Security Assessor
2 weeks ago
SECURITY ASSESSOR - MID LEVEL
MILITARY FRIENDLY & PREFERRED - HOH SPONSOR
As a Mid Security Control Assessor, you will design, develop, engineer, and implement solutions. You will perform complex risk analyses which also include risk assessment. Establish and satisfy information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands. Support customers at the highest levels in the development and implementation of doctrine and policies. Apply know-how to government and commercial common user systems, as well as to dedicated special purpose systems requiring specialized security features and procedures. Perform analysis, design, and development of security features for system architectures.
Duties & Responsibilities:
- Assess all applicable security controls defined in the mandated DHS Compliance tool and applicable to the systems under their purview.
- Complete a FIPS-199, Privacy Threshold Analysis (PTS), E-Authorization, Contingency Plans (CPs), Contingency Plan Tests, Security Plans.
- Develop the SA Package documentation to include Security Assessment Plans (SAP), Security Assessment Reports (SAR), ATO Letters, ATO Recommendation Memo, Risk Assessment Memos, CFO Designation Memo, POA&M finding matrices, Executive Data Sheet (EDS), OA artifacts, etc.
- Gather evidence for ATO efforts and store results in the mandated DHS Compliance Tool and/or in a separate customer repository.
- Review for upgrades and provide recommendation on whether this will result in major or minor changes and overall cybersecurity impact and utilize tools for tracking of changes.
- Provide recommendations for refining and/or improving existing RMF processes and procedures and support implementation of these changes.
- In view of the remote nature of the contract, an individual Weekly Status Report and Weekly Status Reports Briefing are it is required deliverables for tasks assigned. The resources must have the ability to effectively develop weekly status reports, that are consistent, well structured, answer to all the assigned management templates guidelines, are in alignment with the task area of support, and are relevant to the reporting period. At a minimum the weekly status report should reflect the following:
- Weekly work accomplished
- 2 weeks of ongoing and planned tasks
- Risks, and issues impacting tasks assigned.
- The report format will be primarily MS PowerPoint and MS Project (or other MS tools as required by the management team).
- All Deliverables shall be at a level of accuracy that does not require "return for correction" for typographical and grammatical errors. (Repetitive requests for correction by the management or Government team may result in a determination of failing to meet the basic standards for professional writing, reporting, accuracy, quality, and completeness of the contractual requirements for deliverables.)
- Must have the ability to prepare to present, brief, and explain; all information captured in weekly status report to management and/or government client.
- Analyze IT specifications to assess security risks. Design and implement safety measures and data recover plans. Secure networks.
- Inspect customers systems for vulnerable points of access. Monitor network activities and communicate them to teams.
Required Qualifications:
- Knowledge of NIST Guidelines and FISMA Cybersecurity compliance requirements Technical knowledge of IT systems.
- Knowledge of and experience using relevant cybersecurity and analysis tools such as Archer, Nessus Security Center, Splunk, etc.
- Experience communicating effectively, both oral and written, with technical, non-technical, and executive-level customers.
Basic Qualifications:
- Proven experience as a Computer Security Specialist.
- Programming skills are preferred.
- Familiarity with security frameworks e.g., NIST Cybersecurity framework and risk management methodologies.
- Knowledge of patch management, firewalls, and intrusion detection/prevention systems.
- Familiarity with public key infrastructure (PKI) and cryptographic protocols e.g., SSL/ TLS.
- An analytical mind with excellent problem-solving ability.
- Outstanding communication and organization skills.
- Decision-making skills.
Education: Bachelor preferable but professional experience is Permitted:
- 4-7+ years minimum of IT Cybersecurity experience including direct support of the US government (preferably DHS) and 2 years acting as an ISSO, assessor, compliance analyst, and policy OR
- A relevant bachelor's degree in IT, Computer Science or engineering with 7 years of IT
Certifications and Training (Required): At least one of the following security certifications:
- Certified Authorization Professional (CAP)
- Certified Information Systems Security Officer (CISSO)
- Certified Information Security Manager (CISM)
- Certified Information Systems Security Professional (CISSP)
Clearance level:
- Must have at least a Secret Level Security Clearance.
Work Location: Austin, TX
Business Hours: 8:00 am EST - 4:30 pm EST.
-
Security Assessor
2 weeks ago
Arlington, United States Zermount, Inc Full timeJob DescriptionJob DescriptionSECURITY ASSESSOR - MID LEVELMILITARY FRIENDLY & PREFERRED - HOH SPONSORAs a Mid Security Control Assessor, you will design, develop, engineer, and implement solutions. You will perform complex risk analyses which also include risk assessment. Establish and satisfy information assurance and security requirements based upon the...
-
Security Control Assessor
7 days ago
Arlington, United States Maximus Services, LLC Full time**Description & Requirements** Maximus is searching for a Security Control Assessor (SCA) to join a DoD program in Arlington, VA. The Security Control Assessor is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an SAP information system to determine the...
