Security Control Assessor, Lead
3 weeks ago
Overview:
**SUMMARY**
Bering Global Solutions, LLC, a subsidiary of Bering Straits Native Corporation is currently seeking a qualified Security Control Assessor, Lead for a government client in Washington, DC. The selected individual will guide system owners, designated IT security personnel in the program offices, and other staff in fulfilling Federal Information Security Management Act (FISMA) requirements. The Security Control Assessor, Lead works to analyze, plan, and execute the work necessary to ensure the confidentiality, integrity and availability of the federal client’s IT systems, network, and data through the planning, analysis, development, implementation, maintenance, and enhancement of information systems security programs, policies, procedures and tools.
**Responsibilities**:
**ESSENTIAL DUTIES & RESPONSIBILITIES**
- The Essential Duties and Responsibilities are intended to present a descriptive list of the range of duties performed for this position and are _not_ intended to reflect all duties performed within the job. Other duties may be assigned. _
- Plan, develop, review and maintain baselines for client’s information system to such as, System Security Plans, Software & Hardware Boundaries Documents and Diagrams, Control Implementation Matrix, Inheritance and Overlay Memos, Security Assessment and Authorization artifacts and ATO packages.
- Lead and facilitate meetings with system owners, executive management, staff, and contract partners and technical personnel to provide IT security guidance, define system boundaries, and establish and maintain information security standards and procedures in compliance with information security and risk management policies, standards, and guidelines.
- Plan, develop, and conduct vulnerability and compliance scans, contingency plan testing, and risk assessment on client’s information systems. Analyze results to identify and mitigate risk to IT systems, identify training opportunities, and update and improve information systems documentation in accordance with client’s IT security policies and System Security Plan (SSP).
- Participate in internal and external reviews, inspections, Security Assessments and Authorizations and audits to ensure compliance with federal laws, client’s security policy as well as FISMA and NIST requirements.
- Provide expert security advice to system development organizations to ensure adequate security controls are included in each system lifecycle phase.
- Lead remediation efforts when security controls are insufficient, weaknesses are identified in network security configurations, and vulnerabilities deviate from client’s security policy or federal guidelines by recommending corrective actions to mitigate identified deficiencies and developing POAMs.
- Review and analyze information system audit records for unusual or potentially unauthorized activity. Conduct investigations into activities which are in violation of system and organization security policies.
- Incorporate organizational continuous monitoring solutions into information system operations. Ensure compliance with client’s continuous monitoring policies and procedures.
Qualifications:
**QUALIFICATIONS - EXPERIENCE, EDUCATION AND CERTIFICATION**
- To perform this job successfully, an individual must be able to satisfactorily perform each essential duty. The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions._
**Required (Minimum) Qualifications**
- Basic-level understanding of basic computer and networking technologies:
- TCP/IP stack
- Windows operating systems
- Linux/Unix-based operating systems
- Networking technologies (routing, switching, VLANs, subnets, firewalls)
- Common networking protocols - SSH, SMB, SMTP, FTP/SFTP, HTTP/HTTPS, DNS, etc
- Common enterprise technologies - Active Directory, Group Policy, VMware vSphere
- Moderate-level understanding of IT security principles, technologies, best practices, and NIST guidance
- Logical Access Control
- PKI and other encryption method
- DISA STIG Security configuration baselines
- Auditing
- Vulnerability discovery and management
- NIST SP 800-53 rev. 4 control
- ** Must be Certified Information Systems Security Professional (CISSP) Certified**:
- Excellent communications skills. Ability to communicate with senior management and federal client staff - both technical and non-technical - in a clear and concise manner using proper spelling, punctuation and grammar.
- Mastery of federal IT security laws such as the Federal Information Security Management Act (FISMA), policies, regulations, requirements, Executive Orders and Presidential Decision Directives such as EO 13556, HSPD12, OMB Memos M-06-16, and M-07-16; NIST 800 series, the federal IT security and incident reporting hierarchy.
- Knowledge and experience in categorizing systems per
-
Security Control Assessor
2 weeks ago
Washington, United States Gen3 Technology Consulting Full timeJob DescriptionJob DescriptionAbout us: Gen3 Technology Consulting is an SBA-certified Woman-Owned Small Business (WOSB) providing a diverse set of technology services and solutions to federal and commercial clients. Founded in 2017, Gen3 leverages over 25 years of information technology management and leadership experience to help our clients define,...
-
Security Control Assessor
5 days ago
Washington, United States Gen3 Technology Consulting Full timeJob DescriptionJob DescriptionAbout us: Gen3 Technology Consulting is an SBA-certified Woman-Owned Small Business (WOSB) providing a diverse set of technology services and solutions to federal and commercial clients. Founded in 2017, Gen3 leverages over 25 years of information technology management and leadership experience to help our clients define,...
-
Security Control Assessor
2 weeks ago
Washington, United States Allen Integrated Solutions Full timeJob DescriptionJob DescriptionSecurity Control Assessor (SCA), Level 3TS/SCI/POLY RequiredSecurity Control Assessor (SCA) QualificationsA Security Control Assessor (SCA) is a security professional that provides information security Assessment and Authorization (A&A) support throughout a program's lifecycle to Contractor and Government facilities...
