Security Assessment Specialist

2 months ago

Silver Spring, United States Zen Strategics LLC Full time
Job DescriptionJob DescriptionDescription:

About Zen:

Own your opportunity to work with a client-focused agile small business. Make an impact by advancing our government organizations charged with keeping our country safe, prosperous, and secure. Zen Strategics, LLC is a cleared, minority-owned SBA 8(a) specialized consulting firm, offering innovative Cybersecurity, Cloud Migration, and Information Technology Modernization. We are a leading organization committed to delivering innovative solutions and ensuring the highest standards of security for our customers' digital assets. We are dedicated to staying ahead of evolving cyber threats and protecting our clients' data with cutting-edge technologies and proactive security measures.??


Position Description:

Seize your opportunity to make a personal impact as a Security Assessment Specialist. Zen is your place to make meaningful contributions to challenging projects and grow a rewarding career. As a Security Assessment Specialist, you will be responsible for ensuring the accurate and timely accomplishment of our client’s security controls assessments in accordance with DOC, NOAA, and NWS policies and procedures for implementation of the Risk Management Framework. This position is a key member of our client delivery Assessment and Authorization (A&A). We are actively seeking a highly proficient Security Assessment Specialist able to with general guidance conduct assessments on Cloud systems, blended On Prem systems with cloud components, including combinations of Software as a Service (SAAS), Platform as a Service (PAAS) and Infrastructure as a Service (IAAS) topologies. Cloud services are from various vendors (Microsoft (MS) Azure, Google Cloud, Amazon Web Services (AWS), along with scheduling penetration tests. Position requires being present during core business hours of 9:00 AM to 3:00 PM and cannot begin work any earlier than 7 AM. Work is authorized to be performed from a remote location 2-3 days a week. However, be able to be onsite with as little as 24 hours' notice.

Requirements:

Responsibilities:

As a Security Assessment Specialist, you’ll be Zen’s expert, developing and implementing security standards and best practices for cloud infrastructure and solutions in AWS, Azure, OCI, and GCP cloud platforms hosted in FedRAMP and FedRAMP environments. You’ll assist the ISSM in meeting their duties and responsibilities by scheduling, preparing, reviewing, and updating authorization packages. You’ll ensure approved procedures are in place for clearing, sanitizing, and destroying various types of hardware and media. Notify ISSM when changes occur that might affect the authorization determination of the information system(s). Conduct periodic reviews of information systems to ensure compliance with the security authorization package. Coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM and AO/DAO prior to the change. Analyze, plan, and develop projects plans as directed by NWS ISSM. Determines and defines clear deliverables to meet requirements and customer requests. Builds and maintains internal relationships with IT process owners supporting the service and assists with the definition and agreement of Operating Level Agreements. Coordinate with Operations and Maintenance (O&M) teams to drive compliance with Security Controls and requirements.

Required Education/ Qualifications:

  • Education: BS in Information Technology, Project Management, or Cybersecurity preferred
  • Experience:
  • Knowledge of DOC, NOAA, and NWS IT security policies and implementation standards or those of similar sized organizations AND comprehensive understanding of NIST guidance to include, but not limited to, NIST Special Publications and Federal Information Processing Standards.
  • At least 5 years of recent experience (within the last 6 years) in applying IT security concepts, methodologies, principles, procedures and using industry-standard IT security tools.
  • At least 5 years of recent experience (within the last 6 years) with enterprise architecture methodologies, concepts, procedures, principles, and tools.
  • At least 5 years of recent experience (within the last 6 years) in contingency planning and backup and recovery best practices and application of NIST guidance in this area.
  • At least 5 years of recent experience (within the last 6 years) in using technical testing tools (Tenable Security Center, ArcSight, IBM Big Fix, etc.).
  • At least 5 years of recent experience (within the last 6 years) in conducting penetration testing or the ability to bring in a penetration tester when required.
  • At least 5 years of performing assessments of Federal Information Systems using the Risk Management Framework.
  • US Citizenship Required.
  • Certifications: Possess at least one of the following professional certifications required by DOC Enterprise Cybersecurity Policy (ECP) Annex C-1: Information System Security Training for Significant Roles for a Certification Agent/Security Controls Assessor:
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Systems Auditor (CISA)
  • GIAC Certified Incident Handler (GCIH)
  • GIAC Systems and Network Auditor (GSNA)
  • Electronic Commerce Council Certified Ethical Hacker (CEH)
  • ISC2 Certified in Governance, Risk and Compliance (CGRC)
  • Security Certified Network Professional (SCNP)
  • Security Certified Network Architect (SCNA)

If you do not possess one of the certifications above, you must provide documentation showing you have already taken training and copy examination scheduled. You must pass the exam within six months of joining Zen Strategics.

