* Knowledge of computer networking concepts and protocols, and network security methodologies.

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Knowledge of information technology (IT) acquisition/procurement requirements.

Ensure all acquisitions, procurements, and outsourcing efforts address information security requirements consistent with organization goals.

Ensure supply chain, system, network, performance, and cyber security requirements are included in contract language and delivered.

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Knowledge of risk management processes and requirements per the Risk Management Framework (RMF).

Knowledge of resource management principles and techniques.

Knowledge of how information needs and collection requirements are translated, tracked, and prioritized across the extended enterprise.

Knowledge of secure acquisitions (e.g., relevant Contracting Officer’s Technical Representative [COTR] duties, secure procurement, supply chain risk management).

Lead and oversee budget, staffing, and contracting.

Resolve conflicts in laws, regulations, policies, standards, or procedures.

Review or conduct audits of programs and projects.

Knowledge of the organization’s core business/mission processes.

Draft and publish supply chain security and risk management documents.

Knowledge of supply chain risk management standards, processes, and practices.

Knowledge of risk threat assessment.

Knowledge of information technology (IT) supply chain security and risk management policies, requirements, and procedures.

Knowledge of the acquisition/procurement life cycle process.

Knowledge of Cloud-based knowledge management technologies and concepts related to security, governance, procurement, and administration.

Develop contract language to ensure supply chain, system, network, and operational security are met.

Gather feedback on customer satisfaction and internal service performance to foster continual improvement.

Ability to oversee the development and update of the lifecycle cost estimate.

Knowledge of how to leverage government research and development centers, think tanks, academic research, and industry systems.

Ability to apply cybersecurity strategy to cloud computing service and deployment models, identifying proper architecture for different operating environments.

Ability to determine the best cloud deployment model for the appropriate operating environment.

* Knowledge of computer networking concepts and protocols, and network security methodologies.

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Skill in identifying measures or indicators of system performance and the actions needed to improve or correct performance, relative to the goals of the system.

Develop methods to monitor and measure risk, compliance, and assurance efforts.

Skill in conducting audits or reviews of technical systems.

Conduct import/export reviews for acquiring systems and software.

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Knowledge of industry-standard and organizationally accepted analysis principles and methods.

Knowledge of information technology (IT) architectural concepts and frameworks.

Knowledge of risk management processes and requirements per the Risk Management Framework (RMF).

Knowledge of resource management principles and techniques.

Knowledge of system life cycle management principles, including software security and usability.

Knowledge of how information needs and collection requirements are translated, tracked, and prioritized across the extended enterprise.

Ability to ensure security practices are followed throughout the acquisition process.

Provide ongoing optimization and problem solving support.

Provide recommendations for possible improvements and upgrades.

Review or conduct audits of programs and projects.

Develop security compliance processes and/or audits for external services (e.g., cloud service providers, data centers).

Evaluate the effectiveness of procurement function in addressing information security requirements and supply chain risks through procurement activities and recommend improvements.

Knowledge of import/export control regulations and responsible agencies for the purposes of reducing supply chain risk.

Knowledge of supply chain risk management standards, processes, and practices.

Knowledge of information technology (IT) acquisition/procurement requirements.

Knowledge of risk threat assessment.

Knowledge of information technology (IT) supply chain security and risk management policies, requirements, and procedures.

Knowledge of the acquisition/procurement life cycle process.

Knowledge of Cloud-based knowledge management technologies and concepts related to security, governance, procurement, and administration.

Knowledge of organizational process improvement concepts and process maturity models (e.g., Capability Maturity Model Integration (CMMI) for Development, CMMI for Services, and CMMI for Acquisitions).

Knowledge of service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library, current version [ITIL]).

Knowledge of use cases related to collaboration and content synchronization across platforms (e.g., Mobile, PC, Cloud).

Develop data management capabilities (e.g., cloud based, centralized cryptographic key management) to include support to the mobile workforce.

Ensure supply chain, system, network, performance, and cyber security requirements are included in contract language and delivered.

