Jobs
>
Arlington

    Security Control Assessor - Arlington, TX, United States - Maximus

    Maximus
    Maximus Arlington, TX, United States

    1 week ago

    Maximus background
    Description
    Job Description Summary

    Maximus is searching for a Security Control Assessor (SCA) to join a DoD program in Arlington, VA.

    The Security Control Assessor is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by a SAP information system to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system).


    Responsibilities include, but are not limited to:

    • Collaborate with key stakeholders to ensure security engineering initiatives are aligned with the operational needs within the SAP IT.
    • Develop specifications to ensure risk, compliance, and assurance efforts conform with confidentiality, integrity, and availability requirements at the software application, system, and network environment level.
    • Draft statements of preliminary or residual security risks for system operation
    • Maintain information systems assessment and authorization (A&A) documents.
    • Monitor and evaluate a system's compliance with information technology (IT) security, resilience, and dependability requirements.
    • Review Security Impact Analysis (SIA) and identify gaps in security architecture.
    • Perform security reviews and identify security gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy.
    • Perform risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change.
    • Plan and conduct security authorization reviews and assurance case development for initial installation of systems and networks
    • Verify that application software/network/system security postures are implemented as stated, document deviations, and recommend required actions to correct those deviations.
    • Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities
    • Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)
    • Experience in one or more cloud computing services and technologies including but not limited to: AWS/C2S,
    • Provide oversight to the SAP Community on the latest vulnerabilities and identify remediation efforts
    • Develop and implement new security mechanisms for the SAP Ecosystem
    • Identify and select best-in-class threat prevent tools and software for the SAP Ecosystem
    • Execute special projects as required
    • Interact with technical leads, developers, and system owners to ensure that all technical requirements are aligned with SAP guidance.
    • Able to travel 20-30% of the time to local and CONUS sitesRequired Skills & Qualifications:
    • Must possess an Active TS/SCI clearance.
    • A Bachelor's degree is required for this position. 4 years of relevant work experience may be considered in lieu of the degree requirement. An Associate's degree and 2 years of relevant work experience may also be considered in lieu of the degree requirement.
    • 7 or more years of experience implementing Risk Management Framework (RMF)
    • Minimum seven (7) years of demonstrable DoD security experience in the following: o Understanding of DISA STIGs and Benchmarks o Understanding of tools, e.g., SCAP, ACAS, Vulnerator, HBSS, eMASS o Must have analytical skills to evaluate risk, gather data, conduct security audits, and assess information to make critical decisions affecting network security. o Knowledge of coding languages, intrusion detection, operating systems, security planning and auditing, ethical hacking and other security, programming, and diagnostic tools.

    Certification Requirements:

    • DoD 8140 Level 2 (or higher) certification is required and may equate to two (2) years of experience (CISSP, CCNA, CySA+, GISCP, Sec+CE, CND, SSCP etc....)
    • Cloud certification is a plus #techjobs #clearance #SAPCIO
    Job Summary

    Maximus TCS (Technology and Consulting Services)

    Internal Job Profile Code:
    TCS040, T4, Band 7

    MAXIMUS Introduction


    Since 1975, Maximus has operated under its founding mission of Helping Government Serve the People, enabling citizens around the globe to successfully engage with their governments at all levels and across a variety of health and human services programs.

    Maximus delivers innovative business process management and technology solutions that contribute to improved outcomes for citizens and higher levels of productivity, accuracy, accountability and efficiency of government-sponsored programs.

    With more than 30,000 employees worldwide, Maximus is a proud partner to government agencies in the United States, Australia, Canada, Saudi Arabia, Singapore and the United Kingdom.

    For more information, visit

    EEO Statement

    EEO Statement:

    Active military service members, their spouses, and veteran candidates often embody the core competencies Maximus deems essential, and bring a resiliency and dependability that greatly enhances our workforce.

