CyberSecurity Lead

  • ERPi
  • Washington, DC, USA
  • Apr 09, 2020
Full time Information Technology

Job Description

ERPi is currently seeking a full-time Cybersecurity Lead to provide onsite support at our Washington, DC site.

The Department of Veterans Affairs (VA) is committed to providing seamless care for Veterans, including access to a complete electronic health record (EHR) and shared, transparent care pathways with the Department of Defense (DoD) and community providers.  In order to ensure seamless care for Veterans, VA will move toward a single common system by adopting the electronic health record (EHR) system that is being deployed by DoD, which at its core consists of Cerner Millennium.   Currently the VA is undertaking an enterprise-wide Electronic Health Record Modernization (EHRM) effort through the procurement of the Cerner commercial electronic health record software and related support services. This modernization of VA’s health information management systems will result in a common, single, lifetime health record that both DoD and VA can access, with anticipated improvements in patient care and safety.

 

The Cyber Security Lead will be a member of the VA’s EHRM Program where they will lead a team of dynamic cybersecurity professionals while overseeing the Risk Management Framework/ Cybersecurity Framework (RMF/CSF) to ensure the positive security of health information systems and data.  The individual must be able to navigate the complexities of the political environments for integrating multi-agency systems of systems with regards to interconnections between agencies and authorization boundaries, agency specific policies and processes, joint agency incident management and 3rd party incident response, joint configuration management, joint monitoring, interagency cyber procurement activities, etc. Should be able to analyze the security impact of introducing new solutions, data feeds, existing legacy systems, circuits, medical devices, etc., between agency security boundaries.  The Cyber Security Lead will participate in meetings and collaborate in working sessions with the client, between agencies and 3rd party vendors, internal agency and internal program cohorts.

Responsibilities

  • Bachelor’s degree in Information Systems, Computer Science, Engineering, Business, or related field.
  • Minimum of 5 years of professional experience.  Minimum of 13 years of professional experience can be substituted in lieu of degree.
  • Experience writing memorandums of understanding (MOUs), interconnection security agreements (ISAs), executive decision memorandums (EDMs), executive summaries, high-level strategies, program-level briefings for management/executives
  • Experience with applying industry best practices to establish new program cyber capabilities and improve in areas as needed
  • Experience applying RMF throughout the software development life cycle (SDLC) in areas of assessments, authorizations, auditing, continuous monitoring, compiling and obtaining authorization packages and approval to connect (ATC) packages, etc.

 

       Desired Skills and Experience:

  • Experience with VA