- Establish procedures & processes to ensure tracking and mitigation of risks identified during the ATO process.
- Provide data categorization guidance to system owners
- Develop and update Interconnection Security Agreement documentation as needed.
- Support customer responses to ongoing information system audits.
- Develop and update System Security Plans (SSPs) and supporting documentation.
- Assisting with tailoring of security control baselines for general support system and other FISMA reportable systems, including cloud systems utilizing FedRamp controls
- Collecting and validating control implementation statements from subject matter experts.
- Oversee development of security and privacy control implementation statements per NIST SP and agency security policy standards.
- Assist with the migration to NIST SP Rev 5, identifying gaps and providing understanding of new requirements to technical teams for implementation
- Conduct security reviews for changes impacting hardware, software, baselines, connections, or applications.
- Review and assess POA&M outputs, recommending additional work or closure.
- Support the continuous monitoring program as necessary when Information System Continuous Monitoring (ISCM) results will be used to support continuing authorization requirements or ongoing authorizations.
- Document and communicate control deficiencies for POA&M consideration.
- Assist in developing security policies, ensuring compliance, and updating documentation.
- Provide information for status reports, briefings, schedules, and project plans in written and oral form.
-
Front office Lead
1 week ago
Optima Global Solutions Inc. Washington, United StatesOptima Global Solutions a valuable IT Services and Solution provider that customers, employees, and stakeholders feel proud to be associated with. Optima's Intelligent Automation Solutions leverage robotic process automation, intelligent data capture, and business process manage ...
-
Lead School Resource Officer
1 week ago
Inter-Con Security Washington, United StatesJob Details · Job Location · Washington DC Washington, DC · Salary Range · $ $31.00 Hourly · Description · Overview · Founded in 1973, Inter-Con Security Systems, Inc. is a leading US-owned security company, providing integrated security solutions to government and commercia ...
-
Information System Security Officer Lead
2 weeks ago
Science Applications International Corporation Washington, United StatesSAIC is looking for an experienced Information System Security and Privacy Officer (ISSPO) to join our team supporting an important US government agency in the National Capital Region. This is an exciting opportunity to work with a team responsible f Security Officer, Officer, In ...
-
Senior Investment Officer Climate Lead
1 day ago
The World Bank Group Washington, United StatesEstablish, build, and maintain strong relationships with stakeholders in the global venture ecosystem that are active in climate tech investing, including early and late stage start-ups, V - Cs, corporate and strategic investors and development partn Climate, Investment, Officer, ...
-
Director, Membership Sales
3 weeks ago
NAW Washington, United StatesOrganization Summary · The National Association of Wholesaler-Distributors (NAW), the Washington, DC-based trade association representing the 35,000 company, $8.2 trillion revenue distribution industry, is seeking an experienced, innovative, and motivated sales professional to jo ...
-
Inova Health System Washington, DC, United StatesInova Health System is seeking a Registered Nurse (RN) ED - Emergency Department Supervisor for a nursing job in Washington, District of Columbia. · Job Description & Requirements · Specialty: ED - Emergency Department · Discipline: RN · Start Date: ASAP · Duration: Ongoing · Shi ...
-
Director of Residence Experience
2 days ago
Inspir Embassy Row, LLC Washington, United States Full timeJob Title: Director of Resident Experience · Location: Washington D.C. · Employment Type: Full-Time · Salary Range: $75,000 - $90,000 · Department: Activities · About Us: · Maplewood Senior Living, is a leading operator of premier senior living communities across 5 states an ...
-
The George Washington Medical Faculty Associates Washington, United States Full timeThe GW Medical Faculty Associates (MFA) was incorporated in July 2000 as a not-for-profit, physician-led practice group. The organization functioned as an independent organization in support of The George Washington University School of Medicine and Sciences as a multi-specialty ...
-
Registered Nurse
1 week ago
George Washington University Hospital Washington, DC, United States Full timeGeorge Washington University Hospital is seeking a Registered Nurse (RN) Clinic Med Surg for a nursing job in WASHINGTON, Washington, DC. · Job Description & Requirements · Specialty: Med Surg · Discipline: RN · Duration: Ongoing · 36 hours per week · Shift: 12 hours, nights · Em ...
-
Registered Nurse
1 week ago
George Washington University Hospital Washington, DC, United StatesGeorge Washington University Hospital is seeking a Registered Nurse (RN) Med Surg for a nursing job in WASHINGTON, Washington, DC. · Job Description & Requirements · Specialty: Med Surg · Discipline: RN · Duration: Ongoing · 36 hours per week · Shift: 12 hours, nights · Employmen ...
-
VP, Commercial Finance
2 weeks ago
Palm Bay Washington, United StatesIf interested in this opportunity, please complete our brief survey by copying and pasting the link below into your web browser. · VP, Commercial Finance · Palm Bay International, a dynamic family-owned company, offers one of the nation's most comprehensive portfolios of imported ...
-
Patent Prosecution Associate – Washington, DC
2 weeks ago
Jameson Legal Washington, United StatesWe are looking to speak with junior- mid-level DC-licensed, and USPTO admitted, Patent Prosecution associate attorneys, with an engineering background/degree(s), to join our client's popular Patent practice in their Washington, DC office. · This is an opportunity to join a practi ...
-
Senior Mechanical Engineer in DC
5 days ago
LVI Associates Washington, United StatesSenior Mechanical Engineer · Job Summary: A well-established engineering firm is seeking a Senior Mechanical Engineer for a full-time position. The ideal candidate should have 10-15 years of experience and be a registered Professional Engineer. This role requires expertise in me ...