Review service performance reports identifying any significant issues and variances, initiating, where necessary, corrective actions and ensuring that all outstanding issues are followed up.

Knowledge of how to leverage government research and development centers, think tanks, academic research, and industry systems.

Ability to apply cybersecurity strategy to cloud computing service and deployment models, identifying proper architecture for different operating environments.

Ability to determine the best cloud deployment model for the appropriate operating environment.

Skill in designing or implementing cloud computing deployment models.

Skill in migrating workloads to, from, and among the different cloud computing service models.

Knowledge of capabilities and requirements analysis.

* Knowledge of computer networking concepts and protocols, and network security methodologies.

Knowledge of information technology (IT) architectural concepts and frameworks.

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Knowledge of system life cycle management principles, including software security and usability.

Knowledge of the organization’s enterprise information technology (IT) goals and objectives.

Skill in identifying measures or indicators of system performance and the actions needed to improve or correct performance, relative to the goals of the system.

Ability to ensure security practices are followed throughout the acquisition process.

Develop methods to monitor and measure risk, compliance, and assurance efforts.

Evaluate the effectiveness of procurement function in addressing information security requirements and supply chain risks through procurement activities and recommend improvements.

Knowledge of supply chain risk management standards, processes, and practices.

Knowledge of information technology (IT) acquisition/procurement requirements.

Ensure all acquisitions, procurements, and outsourcing efforts address information security requirements consistent with organization goals.

Knowledge of information technology (IT) supply chain security and risk management policies, requirements, and procedures.

Ability to evaluate/ensure the trustworthiness of the supplier and/or product.

Knowledge of Import/Export Regulations related to cryptography and other security technologies.

Knowledge of organizational process improvement concepts and process maturity models (e.g., Capability Maturity Model Integration (CMMI) for Development, CMMI for Services, and CMMI for Acquisitions).

Knowledge of service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library, current version [ITIL]).

Ensure supply chain, system, network, performance, and cyber security requirements are included in contract language and delivered.

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

Act as a primary stakeholder in the underlying information technology (IT) operational processes and functions that support the service, provide direction and monitor all significant activities so the service is delivered successfully.

Manage the internal relationship with information technology (IT) process owners supporting the service, assisting with the definition and agreement of operating level agreements (OLAs).

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Knowledge of industry-standard and organizationally accepted analysis principles and methods.

Knowledge of risk management processes and requirements per the Risk Management Framework (RMF).

Knowledge of current and emerging cyber technologies.

Knowledge of resource management principles and techniques.

Knowledge of how information needs and collection requirements are translated, tracked, and prioritized across the extended enterprise.

Identify and address cyber workforce planning and management issues (e.g. recruitment, retention, and training).

Lead and oversee budget, staffing, and contracting.

Perform needs analysis to determine opportunities for new and improved business process solutions.

Provide advice on project costs, design concepts, or design changes.

Provide enterprise cybersecurity and supply chain risk management guidance for development of the Continuity of Operations Plans.

Provide ongoing optimization and problem solving support.

Provide recommendations for possible improvements and upgrades.

Resolve conflicts in laws, regulations, policies, standards, or procedures.

Review or conduct audits of programs and projects.

Knowledge of the organization’s core business/mission processes.

Knowledge of import/export control regulations and responsible agencies for the purposes of reducing supply chain risk.

Draft and publish supply chain security and risk management documents.

Develop and document supply chain risks for critical system elements, as appropriate.

Knowledge of functionality, quality, and security requirements and how these will apply to specific items of supply (i.e., elements and processes).

Participate in the acquisition process as necessary.

Knowledge of risk threat assessment.

Knowledge of the acquisition/procurement life cycle process.

Ability to apply supply chain risk management standards.

Knowledge of Cloud-based knowledge management technologies and concepts related to security, governance, procurement, and administration.

Conduct import/export reviews for acquiring systems and software.

Develop supply chain, system, network, performance, and cyber security requirements.

Coordinate and manage the overall service provided to a customer end-to-end.

Ensure that appropriate SLAs and underpinning contracts have been defined that clearly set out for the customer a description of the service and the measures for monitoring the service.

