Sorry, this listing is no longer accepting applications. Don’t worry, we have more awesome opportunities and internships for you.

Cybersecurity Training Specialist

C

Cybervance

Cybersecurity Training Specialist

Baltimore, MD
Full Time
Paid
Similar Jobs
  • Responsibilities

    []

    CYBERSECURITY TRAINING SPECIALIST BALTIMORE, MD | FULL-TIME |

    Cybervance is an equal opportunity employer that designs, develops, and manages the successful execution of training programs for government and private sector organizations. Cybervance believes in creating innovative solutions to deliver measured results. We are looking for a Cybersecurity Training Specialist to support an enterprise cybersecurity and privacy program. Candidates must live within a 50-mile radius of Baltimore.

    RESPONSIBILITIES

    Responsibilities include, but are not limited to: • Webinars and in-class instruction of courses in the Cybersecurity, Computer Networking & Privacy • Teach in- Teach in-depth and hands-on technical courses in cybersecurity topics such as the Risk Management Framework (RMF), NIST 800-53, Information System Security Officer (ISSO) duties, CISSP topics, Authorization to Operate (ATO) in government agencies, cybersecurity and privacy protection policies, systems administration and networking. • Collaborates across technical team identifying training opportunities. • Works with subject matter experts translating application tool capabilities into end user training. • Develops training materials including courses, user guides, checklists, presentations, videos. • Delivers training to various application tool user groups and to internal operational team. • Monitors application tool user community for training needs. • Evaluates training, continually improving performance. • Collaborates with instructional designer and SMEs to support training and communications development. • Review and update existing information security policy, standards, and procedures based on federal and departmental regulations. • Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials). • Ensure that plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc. • Ensure successful implementation and functionality of security requirements and appropriate information technology (IT) policies and procedures that are consistent with the organization's mission and goals. • Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, and compliance monitoring occurs). QUALIFICATIONS • Must be a US citizen and be able to receive a Moderate-Risk Public Trust Certification. • Bachelor's degree with professional experience in training. • Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy. • Knowledge of capabilities and applications of network equipment including routers, switches, bridges, servers, transmission media, and related hardware. • Knowledge of cyber defense and vulnerability assessment tools and their capabilities. • Knowledge of Risk Management Framework (RMF) requirements. • Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption). • Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities. • Knowledge of network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML). • Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query • Demonstrated excellence in presentation skills from team meetings to large classroom settings. • Current government cybersecurity and privacy 'real world' teaching experience. • A plus if you work as an Information System Security Officer, ability to translate technical concepts, practices, and policies into impactful, simple to understand learning topics. • Shows a proactive and creative approach to solving problems and when developing training and communication materials. • Demonstrated excellence in written communications--clear, effective, and grammatically correct. • Must be detail-oriented and dedicated to upholding established governance and quality standards. • Proficient in the use of a GRC tool (such as RSA Archer), Microsoft Office Suite, SharePoint, Slack, Confluence, Adobe, Jira, Excel, and virtual meeting applications. • Candidates must live within a 50-mile radius of Baltimore. KNOWLEDGE & EXPERIENCE • Experience successfully implementing projects within a U.S. federal government agency or similarly large organization with a diverse and matrixed organization. • Experience in cybersecurity and privacy protection within an enterprise. • Experience challenging established practices and advocating for best practice continuous improvement. • Knowledge of the learning apprentice model is a bonus. • Experience reviewing and drafting Privacy Impact Assessments (PIAs). • Experience in assessing security controls based on cybersecurity principles and tenets. (e.g., CIS CSC, NIST SP 800-53, Cybersecurity Framework, etc.). • Skill in discerning the protection needs (i.e., security controls) of information systems and networks. • Ability to interpret and apply laws, regulations, policies, and guidance relevant to organization cyber objectives. • Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).