Security Controls Assessor
3 weeks ago
Company Overview:
TestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide range of Commercial and U.S. Federal, State, and Local Government customers. Our capabilities include Program Management, Program Oversight, Process Audit, Intelligence Analysis, Cyber Security, NIST 800-53, NIST SP 800-171 / CMMC Consulting/Assessment/Compliance, PCI Compliance, Zero Trust, Resiliency, Computer Forensics, Software Supply Chain Assurance, Software Testing, Test Automation, Section 508 and WCAG Accessibility Assessment and Remediation, Localization Testing, Independent Verification and Validation (IV&V), Quality Assurance (QA), Compliance, and Research and Development (R&D) services. TestPros is an Equal Opportunity Employer.
Job Summary:
TestPros is looking for expert level Cyber Security professionals with experience performing on risk management programs for U.S. Federal and commercial clients by utilizing NIST, RMF, and FISMA compliance frameworks.
Specifically, we are looking for professionals with experience in conducting NIST 800-53 Rev 5 based Authority To Operate (ATO) support.
Responsibilities and Duties:
You should be able to deliver on the following expertly and consistently:
- Develop NIST 800-53 Rev5 based System Security Plan (SSP).
- Create/Update the applicable documents identified by NIST 800-53 Rev 5, specifically the Security Assessment Report (SAR).
- Create/Update the associated Plan of Actions and Milestones (POA&M).
- Provide detailed security-related reports including data, analyses, and conclusions upon completion of tests, scans, and assessments, including mitigations and, if indicated, appropriate escalation of identified risks and vulnerabilities.
- Verify and document the implementation of security controls necessary to achieve compliance.
- Keep management apprised of impending areas of concern, verbally and in writing.
- Review and develop System Security Plans (SSPs), Plans of Actions and Milestones (POA&Ms), and as well as other necessary artifacts.
- Facilitate the Plan of Actions and Milestones (POA&M) program to ensure customer systems have accurately and fully provided information for POA&M activities to include valid remediation of findings.
- Develop various policy documents (SOPs/CONOPs) as required. This may include policies regarding Configuration Management, IS Sanitization, Media Security, Password Policy, Business Continuity, Continuity of Operations, Incident Response, Disaster Recover, and Security Assessments.
- Develop new, and mature existing information security and risk policies.
- Initiate, and lead on-going information security maturity assessment processes and training, using industry accepted frameworks and implement into the overall cyber security posture.
- Produce and review key performance indicators for implemented security measures and distribute KPIs.
- Maintain knowledge of threat landscape by monitoring threat intelligence, and other related sources.
Qualifications and Skills:
- 5+ years of directly related experience in IT security compliance, including recent experience with NIST 800-53 Rev 5 "Security and Privacy Controls for Federal Information Systems and Organizations"
- Cloud computing security
- Security governance and policy
- Security risk analysis
- Auditing and monitoring systems
- Scanning and vulnerability management systems
- Advanced Malware Protection
- Threat Intelligence
- Incident Management - analysis, detection, and handling of security events
- Penetration testing and associated tools (e.g., nmap, Metasploit, etc.)
- Bachelor's Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training, or work experience (preferred)
- Military and/or practical job experience may be considered in-lieu of formal education, with significant industry certifications
Benefits
TestPros offers a competitive salary, medical/dental/vision insurance, life insurance, paid time off, paid holidays, 401(k) retirement plan with company match, opportunities for professional growth, cell phone discounts, and much more All benefits are per TestPros current policies and are subject to change without notice. Benefits are available to full-time employees.
TestPros, Inc. is an Equal Opportunity Employer.
COVID Notification
To ensure compliance with President Biden's 9 September 2021 Executive Order 14043, TestPros, Inc. is implementing a requirement for US based employees to either show proof of being fully vaccinated from Covid-19 or have an approved/reasonable accommodation (based on disability/medical condition or sincerely held religious belief) exempting an employee from the requirement, by 8 December 2021 (timing may vary state by state). Individuals who are unable to meet Covid-19 requirements due to a disability/medical condition or sincerely held religious belief, may apply for a reasonable accommodation during the post-offer process. Individuals with approved accommodations will be subject to regular Covid-19 testing.