Gather feedback on customer satisfaction and internal service performance to foster continual improvement.

Review service performance reports identifying any significant issues and variances, initiating, where necessary, corrective actions and ensuring that all outstanding issues are followed up.

Work with other service managers and product owners to balance and prioritize services to meet overall customer requirements, constraints, and objectives.

Ability to oversee the development and update of the lifecycle cost estimate.

Knowledge of how to leverage government research and development centers, think tanks, academic research, and industry systems.

* Knowledge of computer networking concepts and protocols, and network security methodologies.

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Skill in identifying measures or indicators of system performance and the actions needed to improve or correct performance, relative to the goals of the system.

Perform needs analysis to determine opportunities for new and improved business process solutions.

Provide enterprise cybersecurity and supply chain risk management guidance.

Provide input to implementation plans and standard operating procedures.

Knowledge of functionality, quality, and security requirements and how these will apply to specific items of supply (i.e., elements and processes).

Ensure all acquisitions, procurements, and outsourcing efforts address information security requirements consistent with organization goals.

Knowledge of information technology (IT) supply chain security and risk management policies, requirements, and procedures.

Develop contract language to ensure supply chain, system, network, and operational security are met.

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

Ensure that appropriate SLAs and underpinning contracts have been defined that clearly set out for the customer a description of the service and the measures for monitoring the service.

Knowledge of sustainment technologies, processes and strategies.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Knowledge of industry-standard and organizationally accepted analysis principles and methods.

Knowledge of risk management processes and requirements per the Risk Management Framework (RMF).

Knowledge of new and emerging information technology (IT) and cybersecurity technologies.

Knowledge of resource management principles and techniques.

Knowledge of system life cycle management principles, including software security and usability.

Knowledge of how information needs and collection requirements are translated, tracked, and prioritized across the extended enterprise.

Ability to ensure security practices are followed throughout the acquisition process.

Develop methods to monitor and measure risk, compliance, and assurance efforts.

Lead and oversee budget, staffing, and contracting.

Provide advice on project costs, design concepts, or design changes.

Provide ongoing optimization and problem solving support.

Provide recommendations for possible improvements and upgrades.

Resolve conflicts in laws, regulations, policies, standards, or procedures.

Review or conduct audits of programs and projects.

Develop security compliance processes and/or audits for external services (e.g., cloud service providers, data centers).

Evaluate the effectiveness of procurement function in addressing information security requirements and supply chain risks through procurement activities and recommend improvements.

Knowledge of import/export control regulations and responsible agencies for the purposes of reducing supply chain risk.

Draft and publish supply chain security and risk management documents.

Knowledge of enterprise incident response program, roles, and responsibilities.

Apply cybersecurity functions (e.g., encryption, access control, and identity management) to reduce exploitation opportunities.

Knowledge of supply chain risk management standards, processes, and practices.

Develop and document supply chain risks for critical system elements, as appropriate.

Knowledge of information technology (IT) acquisition/procurement requirements.

Knowledge of risk threat assessment.

Ability to evaluate/ensure the trustworthiness of the supplier and/or product.

Knowledge of the acquisition/procurement life cycle process.

Ability to apply supply chain risk management standards.

Knowledge of Cloud-based knowledge management technologies and concepts related to security, governance, procurement, and administration.

Knowledge of Import/Export Regulations related to cryptography and other security technologies.

Knowledge of organizational process improvement concepts and process maturity models (e.g., Capability Maturity Model Integration (CMMI) for Development, CMMI for Services, and CMMI for Acquisitions).

Knowledge of service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library, current version [ITIL]).

Conduct import/export reviews for acquiring systems and software.

Develop supply chain, system, network, performance, and cyber security requirements.

Act as a primary stakeholder in the underlying information technology (IT) operational processes and functions that support the service, provide direction and monitor all significant activities so the service is delivered successfully.

Coordinate and manage the overall service provided to a customer end-to-end.

Gather feedback on customer satisfaction and internal service performance to foster continual improvement.

