Cybersecurity Policy SME

Job Type Full-time Description

    

This program is for the Ministry of Defense (MoD) to develop Cyber Defense policies, procedures and force structure to meet requirements stated in the Integrated National Cyber Defense Strategy. The qualified candidate will conduct on-site collaboration with the Ministry of Defense (MoD) and related agencies for the purposes of collecting data and information to analyze and determine the requirements of the MoD in meeting NATO requirements in the areas of tactical operations and information security. Will assess and validate current needs in regard to cyber infrastructure, cyber defense and Information Assurance in support of the requirements. The qualified candidate will also provide advisory support from the ground up in the development of policy. 

The Cybersecurity Policy SME will assess and validate current needs in regard to cyber defense and information assurance (to include networking security, cyber infrastructure, and cyber defense). The contractor shall collaborate, review, analyze, and develop required documents, reports, processes, policies, doctrine, directives, regulations and training plans, and implementation instructions. Conduct on-site collaboration with the Ministry of Defense (MoD) and related agencies for the purposes of collecting data and information to analyze and determine the requirements of the MoD in meeting NATO cybersecurity regulations in the areas of tactical operations and information security. The contractor is responsible for the collection and documentation of all information necessary to meet the requirements. 

Requirements

 Highlights of Responsibilities:

• Completion of an in-depth assessment and validation of current needs in regard to cyber defense and information assurance (existing networks, risks, and vulnerabilities)
• Review of existing MoD cybersecurity and cyber defense policies and procedures 
• Development of comprehensive cybersecurity policies and cyber defense force structure plans and policies
• Development and validation of technical, training and sustainment plans in support of future integrated strategy phases
• Development of information technology system policies and procedures to address critical risk and vulnerabilities
• Development of operational and technical requirements for a system(s) solution in support of Initial and Final Operational Capability (IOC & FOC)
• Provide liaison support through understanding and translation of Partnership Programs into MoD policy requirements 
• Transfer of knowledge, best practices, skills and techniques through on-the-ground presence of the advisory team 
• Provide left seat / right seat training to the MoD to assist with understanding cybersecurity, cyber defense, and information assurance related functions
• Develop a time-phased training plan based on collaboration, assessment and validation of customer requirements to ensure future training requirements are addressed
• Provide technical services in support of this effort include on-site collaboration, cyber defense policy analysis and development, capability and technical requirements determination for solutions addressing and mitigating threats in cyber-security, networking security, cyber infrastructure, cyber defense, and transfer of knowledge
• Consolidate manuals, policies, and procedures (as applicable) to facilitate timely and efficient transfer to the Host Nation prior to the end of this effort
• Conduct closeout of the technical requirements as per the Project Schedule for this effort

Minimum Requirements 

• Active DoD Secret Clearance Required 
• Management experience, understanding and supporting application strategic approach and implementation, cyber-capacity (equipping and technical solutions), application of industry best practices, understanding of threats, prevention and mitigation policy
• Strong background in policy and procedures analysis and development, implementation of industry and ISO standards in the field of cybersecurity/information assurance. 
• Technical expertise in development of cyber capabilities to include technical solution development and fielding, application of best practices, understanding threats and prevention/mitigation of cyber threats 
• Technical expertise in assessing and validating needs in regard to cyber defense and information assurance (to include networking security, cyber infrastructure and cyber defense).