• Governance, Metrics, Policy, and Communications Project Manager Lead

    Job ID 2018-1767
    Job Locations
    IT: Information Assurance / Quality / Cyber Security
    Regular Full-Time
  • Overview

    NCI is a leading provider of enterprise solutions and services to U.S. defense, intelligence, health and civilian government agencies. Coupled with a refined focus on strategic partnerships, we are successfully bridging the gap between commercial best practices and mission-critical government processes. Core competencies include:

    • Artificial intelligence
    • Agile digital transformation
    • Advanced analytics
    • Hyperconverged infrastructure solutions
    • Cyber security and information assurance
    • Fraud, waste and abuse
    • Engineering and logistics


    NCI has been designated a 2018 Military Friendly Employer by MilitaryFriendly.com 


    Headquartered in Reston, Virginia, NCI has approximately 2,000 employees operating at more than 100 locations worldwide.


    NCI is seeking a Governance, Metrics, Policy, and Communications Project Manager Lead for the Joint Service Provider's Cyber Security program. The Governance, Metrics, Policy, and Communications Project Manager Lead provides support for cyber security-related programs, including but not limited to governance, metrics, policy and communications. In assuming this position, you will be a critical contributor to meeting NCI's mission: To deliver innovative, cost-effective solutions and services that enable our customers to rapidly adapt to dynamic environments. NCI is always seeking talent and although this position is contingent upon an open position, we encourage you to apply.

    Highlights of Responsibilities:
    • Supporting the cyber security Governance program, including but not limited to, assisting the government in developing, implementing and improving the framework of rules and business practices for maintaining stakeholder relationships, assignment of duties and responsibilities, establishing goals and objectives, monitoring organizational performance, ensuring accountability, and reconciling potential conflicts.
    • Developing, providing and implementing improvement recommendations consistent with industry best practices for Governance, Risk Management, and Compliance (GRC) programs.
    • Conducting required GRC SOP activities to include, but not limited to, supporting the full spectrum of governance-related events, meetings and activities, including scheduling, coordinating, securing appropriate venue, preparing agendas and materials, recording and tracking action items, distributing minutes, performing closeout activities, and preparing metrics.
    • Supporting the cyber security Metrics Program, including, but not limited to, assisting the government in designing, developing, maintaining, executing and improving a comprehensive Metrics Program.
    • Conducting required Metrics Program SOP activities to include, but not limited to, the development of metric plan/description for each individual metric, and development of a metrics package.
    • Supporting cyber security policy and communications, including assisting the government in preparing, revising, implementing, coordinating, sustaining, maintaining, and distributing cyber security-related policy, directives, messages, documents, notifications, media and other appropriate communications.
    • Utilizing knowledge management tools and techniques to effectively and efficiently store and distribute policy-related materials originating from CSC and other sources.
    • Ensuring compliance and quality assurance of all enterprise organizational policies and procedures related to security controls are implemented and follow quality control guidelines.
    • Reviewing, interpreting, revising, developing and distributing policy and guidance documents, populating and maintaining site for cyber security reading materials, and preparation of metrics.


    • Current DoD 8570 IAM II compliant certification
    • Active Secret security clearance
    • Bachelor's Degree with a Business IT focus and at least 7 years experience supporting an IT related business/industry environment, or Associate's Degree with at least 12 years of relevant experience. 
    • At least 5 years experience supporting DoD customers or a similar large, complex government agency. 
    Preferred Education and Experience:
    • Demonstrated successful track record for delivering large/complex projects on time and within budget within DoD Organizations.
    • Expert-level knowledge in the identification, design, development and maintenance of a metrics program related to cyber security in an organization of similar size and scope.
    • Expert-level knowledge in planning, directing, and managing cyber security governance programs and processes in large complex organizations. This demonstrated experience includes the development of a framework and business rules related to the management of cross functional relationships, roles and responsibilities and establishment of cyber security goals and objectives.
    • Experience with knowledge management best practices and using practices to develop, promote and monitor cyber security programs to ensure that management of security related topics and issues are properly accounted for.
    • Knowledge and experience coordinating, collecting, and analyzing security relevant data in order to brief senior government leads on the risk posture of an enterprise. Proven ability to multi-task, prioritize and present to government allowing the government to make risk based decisions based on the information presented. Knowledge with providing review and preparation of governance materials, meeting preparation and capturing information from governance meetings.
    • Experience performing governance management at either an enterprise or IT service functional level.
    • Demonstrated expert-level knowledge in planning, directing, and managing an organizations cyber security policies related to DoD 8500 series, NIST SP 800 series, DoD regulations and instructions to include: 8570-01, DoDI 8530.01, CJCSI 6510.01 as well as Risk Management Framework (RMF).
    • Expert-level knowledge and experience related to organizational communication plans and communication of cyber related policies to all organizational entities for applicability and guidance.
    • Experience with the development of organizational policies, and the application of organizational level compliance standards in order to develop policies that can be applied within an organization.
    • IT experience in a DOD environment, including utilization of knowledge management practices and technologies, and interacting with and briefing senior government leaders.


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Connect With Us!

    Not ready to apply? Connect with us for general consideration.