USAMMDA Cyber Security-Product Development Support

Frederick, MD, United States

Applications have closed

BryceTech

BryceTech is an analytics and engineering firm that partners with technology and advanced R&D clients. We deliver government program support and business consulting.

View company page

Company Description

BryceTech has partnered with technology and R&D clients to deliver mission and business success since 2017. Bryce combines core competencies in analytics and engineering with domain expertise. Our teams help government agencies, Fortune 500 firms, and investors manage complex programs, develop IT tools, and forecast critical outcomes. We offer clients proprietary, research-based models that enable evidence-based decision-making. Bryce cultivates a culture of engagement and partnership with our clients. BryceTech is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran

Job Description

Background.  USAMMDA is the largest Department of Defense's (DoD) medical materiel development activity designed to protect and preserve the lives of Warfighters.  USAMMDA develops, modernizes, procures, and fields new drugs, vaccines, medical devices and support equipment that enhances readiness, ensuring the provision of the highest quality medical care to the DoD and maximizing survival of medical casualties on the battlefield.

General.  The Contractor will serve as a technical expert concerning programmatic information technology (IT) security/information assurance (IA), cybersecurity, and Risk Management Framework.

The Contractor will provide program development support in planning, developing, implementing and maintaining medical device equipment (MDE) security programs to ensure the confidentiality integrity, and availability of MDE systems, networks and data/information programs.   

The Contractor will provide advice and guidance on a wide range and variety of complex IT, cybersecurity and RMF issues, which cover development and modernization program systems and services. 

The Contractor will provide cybersecurity and RMF programmatic support on programming techniques, equipment characteristics, systems and network software characteristics for MDE.   

The Contractor will be knowledgeable in DoD, DA, DHA, and National Institute of Standards and Technology (NIST) security regulation standards to include information technology security/information assurance laws, regulations, standards, principles, practices, and concepts in order to evaluate the effectiveness of cybersecurity and RMF procedures and operations used in product development to safeguard all MDEs. Program elements include security management, software security, IT equipment security, procedural security, data communications security, and Protected Health Information (PHI) security. 

The Contractor will ensure that MDE design complies with DOD and Army IA requirements and participates in IPT recommending system changes and modifications to ensure the development of related system security measures. 

The Contractor will review and evaluate the security impact of MDE system changes including interfaces with other systems. 

The Contractor will support the government ensuring all MDE systems are operated and maintained according to higher authority regulations. 

The Contractor will support the conduct of threat and vulnerability inspections and identifies technical vulnerabilities, risk assessments, and determines effective measures to minimize such risks. 

The Contractor will prepare and report inspection findings/recommendations to the government cybersecurity representative. 

The Contractor will support the management of the review of systems audit trails and insure the thorough investigation of discrepancies. 

The Contractor will conduct threat and vulnerability security awareness requirements training for IPTs. 

The Contractor will provide expert advice/guidance pertinent to IA and cybersecurity program policies, guides and procedures during all stages of the MDE acquisition process.

Contractor will participate as an integrated product team member in conducting broad and comprehensive cybersecurity reviews, investigations and studies for development and modernization programs to evaluate the cybersecurity posture of MDE. 

The Contractor will support the enforcement of security policies and safeguards for MDE systems, including recommending stopping system operation if warranted by the seriousness of security violations. 

The Contractor will support the development of cybersecurity plans, local policy guidance, regulations and procedures, and standard operating procedures to ensure regulatory requirements are followed. 

The Contractor will conduct and participate in various cybersecurity/RMF meetings with IPTs, Army and DHA organizational elements and representatives of other commands to plan, evaluate and determine appropriate measures needed to ensure programmatic security requirements are met. 

 
The Contractor will be knowledgeable of security-related information technologies and tools such as Internet Protocol Suite (IP), Domain Name Service (DNS), Authentication, Remote Access, Routing and Switching, Public Key Infrastructure (PKI), Identity and Access Management, Encryption, and Assured Compliance Assessment Solution (ACAS)/Numerical Evaluation of Stochastic Structures Under Stress (NESSUS) scans. The work requires in-depth analysis of MDE cybersecurity postures. 

The Contractor will be knowledgeable of the Defense adaptive acquisition framework processes. 

Qualifications

Education: Bachelor’s Degree in Information Technology or Related Field

Experience: 10 years   

BryceTech offers a full range of benefits, including competitive salary, a comprehensive health plan including dental and vision coverage, company-paid life & disability insurance policies, 401(k) plan with company match, and an educational reimbursement program.

Additional Information

Duty:  This position is Remote.  The Contractor can expect to work at the government’s facility on occasion.

Investigation Type:  T3   

IT/ADP Level:  Level 2   

Security Clearance:  Secret 

Travel:  Local Travel Only is Anticipated

Positions: 3 

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: ACAS Analytics Clearance Compliance DNS DoD Encryption IAM Nessus NIST PKI R&D Risk assessment Risk management RMF Security Clearance Vulnerabilities

Perks/benefits: 401(k) matching Competitive pay Health care Insurance

Regions: Remote/Anywhere North America
Country: United States
Job stats:  1  0  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.