  • Strong written and verbal communication and collaborative team interpersonal skills.
  • Ability to manage multiple projects simultaneously.
  • Proficiency in interview skills
  • Proficiency in interpersonal skills.
  • Proficiency in handling multiple tasks concurrently.
  • Successful completion of background investigation without any adverse findings are required. Knowledge of and experience with the technical and administrative information system security requirements for high impact, high availability systems in government organizations is required.

Zen Serenity:

  • Security Assessment Specialist

    2 weeks ago

    Spring Hills, Texas, United States Collabera Full time

    Position OverviewType: ContractCompany: CollaberaKey Responsibilities:As a Security Assessment Specialist, you will be responsible for conducting comprehensive penetration testing engagements. Your expertise will be crucial in identifying vulnerabilities within various systems and applications.Required Qualifications:1. A minimum of 3 years of experience in...

  • Cyber Security Specialist

    5 days ago

    Silver Spring, Maryland, United States OCT Consulting, LLC Full time

    About the RoleOCT Consulting, LLC is a leading provider of management and technology consulting services to the federal government. We are seeking a highly skilled Cyber Security Specialist to join our team.Key ResponsibilitiesSupport the Risk Management Framework for a federal government client and ensure compliance with FISMA policies and...

  • Junior Cyber Security Specialist

    4 weeks ago

    Silver Spring, United States OCT Consulting, LLC Full time

    Job DescriptionJob DescriptionOCT Consulting, LLC is an SBA-certified, 8(a) small business management and technology consulting firm that provides support to Federal Government clients. We provide consulting services in the areas of Strategy, Process Improvement, Change Management, Program and Project Management, Acquisition/Procurement, and Information...

  • Junior Cyber Security Specialist

    1 month ago

    Silver Spring, United States OCT Consulting, LLC Full time

    Job DescriptionJob DescriptionOCT Consulting, LLC is an SBA-certified, 8(a) small business management and technology consulting firm that provides support to Federal Government clients. We provide consulting services in the areas of Strategy, Process Improvement, Change Management, Program and Project Management, Acquisition/Procurement, and Information...

  • Security Specialist

    5 days ago

    Silver Spring, Maryland, United States Target Full time

    About TargetTarget is a Fortune 50 company with over 400,000 team members worldwide, operating as one of America's leading retailers. Our purpose is to help all families discover the joy of everyday life by providing a shopping experience that meets their needs. We prioritize relationships, fuel growth opportunities, and succeed as one Target team.About...

  • Software Security Specialist

    2 weeks ago

    Silver Spring, Maryland, United States EagleBank Full time

    Overview EagleBank is a values-driven institution that prioritizes Relationships FIRST. Our focus is on being Flexible, Involved, Responsive, Strong, and Trusted. By fostering meaningful connections with our clients, team members, and stakeholders, we are dedicated to delivering exceptional, valuable services to our community. Founded to cater to the...

  • Security Specialist

    1 week ago

    Silver Spring, Maryland, United States Triple Canopy Full time

    Job SummaryWe are seeking a highly skilled and experienced Security Specialist to join our team at Triple Canopy. As a Security Specialist, you will be responsible for providing security services to our clients and ensuring the safety and security of our personnel and property.Key ResponsibilitiesProvide armed security services to clients in high-risk...

  • Security Operations Specialist

    2 days ago

    Silver Spring, Maryland, United States Target Full time

    Job Summary:As a Security Specialist at Target, you will play a critical role in maintaining a secure work environment for all employees, temporary workers, vendors, and visitors. Your primary responsibility will be to contribute to the development of a secure work environment by executing routines to identify and investigate theft.Key...

  • Security Specialist III/IV

    2 months ago

    Silver Spring, Maryland, United States The Aerospace Corporation Full time

    Security Specialist Job Opportunity at Aerospace CorporationAerospace Corporation is a leading partner in the nation's space programs, offering advanced technical expertise and innovative solutions. As a federally funded research and development center, we work on a wide range of space-related projects for defense, civil, and commercial clients. Join our...

