Infosec/cybersecurity Specialist - Washington, United States - Veracity Engineering

Veracity Engineering
Veracity Engineering
Verified Company
Washington, United States

1 week ago

Mark Lane

Posted by:

Mark Lane

beBee recruiter
Description

WHAT THE POSITION ENTAILS:


In 2013, the National Airspace System (NAS) was identified through Presidential Executive Order 13636 "Improving Critical Infrastructure Cybersecurity" as a national Critical Infrastructure and Key Resource (CIKR) for which a cyber-attack could have catastrophic economic and national defense impacts.

The resiliency of this Critical Infrastructure is contingent upon mission-focused multi-year strategic planning that will support continued effective organizational cybersecurity risk management and the ability to identify and respond to threats to ensure continued NAS operations under a range of cyber conditions.

Veracity Engineering supports the Federal Aviation Administration's (FAA) operational arm in ensuring that the FAA's hundreds of systems have sufficient safeguards and controls for the implementation and execution of security in the cyber domain.

We provide consulting, assurance, and support services that help solve our client's toughest challenges.

This position offers a hybrid work schedule


What you will get to do:
Veracity is seeking a talented Infosec/Cybersecurity Specialist for the following role.

  • Conduct Risk Management Framework (RMF) assessments for FAA information systems, documenting results and delivering comprehensive consulting services.
  • Develop and assess security and privacy controls to maintain the integrity and compliance of IT systems with federal standards.
  • Manage and track planned changes to assigned systems, assessing impacts on system security posture, and ensuring the thorough integration of cybersecurity policies and practices.
  • Lead the creation of the following critical security documentation facilitating a structured security accreditation process
  • System Authorization Briefs (SABs), System Characterization Documents (SCDs), Privacy Threshold Assessments (PTAs), Privacy Impact Assessments (PIAs), Information Security Contingency Plan (ISCP), ISCP Test Plan and Results (ISCP TRR), Security Assessment Reports (SARs), and Risk Assessment Reports (RARs).
  • Develop comprehensive Plans of Action and Milestones (POA&M) and manage remediation strategies, enhancing the resilience of federal systems against cybersecurity threats.
  • Transition systems to FedRAMPcompliant cloud solutions, ensuring adherence to federal security standards.
  • Provide detailed mitigation strategies following assessments of technical, operational, and cloud vulnerabilities to safeguard federal systems.

Must Haves:


Education:


  • Bachelor's degree in computer science, information systems, mathematics, statistics, operational research, or business administration from an accredited institution.

Experience:

years of relevant experience.

  • Master's degree in related field may be substituted for bachelor's degree and 3 years of experience.
  • Five years of relevant experience may be substituted for a bachelor's degree.

Skills:


  • Proven experience in providing RMF assessment and consulting services for federal clients.
  • Expertise in cybersecurity risk management, the development of comprehensive security documentation, and strategic security planning.
  • Demonstrated ability in enhancing the security postures of critical federal systems through meticulous documentation, assessment of security and privacy controls, and development of robust security frameworks.
  • Experience in leading the development of System Security Plans (SSPs), and Executive Summaries contributing to a structured accreditation process.
  • Experience in producing SSPs, ISCPs, ISCP TRR, PTA, PIA, SCD, and SAB.
  • Skilled in the development and management of POA&Ms with a focus on remediation strategies to enhance system resilience against cybersecurity threats.
  • Experience in transitioning systems to FedRAMPcompliant cloud solutions, adhering to federal security standards.
  • Capability to conduct assessments of technical, operational, and cloud vulnerabilities, providing clients with strategic mitigation strategies to protect federal systems against security breaches.
  • Strong written and oral communication skills
  • Project Management skills
At Veracity, we want our employees to excel and grow professionally.

With an emphasis on continuing education, we demonstrate our commitment to employee growth and development by providing tuition reimbursement for education and certifications.


In addition to tuition reimbursement, we offer one of the best benefits packages in the industry: competitive health benefits package, paid time off, 401K matching, and vested from day one to name just a few of our benefits and perks.

U.S. Eligibility Requirements (Standard for all U.S. Positions)

Must be 18 years of age or older.


Must be willing to submit to a background investigation; any offer of employment is conditioned upon the successful completion of a background investigation.


  • Must be willing to execute Veracity's Confidentiality and Non-Disclosure Agreement wh
More jobs from Veracity Engineering
See all jobs of Veracity Engineering