    We recognize your unique skills and experiences, and want to provide you with a career path that allows you to continue making a difference for our country.

    We're proud of our connections to organizations dedicated to serving veterans and their families.

    If you are transitioning from military to civilian life, have prior service, are a retired veteran or a member of the National Guard or Reserves, or a spouse of an active military service member, we have challenging and rewarding career opportunities available for you.

    A committed and diverse workforce is our most important resource. Maximus is an Affirmative Action/Equal Opportunity Employer.

    Maximus provides equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disabled status.

    Pay Transparency


    Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment.

    Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards.

    Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off.

    Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances.

    Posted Max

    USD $175,000.00/Yr.

    Posted Min

    USD $77,600.00/Yr.

    Job SummaryPosted Date: 14 hours ago(2/5/2024 6:27 PM)# of Openings: 1

    Job Function:
    Information Technology

    Job Schedule:
    Regular Full-Time
  • Maximus

    Security Control Assessor

    1 week ago

    Maximus Arlington, TX, United States

    Job Description Summary · Maximus is searching for a Security Control Assessor (SCA) to join a DoD program in Arlington, VA. The Security Control Assessor is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls empl ...

  • General Dynamics Information Technology

    Security Control Assessor

    1 week ago

    General Dynamics Information Technology west lake, United States

    REQ#: RQ168265 Public Trust: None Requisition Type: Regular Your Impact Own your opportunity to work with the largest government agency in the nation. Make an impact by advancing the Department of Defense's mission to keep our country safe and secure. Job Description SCA I - SIGN ...

  • General Dynamics Information Technology

    Security Control Assessor

    1 week ago

    General Dynamics Information Technology Dallas, TX, United States

    REQ#: RQ168265 Public Trust: None Requisition Type: Regular Your Impact Own your opportunity to work with the largest government agency in the nation · Make an impact by advancing the Department of Defense's mission to keep our country safe and secure · Job Description SCA I - SI ...

  • Maximus

    Assessor

    1 week ago

    Maximus Arlington, TX, United States

    Maximus is searching for a Security Control Assessor (SCA) to join a DoD program in Arlington, VA. The Security Control Assessor is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited b ...

  • 00002 Citibank, N.A.

    Third Party Information Security Assessor

    1 week ago

    00002 Citibank, N.A. Irving, United States Full time

    Description · The Third Party Information Security Assessor performs detailed examinations of Citi's North America suppliers' information security practices and controls. IS Assessor responsibility is to confirm supplier adherence to the same high information security standards ...

  • Avaya

    Information Systems Security Manager

    3 days ago

    Avaya Irving, United States

    About Avaya · Businesses are built by the experiences they provide, and every day, millions of those experiences are delivered by Avaya. Organizations trust Avaya to provide innovative solutions for some of their most important ambitions and challenges, giving them the freedom t ...

  • Lockheed Martin

    Information Systems Security Manager

    2 weeks ago

    Lockheed Martin Fort Worth, United States

    Job Number 665898BR Description:Lockheed Martin Aeronautics. Be More Than You Can Imagine. · At Lockheed Martin Aeronautics (LMA), we approach each day with creativity, innovation, and integrity. We hire people with a broad set of technical skills who are ready to take on some of ...

  • Knewin

    Information Systems Security Manager

    2 weeks ago

    Knewin Fort Worth, United States

    Lockheed Martin Aeronautics. Be More Than You Can Imagine. · At Lockheed Martin Aeronautics (LMA), we approach each day with creativity, innovation, and integrity. We hire people with a broad set of technical skills who are ready to take on some of industry's greatest challenges ...

  • Lockheed Martin Corporation

    Information Systems Security Manager

    1 week ago

    Lockheed Martin Corporation Fort Worth, United States

    : Lockheed Martin Aeronautics. Be More Than You Can Imagine. · At Lockheed Martin Aeronautics (LMA), we approach each day with creativity, innovation, and integrity. We hire people with a broad set of technical skills who are ready to take on some of industry's greatest challenge ...