EEO Statement
All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, marital status, age, national origin, or protected veteran status.
Powered by JazzHR
yQXIpSXgqE
-
Cyber Risk Assessor
4 days ago
Sterling, United States ALTA IT Services Full timeCYBER RISK ASSESOR – AWS SME - Top Secret SCI Information System Security Officer, or Information System Security Manager ALTA IT Services has a direct hire opening for a Cyber Risk Assessor with solid AWS experience to support a federal program. This is a remote position, for candidates who reside in the DMV metro area only. Active Top Secret...
-
Cyber Risk Assessor
5 days ago
Sterling, United States ALTA IT Services Full timeJob DescriptionJob DescriptionCYBER RISK ASSESOR – AWS SMEInformation System Security Officer, or Information System Security ManagerALTA IT Services has a direct hire opening for a Cyber Risk Assessor with solid AWS experience to support a federal program. This is a remote position, for candidates who reside in the DMV metro area only. Active Top Secret...
-
Cyber Security Architect
1 day ago
Sterling, United States Az Cyber Security Solutions INC Full timePosition Description**:Cyber Security Architect** AZ Cyber Security Solutions is seeking a highly qualified and motivated Cyber Security Architect with strong Zero Trust Architecture and AWS experience to support our federal client. **Responsibilities**: - Lead the architecture and design efforts of innovative Cybersecurity solutions and service offerings...
-
Security Officer
2 months ago
Sterling Heights, United States Teachout Security Solutions Full timeSecurity OfficerAre you looking for a rewarding career with opportunities for advancement?We’re hiring immediately for part- and full-time security officer positions - no experience needed! Starting at $13.00 per hour We OfferPaid trainingPaid time off and health insurance for eligible employeesEmployee recognition programsOpportunities for advancement...
-
Security Control Technician 2
4 weeks ago
Sterling Heights, Michigan, United States Parsons Corporation Full timeIn a world of possibilities, pursue one with endless opportunities. Imagine NextWhen it comes to what you want in your career, if you can imagine it, you can do it at Parsons. Imagine a career working with intelligent, diverse people sharing a common quest. Imagine a workplace where you can be yourself. Where you can thrive. Where you can find your next,...
-
Program Controls Lead with Security Clearance
2 months ago
Sterling, United States WilsonHCG Full time**This is a direct role with a prestige employer in the defense industry!**More details about the employer will be shared as you apply and connect with the recruiter. Responsibilities to Anticipate: Proactively work with the Business Manager and team to successfully satisfy programmatic and financial organization objectives Ensure program costs are collected...
-
Security Control Technician 2
4 days ago
Sterling Park, United States Parsons Corporation Full timeDescription : Parsons is looking for an amazingly talented Security Control Technician 2 to join our team! In this role you will get to fabricate alarm systems. What You'll Be Doing: Reading, interpreting, and drawing electrical, electronic, and electromechanical schematics at an intermediate level or better. Fabricating control panels...
-
PCI Compliance Specialist/Consultant
2 months ago
Sterling, United States TestPros Full timeJob DescriptionJob DescriptionCompany OverviewTestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide range of Commercial and U.S. Federal, State, and Local Government customers. Our capabilities include Program Management, Program Oversight, Process Audit, Intelligence...
-
PCI Compliance Specialist/Consultant
2 weeks ago
Sterling, United States TestPros Full timeJob DescriptionJob DescriptionCompany OverviewTestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide range of Commercial and U.S. Federal, State, and Local Government customers. Our capabilities include Program Management, Program Oversight, Process Audit, Intelligence...
-
Information System Security Officer
3 weeks ago
Sterling, United States Base One Technologies Full timeRequired Education/Experience Bachelor Degree in Computer Science, IT, Information/Cyber Security field from an accredited college or university Primary ResponsibilitiesManage overall security related policies, procedures, laws and regulations; create, document and implement various security plans and compliance documents to enforce Information Assurance...