Review service performance reports identifying any significant issues and variances, initiating, where necessary, corrective actions and ensuring that all outstanding issues are followed up.

Work with other service managers and product owners to balance and prioritize services to meet overall customer requirements, constraints, and objectives.

Ability to conduct and implement market research to understand government and industry capabilities and appropriate pricing.

Ability to oversee the development and update of the lifecycle cost estimate.

Knowledge of how to leverage government research and development centers, think tanks, academic research, and industry systems.

* Knowledge of computer networking concepts and protocols, and network security methodologies.

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Knowledge of the organization’s enterprise information technology (IT) goals and objectives.

Provide enterprise cybersecurity and supply chain risk management guidance for development of the Continuity of Operations Plans.

Knowledge of information technology (IT) acquisition/procurement requirements.

Ensure all acquisitions, procurements, and outsourcing efforts address information security requirements consistent with organization goals.

Knowledge of risk threat assessment.

Knowledge of service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library, current version [ITIL]).

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

Act as a primary stakeholder in the underlying information technology (IT) operational processes and functions that support the service, provide direction and monitor all significant activities so the service is delivered successfully.

Manage the internal relationship with information technology (IT) process owners supporting the service, assisting with the definition and agreement of operating level agreements (OLAs).

Knowledge of how to leverage government research and development centers, think tanks, academic research, and industry systems.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Knowledge of information technology (IT) architectural concepts and frameworks.

Knowledge of risk management processes and requirements per the Risk Management Framework (RMF).

Knowledge of Risk Management Framework (RMF) requirements.

Knowledge of resource management principles and techniques.

Knowledge of system life cycle management principles, including software security and usability.

Skill in identifying measures or indicators of system performance and the actions needed to improve or correct performance, relative to the goals of the system.

Knowledge of how information needs and collection requirements are translated, tracked, and prioritized across the extended enterprise.

Ability to ensure security practices are followed throughout the acquisition process.

Develop and maintain strategic plans.

Develop methods to monitor and measure risk, compliance, and assurance efforts.

Identify and address cyber workforce planning and management issues (e.g. recruitment, retention, and training).

Lead and oversee budget, staffing, and contracting.

Perform needs analysis to determine opportunities for new and improved business process solutions.

Resolve conflicts in laws, regulations, policies, standards, or procedures.

Review or conduct audits of programs and projects.

Knowledge of the organization’s core business/mission processes.

Evaluate the effectiveness of procurement function in addressing information security requirements and supply chain risks through procurement activities and recommend improvements.

Knowledge of import/export control regulations and responsible agencies for the purposes of reducing supply chain risk.

Draft and publish supply chain security and risk management documents.

Knowledge of supply chain risk management standards, processes, and practices.

Develop and document supply chain risks for critical system elements, as appropriate.

Knowledge of functionality, quality, and security requirements and how these will apply to specific items of supply (i.e., elements and processes).

Participate in the acquisition process as necessary.

Knowledge of information technology (IT) supply chain security and risk management policies, requirements, and procedures.

Ability to evaluate/ensure the trustworthiness of the supplier and/or product.

Knowledge of the acquisition/procurement life cycle process.

Ability to apply supply chain risk management standards.

Knowledge of Cloud-based knowledge management technologies and concepts related to security, governance, procurement, and administration.

Knowledge of Import/Export Regulations related to cryptography and other security technologies.

Knowledge of organizational process improvement concepts and process maturity models (e.g., Capability Maturity Model Integration (CMMI) for Development, CMMI for Services, and CMMI for Acquisitions).

Conduct import/export reviews for acquiring systems and software.

Develop supply chain, system, network, performance, and cyber security requirements.

Ensure supply chain, system, network, performance, and cyber security requirements are included in contract language and delivered.

Develop contract language to ensure supply chain, system, network, and operational security are met.

Coordinate and manage the overall service provided to a customer end-to-end.

Gather feedback on customer satisfaction and internal service performance to foster continual improvement.

Ability to oversee the development and update of the lifecycle cost estimate.