Jobs
>
Arlington

    Security Control Assessor - Arlington, United States - Zermount, Inc

    Zermount, Inc
    Zermount, Inc Arlington, United States

    4 weeks ago

    Default job background
    Description

    Job Description

    Job Description Security Control Assessor Team Lead MILITARY FRIENDLY & PREFERRED - HOH SPONSOR

    Summary

    Zermount Inc. is seeking a Security Control Assessor Team Lead who will play a vital role in leading multiple teams on large projects. The System Security Assessment Team Lead will oversee all aspects of the Assessment Team ensuring the performance of complex risk analyses, including risk assessments. The System Security Assessment Team Lead will determine information assurance based upon the analysis of technical, user, policy, regulatory, and resource implementations. They will also support customers at the highest levels in the analysis of the implementation of doctrine and policies.

    Duties & Responsibilities

    • Serve as the liaison to System Owners for completing all Security Authorization, Preliminary Risk Assessment, and ad hoc Risk Assessment efforts.
    • Assess all applicable security controls defined in the mandated DHS Compliance tool and applicable to the systems under their purview.
    • Assess the completeness and accuracy of system a FIPS-199, Privacy Threshold Analysis (PTS), E-Authorization, Contingency Plans (CPs), Contingency Plan Tests, Security Plans.
    • Develop SA Package documentation to include Security Assessment Plans (SAP), Security Assessment Reports (SAR), ATO Letters, ATO Recommendation Memo, Risk Assessment Memos, Findings and recommended POA&M Matrices.
    • Analyze evidence for ATO efforts and store results in the mandated DHS Compliance Tool and/or in a separate customer repository.
    • Manage mini teams to ensure all SA Activities are completed.
    • Ensure results are documented completely and accurately in the mandated DHS Compliance Tool at the operating system, application and database levels.
    • Provide Recommendations for refining and/or improving existing RMF processes and procedures and support implementation of these changes.
    • In view of the remote nature of the contract, an individual, and Team Weekly Status Report and Briefing are required deliverables for tasks assigned. Must have the ability to effectively develop weekly status reports, that are consistent, well structured, answer to all the assigned management templates guidelines, and are in alignment with the task area. At a minimum the weekly status report should reflect the following: Weekly work accomplished, 2 weeks of ongoing and planned tasks, Risks, and issues impacting tasks assigned
    • The report format will be primarily MS PowerPoint and MS Project (or other MS tools as required by the management team).
    • All Deliverables shall be at a level of accuracy that does not require "return for correction" for typographical and grammatical errors. (Repetitive requests for correction by the management or Government team may result in a determination of failing to meet the basic standards for professional writing, reporting, accuracy, quality, and completeness of the contractual requirements for deliverables.)
    • Must have the ability to prepare to present, brief, and explain; all information captured in weekly status report to management and/or government client.
    • Conduct SCA and provide quality assurance and SCA expertise to other team members.

    Qualifications

    • A minimum of ten (10) years of IT cybersecurity experience including direct support for the US Government and seven (7) years actin as an ISSO, assessor, or compliance analyst for enterprise IT systems, or a relevant Master's degree in IT, Computer Science, or Engineering and seven (7) years of IT cybersecurity experience including direct support for the US Government and five (5) years acting as an ISSO, assessor, or compliance analyst.
    • Knowledge of NIST Guidelines and FISMA Cybersecurity compliance requirements.
    • Experience and knowledge of Executive Orders (EO's), Office of Management and Budget (OMB) Memorandums, Federal, DoD and CISA Technical Reference Architectures, Maturity Models, NIST guidance, FISMA, Cloud, and Risk Management Framework (RMF). Knowledge of NIST Guidelines and FISMA Cybersecurity compliance requirements.
    • Technical knowledge of complex enterprise IT systems
    • Knowledge of and experience using relevant cybersecurity and analysis tools such as Archer, Tenable, Nessus Security Center, Splunk, etc.
    • Experience communicating effectively, both oral and written, with technical, non-technical, and executive-level customers.
    • Understanding of zero trust principles is beneficial but not required.
    • Proficient in risk assessment methodologies and security architecture frameworks.
    • Technical knowledge of complex enterprise IT systems.
    • Experience with cloud-based environments and technologies is preferred.
    • Knowledge of common cybersecurity threats, risks, and vulnerabilities and how to mitigate them.
    • Excellent communication skills, with the ability to explain complex concepts in a clear, concise manner.
    • Technical knowledge of IT systems and implementation of security controls.
    • Strong problem-solving skills, proactive attitude towards identifying potential issues and implementing solutions.
    • The ability to organize and motivate a project team.
    • Must be able to conduct system analysis to detect issues with performance.

