Director of Cyber Risk & Compliance

Information Technology and Facilities

The IT group is strategically aligned to provide effective IT/Facilities support to the Perspecta business. The team is responsible for executing functions to ensure day-to-day IT support, to ensure technology standards are established and followed across the organization, to manage assets and the confidentiality, integrity, security and availability of IT assets, information, data and services. Facilities supports environmental, health and safety operations to ensure safe, comfortable and productive work environments for Perspecta employees.

Overview:

The Director of Cyber Risk & Compliance (CR&C) reports directly to the Corporate Chief Information Security Officer (CISO) within the Office of the Chief Information Officer (CIO). The Director CR&C will be responsible for synergizing compliance and processes for a newly merged company with multiple legacy environments and continuously assessing and managing cybersecurity risk.

Responsibilities:

The Director CR&C will oversees the creation and revision of corporate information security policies and standards as well as the adherence to the Acceptable Use Standard that all employees and subcontractors must abide by.

The Director will apply oversight, direction, and contribution to the multiple security framework assessments that Perspecta must be compliant with and continuously monitor, to include:

• NIST SP 800-171,Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations (DFARS 252.204-7012)
• Framework for Improving Critical Infrastructure Cybersecurity (NIST Cybersecurity Framework (CSF))
• Cybersecurity Maturity Model Certification (CMMC)

The Director CR&C will lead a team to create and provide annual enterprise Security Awareness Training, privileged and role-based training as applicable, as well as provide ongoing content, security updates and tips to the team’s cybersecurity website.

The Director and team will work with cross-functional teams within CISO and OCIO to continuously assess and maintain an appropriate cybersecurity risk posture; to including conducting risk assessments, presenting written and oral reports on assessments, and advising senior leadership on risk tolerance.

The Director will be responsible for providing sound advice and input for strategic changes within the OCIO and CISO organizations.

Requires BA/BS with 16 to 18 years, MS with 14+ years, or PhD with 10+ years, with at least six plus years as a manager. Incumbent will have a specialized knowledge in one or more fields of disciplines and general knowledge in a number of others.

Senior Managers and Directors are encouraged to apply.

Other requirements:

• Secret level clearance
• 10-15+ years in Cybersecurity with significant experience supporting federal government customers or contractors
• Experience with NIST cybersecurity controls and frameworks
• Experience creating and reviewing corporate-wide policies
• CISSP

What matters to our nation, is what matters to us. At Perspecta, everything we do, from conducting innovative research to cultivating strong relationships, supports one imperative: ensuring that your work succeeds. Our company was formed to bring a broad array of capabilities to all parts of the public sector—from investigative services and IT strategy to systems work and next-generation engineering.

Our promise is simple: never stop solving our nation’s most complex challenges. And with a workforce of approximately 14,000, more than 48 percent of which is cleared, we have been trusted to just that, as a partner of choice across the entire sector.

Perspecta is an AA/EEO Employer - Minorities/Women/Veterans/Disabled and other protected categories.