  • Lockheed Martin Corporation

    Information Systems Security Manager

    6 days ago

    Lockheed Martin Corporation Fort Worth, United States

    : · At Lockheed Martin Aeronautics (LMA), we approach each day with creativity, innovation, and integrity. We hire people with a broad set of technical skills who are ready to take on some of industry's greatest challenges and make an impact on our nation's security. We believe b ...

  • Lockheed Martin Corporation

    Information Systems Security Manager

    2 weeks ago

    Lockheed Martin Corporation Fort Worth, United States

    Job ID: 664616BR · Date posted: Apr. 23, 2024 · Program: ADP · Description:Lockheed Martin Aeronautics. Be More Than You Can Imagine. · At Lockheed Martin Aeronautics (LMA), we approach each day with creativity, innovation, and integrity. We hire people with a broad set of te ...

  • RealPage

    Senior Manager, Internal Audit

    1 week ago

    RealPage Richardson, United States

    SUMMARY: · The Senior Manager, Internal Audit will lead workstreams for Business Process audit to support the Company's ongoing compliance activities associated with Sarbanes-Oxley (SOX), risk management initiatives, and other state and federal regulatory requirements. They will ...

  • RealPage

    Senior Manager, Internal Audit

    2 weeks ago

    RealPage Richardson, United States

    · SUMMARY: · The Senior Manager, Internal Audit will lead workstreams for Business Process audit to support the Company's ongoing compliance activities associated with Sarbanes-Oxley (SOX), risk management initiatives, and other state and federal regulatory requirements. They wi ...

  • Toyota

    CROM Third-Party Cyber Risk Management Senior Engineer

    2 weeks ago

    Toyota Plano, United States

    Excited to grow your career at Toyota? · We value our talented employees, and whenever possible strive to help one of our associates grow professionally before recruiting new talent to our open positions. If you think the open position you see is right for you, we encourage you ...

  • BBG

    Director | Environmental Reviewer

    1 week ago

    BBG Dallas, United States

    Job Description · Job DescriptionDescription:Description · The Director position requires a self-driven individual who can complete high quality reviews while meeting strict deadlines. The individual must possess excellent written and verbal communication skills, outstanding anal ...

  • Toyota North America

    CROM Third-Party Cyber Risk Management Senior Engineer

    1 week ago

    Toyota North America Plano, United States Full time

    Overview · Who we are · Collaborative. Respectful. A place to dream and do. These are just a few words that describe what life is like at Toyota. As one of the world's most admired brands, Toyota is growing and leading the future of mobility through innovative, high-quality solut ...

  • Ashley Ellis

    Information Risk/Security Consultant

    1 week ago

    Ashley Ellis Dallas, United States

    Job Title: · Information Risk/Security Consultant · Work Location: · Remote · Duration: · Long-term contract with option to hire · Job Description: · We are seeking an · Information Technology Governance Risk / Security Controls Consultant · to join our Information Technol ...

  • Roots Management Group

    Senior Tax Associate

    2 days ago

    Roots Management Group Addison, United States

    Who We Are · Roots Management Group is a manufactured housing community (MHC) investment platform and management company. Our mission is to help increase the availability of best-in-class housing people can afford. We accomplish that by acquiring, investing in, and operating man ...

  • BBG

    Managing Director

    5 days ago

    BBG Dallas, United States

    Job Description · Job DescriptionDescription:The HUD Environmental Assessment Division Managing Director position requires a self-driven individual who can complete high quality reviews while meeting strict deadlines. The individual must possess excellent written and verbal commu ...

  • Goldman Sachs

    Engineering -- Digital Risk Assessor -- Associate -- Dallas

    1 week ago

    Goldman Sachs Dallas, United States

    Tech Risk – Digital Risk & Assurance – Risk Assessor – Associate: · WHO WE ARE · Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber ...