Job Details
Provide information assurance support to system(s) and program
Demonstrated experience with coordinating and implementing cyber security policies, standards and processes
Maintain operational security posture for system(s) through customized Risk Management Framework (RMF) to ensure established security processes and procedures are followed
Strong knowledge of AWS infrastructure, Commercial cloud and cloud security
Evaluate security solutions to ensure security requirements are met for processing classified information
Provide configuration management and documentation for system software, hardware, networks, enclaves, etc.
Prepare and review system documentation to include Systems Security Plans (SSPs), Certification and Accreditation (C&A) packages, architecture diagrams, contingency plan, incident response plan, and other documentation
Support programmatic and organization project and risk management review boards
Perform vulnerability scanning, risk assessment analysis using NIST 800-53 and prepare responses to Plan of Action and Milestones (POA&Ms)
Requirements
Understanding of NIST 800-53, NIST 800-37, RMF, ICD 503
Strong written and oral communication skills to write technical analysis reports and security plans
Proficient the Risk Management Framework, as it relates to Operational Technology (OT) systems including NIST SP 800-82 OT specific recommendations and guidance
Implementing and managing security control lifecycle for OT systems.
Desired Certifications
Comp TIA Security+
Certified Information System Security Processional (CISSP)
Certified Information Security Manager (CISM)
Certified Ethical Hacker (CEH)
AWS Certified Cloud Practitioner (CCP)
Microsoft Azure
Google Cloud Platform (GCP)
Security Clearance: TS/SCI with FS Polygraph.
Years of Experience:
2 years with a PhD
6 years with a BS degree.
4 years with a master's degree
8 years with an AA degree
10 years with an HS diploma