    Education

    Master's degree preferable but professional experience is Permitted:

    • A relevant master's degree in IT, Computer Science, or Engineering and 7 years of IT cybersecurity experience including direct support for the US Government and 5 years acting as an ISSO, assessor, or compliance analyst for enterprise IT systems OR
    • A minimum of 10 years of IT cybersecurity experience including direct support for the US Government and 7 years acting as an ISSO, assessor, or compliance analyst for enterprise IT systems.

    Certifications and Training (Required)

    At least one of the following security certifications:

    · Certified Authorization Professional (CAP)

    · Certified Information Systems Security Officer (CISSO)

    · Certified Information Security Manager (CISM)

    · Certified Information Systems Security Professional (CISSP)

    Clearance Level

    Minimum of active Secret Clearance.

    Work Location

    Remote

    Hours of Operation

    Business Hours: 9:00 am EST - 5:00 pm EST.

  • General Infomatics, Inc.

    security control assessor

    6 days ago

    General Infomatics, Inc. Arlington, United States

    At General Infomatics, Inc. we pride ourselves on providing program support, healthcare services, strategic technology solutions, and knowledge management to US government agencies worldwide, under standards of integrity, trust, and a commitment to excellence. · We are looking f ...

  • Maximus, Inc.

    Security Control Assessor

    1 day ago

    Maximus, Inc. Arlington, United States

    Maximus is searching for a Security Control Assessor (SCA) to join a DoD program in Arlington, VA. The Security Control Assessor is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls Assessor, Control, Information ...

  • MAXIMUS

    Security Control Assessor

    1 week ago

    MAXIMUS Arlington, United States

    & Requirements · Maximus is searching for a Security Control Assessor (SCA) to join a DoD program in Arlington, VA. · The Security Control Assessor is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed ...

  • MAXIMUS

    Security Control Assessor

    1 week ago

    MAXIMUS Arlington, United States

    · General information · Job Posting Title · Security Control Assessor · Date · Thursday, June 13, 2024 · City · Arlington · State · VA · Country · United States · Working time · Full-time · Description & Requirements · Maximus is searching for a Security Control Assessor (SCA) t ...

  • MAXIMUS, Inc.

    Security Control Assessor

    1 week ago

    MAXIMUS, Inc. Arlington, United States

    & Requirements · Maximus is searching for a Security Control Assessor (SCA) to join a DoD program in Arlington, VA. · The Security Control Assessor is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed wi ...

  • VetJobs

    security control assessor

    2 weeks ago

    VetJobs Arlington, United States

    Job Description · At General Infomatics, Inc. we pride ourselves on providing program support, healthcare services, strategic technology solutions, and knowledge management to US government agencies worldwide, under standards of integrity, trust, and a commitment to excellence. ...

  • MAXIMUS

    Security Control Assessor

    2 weeks ago

    MAXIMUS Arlington, United States

    Job Description Summary · Maximus is searching for a Security Control Assessor (SCA) to join a DoD program in Arlington, VA. The Security Control Assessor is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls emp ...

  • General Infomatics, Inc.

    security control assessor

    2 days ago

    General Infomatics, Inc. Arlington, United States

    Job Description · Job DescriptionAt General Infomatics, Inc. we pride ourselves on providing program support, healthcare services, strategic technology solutions, and knowledge management to US government agencies worldwide, under standards of integrity, trust, and a commitment t ...