-
Security Services Support with Security Clearance
2 months ago
Sterling, United States Credence Management Solutions Full timeResponsibilities include, but are not limited to the duties listed below * Provide database management, data entry, security assistance, security liaison/ escorting support, program management support, meeting facilitation, report generation for SMD/SSB. * Provide security services to include VIP, foreign national, and high-profile dignitary facility...
-
Sterling, United States HRUCKUS LLC Full timeVeteran-Owned Firm Seeking a QA/Change Control Coordinator for a Role in Ashburn, VAMy name is Stephen Hrutka, and I lead a veteran-owned management consulting firm in Washington, DC, focused on Technical/ Cleared Recruiting for the DoD and IC.HRUCKUS helps other Veteran-Owned businesses recruit for positions across the VA, SBA, HHS, DARPA, and other...
-
Sterling, United States Amazon Data Services, Inc. Full timeAmazon Web Services (AWS) is the leading cloud provider of virtualize infrastructure, storage, networking, messaging, and many other services all over the world. Our customers trust us to handle their data with air-tight security measures, which is something that we guarantee.The AWS Data Center Security team is looking for a creative, innovative,...
-
Security Program Manager, DC Security Amer-East
4 weeks ago
Sterling, United States Amazon Data Services, Inc. Full timeAmazon Web Services (AWS) is the leading cloud provider of virtualized infrastructure, storage, networking, messaging, and many other services all over the world. Our customers trust us to handle their data with air-tight security measures, which is something that we guarantee.The AWS Data Center Security team is looking for a creative, innovative,...
-
Sterling, United States Amazon Data Services, Inc. Full timeAmazon Web Services (AWS) is the leading cloud provider of virtualized infrastructure, storage, networking, messaging, and many other services all over the world. Our customers trust us to handle their data with air-tight security measures, which is something that we guarantee.The AWS Data Center Security team is looking for a creative, innovative,...
-
Security Team Manager
4 weeks ago
Sterling, United States Securitas Inc. Full timeSecurity Team ManagerWage: $89,440/ yearlyThe Security Team Manager (STM) serves as the day-to-day manager of a site security team that includes administrative officers, responders, and other security personnel. The STM is responsible for building a cohesive and high performing team. Reporting directly to the Cluster Security Manager (CSM), the STM works...
-
Quality Assurance Change Control Coordinator
2 weeks ago
Sterling, United States Piper Companies Full timeZachary Piper Solutions is seeking Quality Assurance Change Control Coordinator to join a Federal Consulting company located in Ashburn, Virginia. The Quality Assurance Change Control Coordinatorwill work onsite to support the modernization of communications infrastructure by maintaining change management records, plans and implementation schedules....
-
Load Control Agent
4 weeks ago
Sterling, United States Maximus Global Services Full time**JOB DESCRIPTION** **Summary/Objective** The load controller will be responsible for ensuring flight safety by finalizing the load sheet and the loading documents in accordance with the Ethiopian Airlines, Standard Operations Procedures. **Essential Functions** Reasonable accommodations may be made to enable individuals with disabilities to perform the...
-
Global Security Operations Center Operator
1 month ago
Sterling, United States Allied Universal® Full timeGlobal Security Operations Center Operator **Overview**: Allied Universal®, North America's leading security and facility services company, provides rewarding careers that give you a sense of purpose. While working in a dynamic, diverse and inclusive workplace, you will be part of a team that fuels a culture that will reflect in our communities and...
-
Network Security Tools Engineer
3 weeks ago
Sterling, United States Argo Cyber Systems Full timeJob Description Job Description Network Security Tools Engineer Argo Cyber is supporting a U.S. Government customer on a large mission-critical development and sustainment program to design, build, deliver, and operate a network operations environment, including introducing new cyber capabilities to address emerging threats. The Network Security Tools...