« Home

This job ad has been posted over 60 days ago...

0

applicants

Security Control Assessor Full-time

at Tranquil Multi Dynamic Advisory Virginia in Virginia (Published at 21-07-2022)

Company Description
TMDA partners with Fortune 1000 companies in their talent solutions and Human Resources advisory needs. We provide a consultative approach in partnering with our clients and members of their team. Our Talent Solutions group serve as an extension of the clients; thereby providing compliant growth at a scalable and sustainable rate.
Job Description
The?Security Control Assessor-Representative (SCA-R) SME will work with our GovCon client.
Responsibilities:
  • Review security artifacts for system authorizations, assessing both the technical and functional adequacy of the cybersecurity / information assurance controls.
  • Develop and maintain the SCA-R / Verification and Validation (V&V) schedule in accordance with the timeline established for Assessment & Authorization (A&A) and Authorizing Official (AO) Information Systems (IS) and by assigning and adding the necessary resources, based on the technologies that need validation and verification, to conduct assessments and validations of implemented controls and Plan of Actions and Milestones (POA&M) items.
  • Develop and gain approval of the Security Assessment Plan (SAP) prior to assessment of all implemented security controls and technology areas through automated and manual assessments in accordance with NIST SP 800-53 and NIST SP 800-115.
  • Develop and submit V&V and security assessment reports that capture automated and manual assessment results and all pertinent information for a comprehensive assessment of the IS for completion of the POA&M.
  • Develop an Authorization Package with all required artifacts in accordance with NIST SP 800-37 that includes risk analysis/assessment and determination along with recommendation for the authorizing officials' authorization decision.
  • Support, implement, and adhere to all NIST, Federal, DoD, DISA, and JSP policies, procedures, and standards regarding cyber security and the RMF
  • Will participate in and provide technical expertise to the JSP's configuration management boards while considering Federal, DoD, and JSP security policies, standards and guidelines and its impact to requested changes.
Qualifications:
  • BS and 8+ years of prior experience, additional experience may be considered in lieu of degree
  • Experience in providing security recommendations to senior leadership
  • Expert in creating and revising standard operating procedures (SOPs), work instructions (WI), and Tactics, Techniques, and Procedures (TTPs)
  • Expert in creating presentations and presenting policies, guidance, and procedures regularity
  • Knowledge of Capability Maturity Model (CMM) techniques
  • Knowledge of DoD cyber security policies and regulations
  • 6+ years' experience in Cybersecurity area
  • 5+ years Certification and Accreditation/ Assessment and Authorization
  • 3+ years Security Control Assessor/Validator Experience
  • 5+ years of project management work experience
  • 4+ years of demonstrated aggregate experiences involved in detailed design, installation, and configuration of IT systems and networks in accordance with DoD cybersecurity policies (e.g., DoDI 8500.2) and DISA STIGs, to include the configuration and use of security products
  • 4+ years of demonstrated aggregate experience monitoring application and system security configurations and auditing IT systems and networks for compliance with DoD Cybersecurity policy
  • Expert in RMF
  • Demonstrated leadership skills/Previous lead position
  • Customer service skills
  • Project Management skills
  • Proficient with RMF process, NIST SP 800-37, NIST SP 800-53, CNSSI 1253
Clearance
?
Active Top Secret clearance and SCI eligible is required.
?
Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.
Education
?
Bachelor's Degree in a related field or a combination of training, certifications, and experience
Certifications
  • DoDI 8570 IAT Level II Certification
  • Computing Environment (CE) certification (RH Linux OS, Win OS, Cisco, or Cloud)
Travel Requirements:
This position will involve 10% travel.
Additional Information
TMDA is proud to be an?equal opportunity employer. Qualified candidates are considered for employment without regard to race, color, religion, sex, or national origin.
All your information will be kept confidential according to EEO guidelines.


Viewed: 77 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend
« Home