  • Security Training and Awareness Specialist

    2 weeks ago

    Silver Spring, Maryland, United States Children's National Health System Full time

    Overview: Children's National Health System is in search of a skilled and motivated Mid-Level Security Training and Awareness Specialist to enhance our cybersecurity team. Role Summary: The successful candidate will possess a robust foundation in information security and a commitment to educating and empowering staff to identify and react to security risks....

  • Information Security Analyst

    2 weeks ago

    Silver Spring, Maryland, United States OCT Consulting, LLC Full time

    Job OverviewOCT Consulting, LLC is a certified small business management and technology consulting firm, recognized by the SBA as an 8(a) entity, dedicated to providing exceptional support to Federal Government clients. Our expertise spans various domains including Strategy, Process Enhancement, Change Management, Program and Project Management, Procurement,...

  • Information Security Analyst

    2 weeks ago

    Silver Spring, Maryland, United States OCT Consulting, LLC Full time

    Company OverviewOCT Consulting, LLC is a recognized small business management and technology consulting firm, certified by the SBA as an 8(a) entity, dedicated to providing exceptional support to Federal Government clients. Our expertise spans various domains including Strategy, Process Enhancement, Change Management, Program and Project Management,...

  • IT Security Compliance Consultant

    2 weeks ago

    Silver Spring, Maryland, United States OCT Consulting, LLC Full time

    Company OverviewOCT Consulting, LLC is a recognized small business management and technology consulting firm, certified by the SBA as an 8(a) entity, dedicated to providing exceptional support to Federal Government clients. Our expertise spans various domains including Strategy, Process Optimization, Change Management, Program and Project Management,...

  • Cyber Security Specialist

    4 days ago

    Silver Spring, Maryland, United States OCT Consulting, LLC Full time

    About the RoleOCT Consulting, LLC is seeking a highly skilled Cyber Security Specialist to join our team. As a Cyber Security Specialist, you will play a critical role in supporting the Risk Management Framework for a Federal Government client and ensuring compliance with FISMA policies and regulations.Key ResponsibilitiesSupport the Risk Management...

  • Information Security Specialist IV

    7 days ago

    Silver Spring, Maryland, United States eSimplicity Full time

    About eSimplicityeSimplicity is a leading digital services company dedicated to enhancing the health and well-being of millions of Americans while supporting national security interests.We prioritize transforming the healthcare experience through cutting-edge technologies, focusing on cloud migration, AI models, and data access.Job Description:We are seeking...

  • Cloud Computing Specialist- Sr Security Control Engineer

    2 weeks ago

    Silver Spring, United States Cherokee Nation Businesses Full time

    Job DescriptionCloud Computing Specialist- Sr Security Control Engineer This position requires an active Public Trust clearance or the ability to obtain a Public Trust clearance to be considered. We're seeking a highly motivated Senior Cloud Computing Specialist to join our team in Silver Springs, MD. You'll leverage your expertise in AWS cloud design,...

  • Administrative Security Specialist

    4 weeks ago

    Silver Spring, United States Ardent Eagle Solutions Full time

    About Us: Are you ready to join an exceptional team that's rewriting the future of national security and global impact? Welcome to Ardent Eagle Solutions (AES), a dynamic and rapidly expanding small business that's at the forefront of supporting the Federal Government, Department of Defense (DoD), and Intelligence Community (IC) on a global scale. At AES,...

  • Cybersecurity Support Specialist

    2 weeks ago

    Silver Spring, Maryland, United States OCT Consulting, LLC Full time

    Job OverviewOCT Consulting, LLC is a recognized small business management and technology consulting firm, dedicated to providing exceptional support to Federal Government clients. Our expertise spans across various domains including Strategy, Process Optimization, Change Management, Program and Project Management, Procurement, and Information Technology.Key...

  • Cybersecurity Specialist IV

    7 days ago

    Silver Spring, Maryland, United States eSimplicity Full time

    About eSimplicityeSimplicity is a leading digital services company dedicated to enhancing the health and well-being of millions of Americans while supporting national security interests.We prioritize transforming the healthcare experience through cutting-edge technologies, focusing on cloud migration, AI models, and data access.Job Description:We are seeking...

  • Cybersecurity Specialist

    4 weeks ago

    Silver Spring, United States CYBERRX INC Full time

    Job DescriptionJob DescriptionJob descriptionWe are seeking a skilled and experienced Cybersecurity Specialist to support and maintain our Cybersecurity Maturity Model Certification (CMMC) compliant infrastructure and support CMMC assessments. The successful candidate will play a critical role in ensuring our technical environment meets the stringent...