-
Georgetown University Washington, United StatesGeorgetown University is in search of a dynamic information technology (IT) professional to step into the role of Senior Associate Vice President and Chief Information Officer (CIO), tasked with leading the University Information Services (UIS) team. Chief Information Officer, Vi ...
-
Vice President, Finance
2 weeks ago
Quorum Analytics Washington, United StatesBased in Washington, DC, Quorum is a fast-growing software company and is the leading provider of workflow software and information services for government affairs professionals across corporate, non-profit, association, and governmental end-markets. Quorum allows users to manage ...
-
Georgetown University Washington, United StatesGuided by Georgetown's Catholic and Jesuit tradition, with its abiding commitment to interreligious collaboration, Campus Ministry equips students to lead lives of deeper meaning, belonging and purpose. (Office of Campus Ministry Mission Statement) Director, Advisor, Office, Univ ...
-
Account Director
2 weeks ago
FGS Global Washington, United StatesFGS Global is a leading global strategic communication consultancy, operating in the main business hubs around the world and based in fabulous offices in central London. We are looking for a high-energy, proactive and driven technology and/or fintech sector-focused · Account Dir ...
-
Inova Health System Washington, United StatesJob Description · Inova Health System is seeking a Registered Nurse (RN) Med Surg Supervisor for a nursing job in Washington, District of Columbia. · Job Description & RequirementsSpecialty: Med Surg · Discipline: RN · Start Date: ASAP · Duration: Ongoing · Shift: days · Employme ...
-
Assistant Manager Front Office
1 week ago
InterContinental Hotels Group, plc Washington, United StatesAt IHG, weve made a promise. As one of the worlds leading hotel groups, were here to deliver True Hospitality for Good. Making our guests and colleagues feel welcome, cared for, recognised and respected wherever they are in the world. Want to be Assistant Manager, Manager, Office ...
-
International Economist
1 week ago
NEXTBILLION Washington, United StatesInternational Economist (Senior Evaluation Officer) · Organization · U.S. International Development Finance Corporation · Location · Washington, DC · Job Type · Full-time, permanent · Deadline for Applications · 05/21/2024 · How to Apply · Applications for this position are ...
Information System Security Officer Lead - Washington, United States - SAIC
Description
SAIC is looking for an experienced Information System Security and Privacy Officer (ISSPO) to join our team supporting an important US government agency in the National Capital Region. This is an exciting opportunity to work with a team responsible for IT Security Governance, Risk and Compliance by providing direct support to Agencies Information System Security and Privacy Officer (ISSPO) in managing and documenting the ongoing security posture of the agency.The ISSPO will support the Program Manager and work collaboratively with other Information Systems Security Analysts, IT SMEs and System Administrators to conduct analysis, mitigation, remediation, and monitoring to ensure compliance with agency policies and procedures. The ISSPO will lead, and guide efforts associated with obtaining and maintaining RMF Authorities to Operate (ATO) for systems within the customer's multi-faceted network infrastructure, spanning multiple platforms residing on multiple security enclaves. Specifically, this job will consist of the following:
•Provide Risk Management Framework (RMF) and Authorization and Accreditation (A&A) activities such as developing and maintaining systems Authority to Operate (ATO) package documentation.
Qualifications
EDUCATION & EXPERIENCE:
•Undergraduate degree with eleven years of experience or Graduate degree with nine years of experience in IT Infrastructure, IT Security, and/or Governance, Risk and Compliance (GRC).
•One or more current Security certifications (CISSP, CISM, Security+).
REQUIRED SKILLS:
•Expert knowledge of RMF accreditation packages and all steps of the RMF process.
•Experience in Security, Privacy Assessment and Authorization (SPA&A) activities and ATO package creation.
•Experience working with RMF and NIST SP Rev 4/5)
•Knowledge of cyber-attack patterns, tactics, techniques, and procedures.
•Ability to adapt security processes/tools to evolving landscapes and risk scenarios.
•Familiarity with IT Audits using FISCAM processes and procedures.
•Experience with NIST Risk Management and Cybersecurity Framework, FISMA, NIST SP 800-53, and IT control processes.
•Experience with GRC frameworks/tools (RSAM, CSAM) and SA&A tools (Xacta).
•Very strong technical understanding of Windows and Linux platforms
•Experience taking IT and network system(s) through the ATO process
•Ability to tailor information security processes and tools, based on ever evolving and changing landscapes, doctrine, and risk scenarios.
•Comprehensive knowledge performing and identifying impacts as well as consideration of existing risk mitigation strategies.
•Experience with auditing control implementations and communicating risks associated with control deficiencies or gaps.
•Experience with SharePoint lists and workflows, and general project management tools
•Ability to work effectively independently as well as within a team environment.
•Fluency in both spoken and written English, including the ability to work with highly technical and specialized content. Must be able both prepare and deliver such content, verbally and in writing, but also comprehend such content from others, in both spoken and written form.
•Ability to work in a fast-paced environment while maintaining outstanding customer service skills.
•Must be flexible with work schedule during surge periods of support.
•Ability to document processes as needed.
•Proficiency in explaining complex policies and protocols in simple terms.
•Stays updated on IT trends and security standards
•Demonstrates excellent analytical thinking and problem-solving skills to be able to assess potential risks and develop possible solutions.
Candidates for consideration must be eligible to obtain and maintain a Public Trust clearance.
DESIRED SKILLS: A solid understanding of IT security controls, tools, and concepts. Experience working in a technical environment with IT platforms such as Microsoft Office 365, Azure, Cisco, Oracle, etc. is also desired.
Target salary range: $145,001 - $155,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.
