Operations Security Advisor with Security Clearance - Bethesda, MD, United States - Dunhill Professional Search

Description

• Provide Risk Management Framework (RMF) subject matter expertise to the client.
• Coordinate with Authorizing Officials, System Owners, Engineers, ISSO and other applicable teams to create and update SSPs, SARs, SIAs, Security Impact Analysis and other applicable documentation for legacy on-prem and Cloud systems.
• Assess and determine the NIST Control Status for multiple ATOs.
• Update and maintain POAMs and ATO packages in CSAM
• Ensure assessment and authorization packages are in compliance with Federal government compliance and client requirements.
• Familiarity and understanding of FedRAMP, Cloud systems and the Customer Responsibility Matrix (CRM)
• On-time submission of contract deliverables with special attention to quality and accuracy.
• Monitor, track, and report on daily, weekly, and monthly team program initiatives.
• Evaluate configuration management (CM) for information system security software, hardware, and firmware

• Experience with Security controls Assessments, Operational Technology, and Industrial control Systems (ICS)
• Mastery of the Risk Management Framework (RMF) with experience in all six steps.
• Experience and knowledge of NIST SP 800-37, NIST SP 800-53r5 and NIST SP 800-82r3 standards and assessing/documenting security controls
• Experience and knowledge of performing risk and vulnerability assessments for the purpose of change management (SIA).
• POAM management, tracking and reporting.
• Experience with RMF and Cloud authorization processes and procedures.
• Experience with categorization of Federal government systems.
• Experience in policy implementation with a Federal government client.
• Technical writing skills to include SOPs and Control Implementation

• Security +, CISM, CISA or CGRC