About Zen:
Own your opportunity to work with a client-focused, growing, agile small business. Make an impact by advancing our government organizations charged with keeping our country safe, prosperous, and secure. Zen Strategics LLC is a cleared, niche consulting firm, offering innovative Cybersecurity, Cloud/DevSecOps, Information Data Management, and Modernization solutions. We are a leading organization committed to delivering innovative solutions and ensuring the highest standards of security for our customers' infrastructure assets. We are dedicated to staying ahead of evolving cyber threats and protecting our clients' data, leveraging cutting-edge technologies (to include AI/ML) and proactive security measures.
Position Description:
We are supporting the National Telecommunications and Information Administration (NTIA) under the ISCOM Division to deliver mission-critical IT modernization and cybersecurity services. This effort focuses on enhancing the security, reliability, and efficiency of NTIA’s infrastructure, driving forward their mission of advancing broadband access, data-driven policymaking, and secure communications through modern digital tools and compliance with federal standards.
We are seeking a Cybersecurity SME to support Information Assurance and cyber operations under the NTIA ISCOM contract. The Cybersecurity SME will be responsible for providing enterprise-wide cybersecurity support, managing system/security hardening, and ensuring compliance with NIST/FISMA regulations. This individual will also provide guidance to other team members, ensuring system availability, data integrity, and compliance with NTIA requirements.
Key Responsibilities:
Daily responsibilities include, but are not limited to, the following scope areas:
Information Assurance (IA) engineering
- Develop, review, and update information assurance policies, procedures, and guidelines.
- Perform risk and vulnerability assessments; Recommend mitigation strategies.
- Ensure compliance with federal cybersecurity regulations like NIST and FISMA.
Cyber Security Architecture
- Architect and implement secure network systems and cybersecurity solutions.
- Liaise with stakeholders to understand security needs and requirements.
- Stay abreast of emerging security threats and technologies.
Security Assessments, Penetration Testing and Monitoring
- Perform regular security assessments and penetration testing.
- Develop security incident response plans and conduct security training sessions.
- Monitor compliance with security standards and regulations.
Incident Response and Threat Hunting
- Lead the response to cybersecurity incidents, coordinating with IT and security teams.
- Develop and refine incident response protocols and procedures
- Conduct proactive threat hunting to detect and mitigate potential threats.
End Point Administration
- Manage and secure endpoints, including configuration, patching, and updates.
- Develop policies for mobile device management and endpoint security.
- Collaborate with cybersecurity teams to align endpoint security with overall security posture.
Security Operations Center Analysis and Incident Triage
- Analyze security alerts and logs for signs of malicious activity.
- Prioritize and escalate incidents based on severity and impact.
- Collaborate with other cybersecurity teams for a coordinated response.
QUALIFICATIONS AND CERTIFICATIONS:
- Minimum of 8 years of professional experience in systems administration
- CISSP preferred or other equivalent certification
EDUCATION:
- Bachelor’s degree (BS/BA) in Information Systems, Computer Science, or a related discipline.
U.S. Citizenship required
Active Secret or Top-Secret clearance
Salary at Zen Strategics is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements.
Equal Opportunity Employer/Veterans/Disabled