-
Security Control Assessor II
Found in: Talent US C2 - 4 hours ago
Washington, United States Goldbelt, Inc. Full timeOverview Goldbelt Hawk designs, develops, and implements comprehensive solutions for problem spaces, including computer security, scalable architectures, advanced analytics, artificial intelligence, and network/data center operations. Specializing in local and enterprise-level incident response and forensic analysis, Hawk's personnel deliver threat...
-
Security Control Assessor I
4 days ago
Washington, United States Global Resource Solutions, Inc. Full timeGlobal Resource Solutions, Inc. (GRS) is seeking an enthusiastic, motivated, detail orientated, and talented individual for the position of Security Control Assessor I. **Job Descriptio**n**: **Summary**: The SCA is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or...
-
Security Assessor
2 weeks ago
Washington, United States Swingtech Full timeJob DescriptionJob DescriptionLocation: Washington DC (onsite four days a week with one telework day)Shall work eight (8) hours a day anytime between 6:00 AM and 6:00 PM ET, Monday through FridayAbout Swingtech Consulting, Inc.Swingtech Consulting, Inc. provides technology and management consulting services for the federal, state, and local government. Our...
-
FedRAMP Senior Assessor with Security Clearance
Found in: Dice One Red US C2 - 2 weeks ago
Washington, United States Excentium, Inc. Full timeExcentium, Inc. is a Service-Disabled Veteran owned small business that provides Cyber Security Engineering, Information Assurance (IA), management, Certification and Accreditation (C&A), and other IT services to government and commercial organizations. We have an opportunity for a FedRAMP Senior Assessor supporting our Cybersecurity Compliance Team in the...
-
Security Control Assessor
Found in: Careerbuilder One Red US C2 - 7 days ago
Washington, DC, United States IC-CAP Full timeSecurity Control Assessor (SCA) 1: Position Description: The SCA is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an IS to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as...
-
Security Control Assessor
Found in: Careerbuilder One Red US C2 - 6 days ago
Washington, DC, United States IC-CAP Full timeSecurity Control Assessor (SCA) 1: Position Description: The SCA is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an IS to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as...
-
ISSO Team Lead
Found in: beBee jobs US - 3 weeks ago
Washington, Washington, D.C., United States cFocus Software Incorporated Full timecFocus Software seeks an ISSO Team Lead to join our program supporting USDHS at the Freedom Center in Herndon, Virginia. This position has remote capabilities. This position requires an active Secret clearance and must meet 8570 requirements.Qualifications:Bachelor's Degree or equivalent experience in a computer, engineering, or science field.Active Secret...
-
Security Control Assessor
Found in: Dice One Red US C2 - 1 week ago
Washington, United States System High Corporation Full timeDescription The SCA is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an IS to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome...
-
Information System Security Officer with Security Clearance
Found in: Dice One Red US C2 - 2 weeks ago
Washington, United States Peraton Full timeAbout Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our...
-
Security Control Assessor
Found in: Careerbuilder One Red US C2 - 7 days ago
Washington, DC, United States System High Corporation Full timeDescription The SCA is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an IS to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome...
-
Senior Cyber Security Systems Engineer with Security Clearance
Found in: Dice One Red US C2 - 2 weeks ago
Washington, United States VTG Full timeOverview VTG is is seeking a Senior Cyber Security Systems Engineer , Weapon Systems Cybersecurity professional to join our team. You will provide security engineering, assessment, and weapon systems security oversight activities that support complex weapon systems at Joint Base Anacostia DC. What will you do? The position will provide direct security...
-
Cyber Security Systems Engineer
1 day ago
Washington, United States Velos Full timeVelos is a full-service engineering and technical services and government relations consulting firm representing leaders in the defense, aerospace, intelligence, and related industries. As an SBA-certified HUBZone company, Velos incorporates technical prowess into the execution of corporate strategies and business development experience, providing clients...
-
Cyber Security Systems Engineer
2 weeks ago
Washington, United States Velos Full timeVelos is a full-service engineering and technical services and government relations consulting firm representing leaders in the defense, aerospace, intelligence, and related industries. As an SBA-certified HUBZone company, Velos incorporates technical prowess into the execution of corporate strategies and business development experience, providing clients...
-
Senior Cyber Security Systems Engineer
2 weeks ago
Washington, United States CareerBuilder Full timeOverview VTG is is seeking a Senior Cyber Security Systems Engineer , Weapon Systems Cybersecurity professional to join our team. You will provide security engineering, assessment, and weapon systems security oversight activities that support complex weapon systems at Joint Base Anacostia DC. What will you do? The position will provide direct security...
-
Domestic Security Assistant
Found in: beBee jobs US - 2 weeks ago
Washington, Washington, D.C., United States Inter - Con Security Systems Inc Full timeJob DetailsDescription OverviewFounded in 1973, Inter-Con Security Systems, Inc. is a leading US-owned security company, providing integrated security solutions to government and commercial customers on four continents.Inter-Con remains under family ownership and control and operates as the industry leader in the field of customized, high-requirement...
-
Information System Security Officer with Security Clearance
Found in: Careerbuilder One Red US C2 - 6 days ago
Washington, DC, United States Peraton Full timeAbout Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxyAs the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our...
-
Information Systems Security Manager/Officer
5 days ago
Washington, United States Watershed Security Full timeCOMPANY OVERVIEW Watershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment. We are growing fast and strive to deliver our vision every day: “To inspire trust and respect with our...
