Security Controls Assessor Representative - San Diego, United States - Peregrine Technical Solutions

Description

Peregrine is a pioneer within the cybersecurity industrial control systems and the Internet of Things, supporting many federal and commercial customers.

Peregrine's experienced staff knows the cybersecurity and operational technology environment and provides these capabilities for our customers daily.


Summary:

The Security Control Assessor Representative will perform a risk-based review and evaluation A&A process for classified systems to evaluate System Security Plans (SSPs) leading to an authorization decision.

Essential Job Functions:

• Maintain expertlevel knowledge of all National Institute of Standards and Technology (NIST) Special Publication (SP Security Controls.
• Maintain working knowledge of Department of Defense (DoD), Defense Counterintelligence Security Agency (DCSA), and NIST Risk Management Framework (RMF) guidance and policies.
• Perform SSP reviews in accordance with the plan.
• Use critical thinking to aid decisionmaking and highlight paths that will help achieve desired outcomes during riskbased analysis.
• Assess SSPs, document the findings, and make recommendations.
• Review and evaluate Assessment and Authorization (A&A) artifacts in submission documentation.
• Provide information security services such as system security documentation evaluation and other support activities connected with the implementation of the Risk Management Framework (RMF).
• Evaluate system security package submissions for authorization of classified systems against defined DCSA and Government technical standards.
• Acquire and maintain National Industrial Security Program (NISP) Enterprise Mission Assurance Support Service (eMASS) account for daily use.
• Attend and participate in training on the NISP eMASS tool.
• Be familiar with the NIST RMF and be able to process and track packages through the NISP eMASS.
• Use NISP eMASS as an approved repository for artifacts and Plans of Action and Milestones (POA&M).
• Provide written documentation for each SSP review that includes:
• A summary of actions taken as part of the review, including dates and names when applicable.
• Quantitative measurements that capture and evaluate communications and information technology support, identify trends, and measure performance relative to SSP reviews.
• Analysis of the review.
• Clear rationale for outcomes and defensible recommendations.
• Sufficient information to enable the Government to assess and authorize decisions.

-
Necessary Skills and Knowledge:

• Proficiency in Microsoft Office Suite.

Minimum Qualifications:

• Bachelors degree in Information Technology or Engineering preferred OR equivalent years of experience.
• Minimum 2 years of Cybersecurity experience.
• Certified at IAT Level II (CCNA Security, CSA+, GICSP, GSEC, Security+ CE, SSCP).
• Pass an employer background check.
• Must possess an Active Secret clearance with the DoD Preferred Qualifications.
• Solid client service, time management, and leadership skills as well as written and verbal communication skills.

Job Types:
Full-time, Contract


Pay:
$60, $80,000.00 per year


Benefits:

• 401(k)
• Dental insurance
• Flexible spending account
• Health insurance
• Health savings account
• Life insurance
• Paid time off
• Vision insurance

Experience level:

• 2 years

Schedule:

• 8 hour shift

People with a criminal record are encouraged to apply


Experience:

• Cybersecurity: 2 years (required)
• Information security: 1 year (required)

Security clearance:

• Secret (required)

Ability to Relocate:

• San Diego, CA: Relocate before starting work (required)

Work Location:
In person