Job Description :
Hi, I am Maggie from TechnoGen Inc., we are collaborated with US based Clients, and working for different positions from past many years and placed many of the consultants. I am currently looking SME- Cybersecurity Training for one of our clients. Below is the job description for your review. Please let me know if you would be interested. Title: SME- Cybersecurity Training Duration: 12+ months contract Location: This will be a hybrid position between teleworking and on-site. Place of primary on-site performance will be at 100 Community Place, Crownsville, MD. Travel to other offices in the Annapolis/Baltimore area may also be required. Education/certifications copies required Background: One of the key responsibilities within the Office of Security Management (OSM), via the direction of the State Chief Information Security Office (SCISO), is the management and oversight of a State-wide Security Awareness Training Program for all State employees and contractors, estimated to date at 50,000 plus users. OSM would like to engage in making a number of structured improvements to the cybersecurity training and awareness program focusing on the following areas of the NIST cybersecurity framework: All users are informed and trained Privileged users understand roles & responsibilities Senior executives understand roles & responsibilities Physical and information security personnel understand roles & responsibilities OSM requires a resource that thoroughly understands training/training programs and policies/processes around security awareness with the ability and experience to support development of such. This resource will play an integral role in the establishment of the policies, processes, and procedures supporting Start date: Anticipated July 2022 start, with key areas of focus on program improvements and effective methods of communications/outreach. The resource will provide support to existing OSM security training management and connect with State-wide training managers. The resource will also be responsible for the development of requirements and scope for a solicitation (Request for Proposal (RFP for the Security Awareness training solution. More detailed scope of the role is listed below, but is not limited to the following: Review and/or develop a State-wide policy that establishes the requirements, scope, roles, responsibilities, and management commitment for security awareness and training, including privacy awareness of training quot;training") that is congruent with State and Federal laws, executive orders, directives, regulations, policies, standards, and guidelines. Review and/or develop standards and procedures for the dissemination of training materials that includes: a. Initial training for new employees. b. Periodic training, including security training at least six times each year and privacy training at least two times each year; and c. Training based on current-events or incident lessons-learned, at least two times per year. Review and/or develop standards and procedures for the creation, dissemination, and updating of role-based training materials. Develop a methodology or mechanism to ensure that training records are associated with the specific user Review and/or develop standards and procedures to evaluate the effectiveness of the training program. Review and/or develop processes to conduct periodic phishing simulations for all users, to be included with the training record for each user. Review and/or develop processes to conduct periodic security training assessments for all users, to be included with the training record for each user. Provide recommendations on key metrics to monitor for ensuring the effectiveness of the program. Develop a list of requirements to be included in an upcoming RFP for security training and support the development of the RFP. Education: A Bachelor's Degree from an accredited college or university with a major in Computer Science, Information Systems, Engineering, Business, or other related scientific or technical discipline. A Master's Degree is preferred. General Experience: Must have seven (7) years of experience in the IT field. Specialized Experience: At least five (5) years of combined new and related older technical experience in the IT field directly related to the required area of expertise. Additional Preferred Experience: Managing or providing direct work products for security awareness training programs. Developing policies, processes, and procedures with the ability to translate information to respective documentation. Developing system related requirements for solicitations. Ability to communicate and coordinate well with others, inclusive of good written and oral skills. Maggie Priya | Technical Recruiter Mobile | Email : a CMMI Level 3 & ISO 9001, ISO 20000, ISO 27001 Company 4229, Lafayette Center Dr, Suite 1880, Chantilly, VA 20151 | The information contained in this e-mail and any accompanying documents is confidential, may be privileged, and is intended solely for the person and/or entity to whom it is addressed and is a property of TechnoGen, Inc. Unauthorized review, use, disclosure, or copying of this communication, or any part thereof, is strictly prohibited and may be unlawful. If you have received this e-mail in error, please return the e-mail and attachments to the sender and delete the e-mail and attachments and any copy from your system. To be removed from our mailing list please click on "Remove" with your email address in the body, include complete e-mail address and/or domain/ aliases to be removed.
             

Similar Jobs you may be interested in ..