-
Security Assessor
2 weeks ago
Arlington, United States Zermount, Inc Full timeJob DescriptionJob DescriptionSECURITY ASSESSOR - MID-LEVELMILITARY FRIENDLY & PREFERRED - HOH SPONSORAs a Mid Security Control Assessor, you will design, develop, engineer, and implement solutions. You will perform complex risk analyses which also include risk assessment. Establish and satisfy information assurance and security requirements based upon the...
-
Risk Assessor
2 weeks ago
Arlington, United States Zermount, Inc Full timeJob DescriptionJob DescriptionSENIOR RISK ASSESSORMILITARY FRIENDLY & PREFERRED - HOH SPONSORThe Senior Risk Assessor's role is to design, develop, engineer, and implement solutions. Perform complex risk analyses which also include risk assessment. This position will also establish and satisfy information assurance and security requirements based upon...
-
Risk Assessor
3 days ago
Arlington, United States Zermount, Inc Full timeJob DescriptionJob DescriptionSENIOR RISK ASSESSORMILITARY FRIENDLY & PREFERRED - HOH SPONSORThe Senior Risk Assessor's role is to design, develop, engineer, and implement solutions. Perform complex risk analyses which also include risk assessment. This position will also establish and satisfy information assurance and security requirements based upon...
-
Zero Trust Senior Auditor
2 weeks ago
Arlington, United States Zermount, Inc Full timeJob DescriptionJob DescriptionZERO TRUST SENIOR Auditor (assessor)MILITARY FRIENDLY & PREFERRED - HOH SPONSORZermount Inc. is seeking a Zero Trust (ZT) Senior Auditor (Assessor) who will be responsible for the oversight, development, and execution of assessments of our client's enterprise and systems to determine the compliance with ZT principles. The ZT...
-
Security Control Assessor
Found in: Careerbuilder One Red US C2 - 6 days ago
Arlington, VA, United States IC-CAP Full timeSecurity Control Assessor (SCA) 2: Position Description: The SCA is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an IS to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as...
-
Assessor
2 weeks ago
Arlington, United States Silo Smashers Full timeSiloSmashers, Inc. is a strategy, technology, and management consulting firm, founded in 1992, and located in Reston, Virginia. SiloSmashers delivers superior services and solutions to the public sector in the areas of project/program management, performance management, and IT security. The company provides innovative, collaborative business approaches, and...
-
Assessor
2 weeks ago
Arlington, United States SiloSmashers Full timeJob DescriptionJob DescriptionSiloSmashers, Inc. is a strategy, technology, and management consulting firm, founded in 1992, and located in Reston, Virginia. SiloSmashers delivers superior services and solutions to the public sector in the areas of project/program management, performance management, and IT security. The company provides innovative,...
-
Assessor
2 days ago
Arlington, United States SiloSmashers Full timeJob DescriptionJob DescriptionSiloSmashers, Inc. is a strategy, technology, and management consulting firm, founded in 1992, and located in Reston, Virginia. SiloSmashers delivers superior services and solutions to the public sector in the areas of project/program management, performance management, and IT security. The company provides innovative,...
-
Information System Security Officer
Found in: Dice One Red US C2 - 1 week ago
Arlington, United States Leidos Full timeR-00134168 Description Leidos is seeking high-level IT Professionals to provide Cybersecurity A&A Analyst duties within the National Military Command Center. Primary Responsibilities * Must be able to work in a constantly changing regulatory environment with short, mid, and long term timelines for remediating any non-compliance * Must be able to work well...
-
Accreditation Manager
1 week ago
Arlington, United States CareerBuilder Full timeArlington County Police Department's Office of Professional Responsibility (OPR) is hiring an Accreditation Manager to manage the Departments comprehensive accreditation program with the Commission on Accreditation for Law Enforcement Agencies (CALEA). This Manager works closely with personnel throughout the Department to ensure ongoing compliance with CALEA...
-
Compliance Officer
2 weeks ago
Arlington, United States CareerBuilder Full timeJob Description Job Description Compliance Specialist Must have at least seven (7) years of progressive experience in the information technology arena as a security analyst, security manager, system administrator or a combination of these. Must be able to simultaneously work on several I.T. system security projects requiring the analysis of complex I.T...
-
Senior Systems Administrator with Security Clearance
Found in: Dice One Red US C2 - 5 days ago
Arlington, United States SAIC Full timeDescription The Senior Systems Administrator is a crucial part in SAIC's mission to delivery leading solutions, capabilities, and resources to our customers in National Security, Defense, Federal/Civilian, and other organizations. As a member of the Classified IT Operations teams, you will be responsible for the day-to-day and continuous administration,...
-
Senior Vulnerability Assessment Analyst
2 weeks ago
North Arlington, United States Gray Tier Technologies LLC Full timeGray Tier Technologies has an immediate need for an experienced Vulnerability Assessor for a new customer on a highly-visible and strategic Cybersecurity Task Order. The VAT Analyst will need to be a self-starter with excellent analytical and problem-solving skills, flexibility, good judgment, and the ability to work within a team to stand up and mature the...
