Zero Trust (ZT) Technical Lead

Job Description

Job Description

ZERO TRUST PROJECT LEAD POSITION DESCRIPTION

General Description

Zermount Inc. is seeking a Zero Trust (ZT) Technical Project Lead with demonstrated experience in providing enterprise support services while leveraging industry-standard service management best practices. We are looking for a team lead that is able to withstand even the most complex environments for our ZT enterprise initiative. The Project Lead will lead, plan, and manage Information Technology (IT) projects as well as provide leadership and guiding technical staff. They will integrate business and technical aspects of projects that are a part of the implementation of ZT principles across all pillars of ZT (identity, device, network, application and workload and data) to assist the client in meeting the requirements set forth by EO 14028 and OMB M 22-09. The Project Lead will also assess business implications, monitor progress in meeting deadlines, standards, and customer cost targets. They will establish goals and plans that meet project objectives and have expert technical knowledge. In addition, they will direct and control activities for a client, having overall responsibility for financial management, methods, and staffing to ensure all technical requirements are met. This position also includes client reporting and interfacing with senior management to communicate a program's progress and achievements. Decision-making and domain knowledge may have a critical impact on project implementation. The Project Lead will supervise others.

Duties & Responsibilities:

The ZT Project Lead will lead the Zermount ZT Team to ensure we are designing and implementing solutions and services that secure federal networks and provide leadership required to meet the objectives of EO 14028 and other Federal requirements. Additionally, the ZT Project Lead will provide support and services to include:

• Analyze, plan, and develop scheduled project plans.
• Responsible for program Integrated Master Scheduler (IMS) updates, health, and accuracy.
• Responsible for quality management and control.
• Provide SME support and technical guidance to information system stakeholders on the implementation of ZTA requirements and participate in design reviews upon request.
• Ensure alignment of the ZTA program to organizational strategies and deliver anticipated benefits of ZT as outlined in EO 14028, the CISA ZT Maturity Model, and the NIST SP 800-207.
• Creating month status reports (progression week 1 through week 4 buildup).
• Perform risk management to include: (1) managing risk across the ZTA program as the landscape evolves; and (2) integrating ZTA into the existing TSA and DHS Cybersecurity Risk Management framework and CISA's ZT maturity model with the goal of the solution reaching the optimal state of maturity.
• Draft Program Management Report (PMR).
• Responsible for streamlining and automating enterprise-level performance reporting for all components within ZT, aligned with existing and planned reporting and analytics structures and tools, such as the Continuous Diagnostics and Mitigation (CDM) dashboards, FISMA reporting, and Information Security Continuous Monitoring (ISCM) dashboards
• Establishing and implementing training processes for all technical personnel.
• Assisting the TSA in its ultimate goal of meeting or exceeding the "managed and measurable" IG CIGIE FISMA maturity metrics as amended, for all applicable security functions for ZT. Develop, implement, and maintain enterprise-wide performance metrics and measures for the ZT initiative
• Determine and define clear deliverables, roles, and responsibilities for all resources.
• Create performance measures for all resources.
• Managing, updating and maintaining all ZTA program governance documents including but not limited to the ZTA roadmap; which articulates the programs vision, scope, and direction
• Responsible for development of all management artifacts (PMP, IMP, CP, RMP, QAP, etc.).
• Ensure program integration and operational processes and procedures.
• Establishing and maintaining relationships among all stakeholders.
• Design Dashboard/Briefings to measure program performance, schedule, etc.
• Responsible for mapping ZTA capabilities outlined throughout this PWS, existing capabilities within the department, and new capabilities the Contractor recommends be added to the Pillars of Zero Trust (currently 5 Pillars) as outlined by CISA, M-21-31, M-22-01, M-22-09, EO 14028, NIST 800-207, and any future memoranda, executive orders, and standards. The Contractor must also map new ZTA capabilities that the Government approves
• Mentor Team Leads
• Review and ensure all deliverables are submitted in accordance with the SOW and in a timely manner.
• Cross task area support as required.

Qualifications:

• A minimum of 10 years of IT cybersecurity management experience including 3 years of direct support for the US Government OR a relevant Bachelor's degree in IT, computer science, business or engineering and 10+ years of IT cybersecurity management experience including 3 years of direct support for the US Government.
• Experience communicating effectively, both oral and written, with technical, non-technical, and executive-level customers.
• Understanding and experience with Agile Principles, processes and methodologies.
• Knowledge of EO 14028, OMB M 22-09, Federal, DoD, and CISA Zero Trust Architecture, Maturity Model, and Technical Reference Architectures.
• Excellent communication, collaboration, and problem-solving skills.
• Ability to work independently and as part of a team.
• Demonstrated ability to effectively engage and manage relationships with highly political clients while maintaining a professional demeanor, exhibiting patience, and navigating sensitive situations with tact.
• Ability to navigate complex and politically sensitive client environments with professionalism, patience, and tact.

Zero Trust Specific Qualifications: System Maturity Model

• Expertise in the implementation, strategy, roadmap, and analysis with regard to TSA systems and the TSA Enterprise and meet the requirements outlined in M-21-31, M-22-09, EO 14028, and NIST SP 800-207.
• Working experience associated with implementing all of the Zero Trust requirements based off of the CISA Zero Trust Maturity Model 2.0 and any upcoming versions.
• SME level knowledge within at least one of the five Zero Trust Maturity Model pillars as defined by the CISA Maturity Model.
• Possess a deep understanding and proficiency in the principles, technologies, and best practices associated with the pillars.
• Provide strategic guidance and expertise in implementing Zero Trust within their assigned pillar, ensuring alignment with industry standards and organizational objectives.
• Deep understanding of the criteria needed to meet the Federal Governments intended, optimal, maturity level.
• Ability to develop a Zero Trust Maturity Roadmap to achieve optimal maturity level.

Education:

• Minimum of a Bachelor of Science (or higher) in one of the following: computer engineering, computer science, IT, cyber security, or a related field.
• Relevant years of experience may be used in substitution for situations where the candidate does not have a Bachelor's degree in the required field.

Clearance level:

• Minimum of an active Secret Clearance.

Work Location:

• Hybrid – Primarily Remote.
• Required onsite work at the client location in Springfield, VA and Zermount HQ in Arlington, VA., will be occasionally required.

Hours of Operation:

• Business Hours: 8:00 am EST – 4:30 pm EST.