSS.
  • Demonstrated experience implementing compliance frameworks (NIST, etc.) in NSS environments.
  • Project management skills; ability to lead program implementations and proof of value executions.
  • Excellent interpersonal, verbal, written, and presentation skills.
  • Thorough understanding of industry standards and regulations applicable to NSS.
  • Experience integrating risk, compliance, and governance groups within an organization.
  • Ability to work independently, meet time limits, and operate with high ethical standards.

Nice-to-haves

  • A MS degree in cybersecurity, information technology, computer science, computer engineering, science, engineering, business, or a related field of study and seven (7) to ten (10) years of aligned experience in cybersecurity with a focus on classified systems.
  • Current active DOE Q clearance.
  • 10+ years' demonstrated experience in information security, with an emphasis on NSS.
  • Experience leading teams both administratively and technically in NSS environments.
  • Cybersecurity experience within federal government programs, particularly with NSS.
  • Track record of managing and prioritizing tasks in high-pressure NSS environments.
  • Experience gaining Authority to Operate (ATO) for government systems, especially NSS.
  • Cybersecurity certifications (CISSP, CISM, CRISC).
  • Familiarity with vulnerability management tools and processes for NSS.
  • Knowledge of incident response procedures and tools used in NSS environments.

Benefits

  • 401(k)
  • Dental insurance
  • Employee assistance program
  • Employee discount
  • Flexible schedule
  • Flexible spending account
  • Health insurance
  • Prescription Drug Plan
  • Vision Plan
  • Contributory Pension Plan
  • Life Insurance
  • Disability Benefits
  • Generous Vacation and Holidays
  • Parental Leave
  • Legal Insurance with Identity Theft Protection
  • Wellness Programs
  • Educational Assistance
  • Relocation Assistance

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service