Cyber Security (SME)

Dine-Source LLC is SBA 8(a) SDB certified a company dedicated to solving IT business problems for three major markets: Federal Commercial and Tribal. DDC-ITS is 100% owned by the Navajo Nation and has been in business since 2011. Our focus is on the ever-changing world of Cyber Security with respect to staffing for building and securing networks and enterprise applications. Another focus is to provide businesses with the Hardware & Software to meet their needs. We both sell and implement complete business solutions.

Duties & responsibilities:

• Apply expert-level knowledge of the Risk Management Framework (RMF) including NIST SP 800-53 Revisions 4 and 5 to support security authorization processes and prepare comprehensive ATO submission packages.
• Coordinate with DISA System Integrators the Program Office and Database Administrators to identify analyze and remediate system vulnerabilities.
• Perform continuous monitoring of security controls in alignment with the RMF strategy ensuring ongoing compliance and risk awareness.
• Collaborate with Security Control Assessor (SCA) and Security Control Assessment Representative (SCAR) teams to plan and execute security testing for system releases and authorization activities.
• Support vulnerability management efforts including implementation and tracking of STIGs ACAS scans Fortify static code analysis and SIEM-based alerting and monitoring.
• Review and analyze system logs and alerts generated by the SIEM to detect potential threats and assess system health.
• Assess newly identified vulnerabilities initiate appropriate tickets and manage resolution through the Configuration Management and cyber release processes.
• Work closely with the Compliance Team to support annual FIAR audit activities (e.g. SOC 1 SOC 2) track Audit findings via POA&Ms through resolution.
• Participate in annual cybersecurity evaluations and red/blue team assessments providing analysis and remediation planning for network application and database architecture findings.
• Contribute to AGILE Release Management Integrated Product Teams (IPTs) ensuring cybersecurity requirements are incorporated throughout system development and change processes.
• Develop review and maintain cybersecurity policies program documentation and PMO guidance to support governance and compliance objectives.
• Lead remediation efforts for vulnerabilities documented in POA&Ms or planned cyber releases with emphasis on addressing high-risk findings identified by the SCA within defined timelines.
• Provide program leadership with regular updates on the status of open POA&M items including monthly reporting or as requested.
• Support annual FISMA assessments incident response activities and contingency plan testing to maintain security posture and operational readiness.
• Maintain working knowledge of applicable cybersecurity standards policies and regulations including those from NIST DoD and other federal entities.

Bachelors degree and a minimum of 8 years of relevant cybersecurity experience.

Risk Management Experience a plus.

Must have a CYSA certification OR CAP CASPCECISMCISSPGSLC CCISOHCISPP

Secret Security Clearance Required

This contractor and subcontractor shall abide by the requirements of 41 CFR 601.4(a) 60300.5(a) and 60741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on their race color religion sex sexual orientation gender identity national origin or for inquiring about discussing or disclosing information about compensation. Moreover these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race color religion sex sexual orientation gender identity national origin disability or veteran status.

Diné Development Corporation (DDC) is a Navajo Nation owned family of companies that delivers IT professional and environmental solutions to advance the missions of federal state and tribal government agencies. As thought leaders and innovators our team of specialists build client-centric solutions that solve critical challenges faced by defense civilian and healthcare organizations. Employing a mission-focused approach we deliver value that not only enhances current operations but also drives future change. Closely aligned with this approach is our commitment to advancing the Navajo Nation and its People. Through economic development and community empowerment we elevate the Navajo Nation to provide lasting impact and sustainable growth for future generations. DDCs ability to unite legacy-inspired technologies industry best practices and proven methodologies has contributed to our success for twenty years.

This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a) 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on their race color religion sex sexual orientation gender identity national origin or for inquiring about discussing or disclosing information about compensation or any other basis prohibited by law. We participate in E-Verify.

#LinkedIn-DNP

#LI-DNP

#LI-DNP