Cyber Governance Team Lead

Date: Dec 10, 2024

Location: Oak Ridge, TN, US, 37830

Company: Oak Ridge National Laboratory

Requisition Id 14213 

Due to the security clearance requirements of this position, US citizenship is required for consideration.

 

Overview:  

Oak Ridge National Laboratory is hiring a Cyber Governance Team Lead to mature and manage governance, risk, and compliance program initiatives for Enterprise Systems and related platforms! In this role, you will collaborate with various groups across the ORNL complex, manage a team of analysts, Information Systems Security Officers, and domain experts in leading security initiatives for enterprise systems, ensuring appropriate risk identification, directing policy for data and network cyber protection, and enabling mission and business objectives. You will develop a coordinated approach to policy documents, security control assessments, and risk mitigation strategies, enabling metrics and reporting. Our Team Lead collaborates closely with the Cyber Governance Group Leader, and the selected candidate will have the opportunity to interact with all levels of the organization.

 

The Team Lead in the Cybersecurity Division's Governance Group is responsible for the development, review, and updating of cybersecurity policies and procedures, ensuring compliance with federal and industry standards and regulations. This position will lead, liaise, and follow audits and risk assessments, as well as participate in incident response activities, documenting findings and corrective actions. The Team Lead will maintain accurate records of cybersecurity activities, task tracking, and all efforts in support of program enhancement, and prepare reports for senior management. Additionally, they help conduct security assessments and ensure data protection measures are effective.

 

Major Duties/Responsibilities: 

  • Lead ORNL's Cyber Governance unclassified team across all functions and disciplines.
  • Identify, review, and provide analysis and recommendations to meet security requirements, translating them into policies, procedures, and control structures.
  • Provide guidance on security policies and controls to support appropriate risk levels, facilitate risk tolerance discussions, and recommend controls based on industry standards.
  • Lead initiatives to mature Governance, Risk, Compliance (GRC) platform capabilities.
  • Coordinate risk management efforts, including risk assessment processes, mitigation strategies, and staff training.
  • Participate in internal/external compliance audits and assessments.
  • Create and present metrics related to risk and compliance, along with tracking the progress of compliance programs and remediation activities.
  • Identify and implement process improvements for security operations.
  • Work with other teams as appropriate to automate and integrate security applications and processes.
  • Other duties as assigned for support within the program.
  • Deliver ORNL’s mission by aligning behaviors, priorities, and interactions with our core values of Impact, Integrity, Teamwork, Safety, and Service. Promote diversity, equity, inclusion, and accessibility by fostering a respectful workplace – in how we treat one another, work together, and measure success.

 

Basic Qualifications:

  • A BS degree in cybersecurity, computer science, computer engineering, information technology, information systems, business, or a related discipline and a minimum of eight (8) to twelve (12) years of aligned experience is required for consideration. An overall combination of equivalent education and experience may be considered.
  • Experience leading teams both administratively and technically.
  • Experience writing and implementing Cybersecurity Plans at enterprise and system levels.
  • Knowledge of and experience performing security control assessments.
  • Strong analytical and problem-solving skills to understand Cyber risk and exposure.
  • Demonstrated experience implementing compliance frameworks (NIST 800-53, NIST CSF, etc.).
  • Project management skills; ability to lead program implementations and proof of value executions.
  • Excellent interpersonal, verbal, written, and presentation skills.
  • Thorough understanding of industry standards and regulations.
  • Experience integrating risk, compliance, and governance groups within an organization.
  • Ability to work independently, meet deadlines, and operate with high ethical standards.
     

Preferred Qualifications:

  • Master’s degree in cybersecurity, computer science, computer engineering, information technology, information systems, business, or a related discipline.
  • Ten (10) or more years' experience in information security.
  • Cybersecurity experience within federal government programs.
  • Track record of managing and prioritizing tasks in high-pressure environments.
  • Experience gaining Authority to Operate (ATO) for government systems.
  • Cybersecurity certifications (CISSP, CISM, CISA, CRISC).
  • Familiarity with vulnerability management tools and processes.
  • Knowledge of incident response procedures and enterprise security tools.

 

Special Requirements:   

  • Visa sponsorship is not available for this position.  
  • This position requires the ability to obtain and maintain a clearance from the Department of Energy. As such, this position is a Workplace Substance Abuse (WSAP) testing designated position. WSAP positions require passing a pre-placement drug test and participation in an ongoing random drug testing program. 

  

Benefits at ORNL:

ORNL offers competitive pay and benefits programs to attract and retain dedicated people. The laboratory offers many employee benefits, including medical and retirement plans and flexible work hours, to help you and your family live happy and healthy. Employee amenities such as on-site fitness, banking, and cafeteria facilities are also provided for convenience.

 

Other benefits include the following: Prescription Drug Plan, Dental Plan, Vision Plan, 401(k) Retirement Plan, Contributory Pension Plan, Life Insurance, Disability Benefits, Generous Vacation and Holidays, Parental Leave, Legal Insurance with Identity Theft Protection, Employee Assistance Plan, Flexible Spending Accounts, Health Savings Accounts, Wellness Programs, Educational Assistance, Relocation Assistance, and Employee Discounts.

 

Having difficulty using the online application system or need an accommodation to apply due to a disability? Please email: ORNLRecruiting@ornl.gov.

 

 

This position will remain open for a minimum of 5 days after which it will close when a qualified candidate is identified and/or hired.

We accept Word (.doc, .docx), Adobe (unsecured .pdf), Rich Text Format (.rtf), and HTML (.htm, .html) up to 5MB in size. Resumes from third party vendors will not be accepted; these resumes will be deleted and the candidates submitted will not be considered for employment.


If you have trouble applying for a position, please email ORNLRecruiting@ornl.gov.


ORNL is an equal opportunity employer. All qualified applicants, including individuals with disabilities and protected veterans, are encouraged to apply.  UT-Battelle is an E-Verify employer.


Nearest Major Market: Knoxville