  • NES Associates

    Security Control Assessor

    1 week ago

    NES Associates Washington, United States

    Type of Requisition: · Regular · Clearance Level Must Currently Possess: · Top Secret/SCI · Clearance Level Must Be Able to Obtain: · Top Secret SCI + Polygraph · Suitability: · Public Trust/Other Required: · Job Family: · Information Security · Job Qualifications: · Skills: · In ...

  • Global Resource Solutions

    Security Control Assessor II

    1 day ago

    Global Resource Solutions Arlington, United States

    Global Resource Solutions, Inc. (GRS) is seeking an enthusiastic, motivated, detail orientated, and talented individual for the position of Security Control Assessor II. · Job Description: · Summary: The SCA is responsible for conducting a comprehensive assessment of the manageme ...

  • Graham Technologies

    Lead Security Control Assessor

    1 week ago

    Graham Technologies Washington, United States

    Job Overview: · Graham Technologies (GTECH) is seeking a Lead Security Control Assessor whose primary duties will be to ensure that all requirements for assessment in compliance with NIST are being met. · You will be happy to know that this is a hybrid position. The work locatio ...

  • McIntire Solutions, LLC

    Security Control Assessor

    1 week ago

    McIntire Solutions, LLC Bethesda, United States

    Title: Security Control Assessor · Location: Bethesda, MD · McIntire Solutions is seeking a Security Control Assessor to support our Bethesda Customer. · Responsibilities include, but are not limited to: Three (3) years of cybersecurity experience with at least one year of exp ...

  • MAXIMUS

    Security Control Assessor

    2 weeks ago

    MAXIMUS Arlington, United States

    · General information · Job Posting Title · Security Control Assessor (SCA) · Date · Friday, April 26, 2024 · City · Arlington · State · VA · Country · United States · Working time · Full-time · Description & Requirements · Maximus is searching for a Security Control Assessor (S ...

  • Tau Six

    Security Control Assessor

    2 weeks ago

    Tau Six Arlington, United States

    Join a fast growing agile small company that delivers cutting edge cybersecurity and system integration services to the US National Security market. We are seeking a motivated self-starter with experience in secure information systems to join a team of security professionals and ...

  • Bluehawk

    Security Control Assessor

    2 weeks ago

    Bluehawk Arlington, United States

    Overview · BLUEHAWK, LLC is a professional services firm providing intelligence, information technology, language, and training services to the U.S. Government and commercial entities with objectives to protect and defend our nation, citizens, natural resources, critical Infrast ...

  • Maximus Services, LLC

    Security Control Assessor

    1 week ago

    Maximus Services, LLC Arlington, United States

    **Description & Requirements** · Maximus is searching for a Security Control Assessor (SCA) to join a DoD program in Arlington, VA. · The Security Control Assessor is responsible for conducting a comprehensive assessment of the management, operational, and technical security cont ...

  • Maximus Services, LLC

    Security Control Assessor

    4 weeks ago

    Maximus Services, LLC Arlington, United States

    **Description & Requirements** · Maximus is searching for a Security Control Assessor (SCA) to join a DoD program in Arlington, VA. · The Security Control Assessor is responsible for conducting a comprehensive assessment of the management, operational, and technical security cont ...

  • G-Force Solutions

    Security Control Assessor

    2 weeks ago

    G-Force Solutions Arlington, United States

    Position Overview · The Security Control Assessor must fulfill a variety of cybersecurity functions, to include: System Administrator, Enterprise Oversight, certification and accreditation, SAP and SCI assessment and authorization (A&A), Platform Information Technology (PIT) ass ...

  • System High Corp

    Security Control Assessor

    2 weeks ago

    System High Corp Arlington, United States

    Job Details · Job Location · ARLINGTON, VA 3 (DARPA) - Arlington, VA · Position Type · Full Time · Job Shift · Day · Description · Position Overview · The Security Control Assessor must fulfill a variety of cybersecurity functions, to include: System Administrator, Enterpr ...

  • Protek Consulting

    Junior Security Control Assessor

    3 weeks ago

    Protek Consulting Washington, United States

    Job Description · Job DescriptionTo be considered for this role, you must have an active Top Secret clearance and be willing to work on-site in Washington, D.C. 4 days per week while working 1 day remotely. · Responsibilities · Execute assessment support according to plans and g ...