IT Security Controls Assessor
Company Name:
Robbins Gioia
Tracking Code
2015004
Job Description
Robbins Gioia is a respected, national, and global operations management and technology consulting firm that has served the public and private sector for over 30 years. RG pioneered the project and program management industry and has made our clients successful in their most complex initiatives. We advise and support governments and businesses across the nation and around the world. Our exceptional associates apply consultative and structured methods and enabling technologies to implement, manage, and improve critical capabilities, initiatives, projects, and programs. We offer advisory, training, technology and related support services in the areas of project and program management, process engineering and related information and telecommunications systems development and integration services and solutions.
RG is currently seeking an IT Security Controls Assessor to support Assessment and Authorization activities on a Department of Commerce contract. The successful candidate will:
Provide support in conducting Security Controls Assessment (SCA) activities.
Be responsible for testing security controls.
Review and analyze systems, along with conduct network security and vulnerability assessments and scans.
Stay up to date with current vulnerabilities, attacks, and countermeasures.
Be able to multitask and give equal attention to a variety of functions while under pressure.
Required Skills
A Senior Analyst is an exempt resource who typically contributes to the gathering of information used for assessments (front end) and evaluations (back end); often participating in or assisting with data collection and research activities. The candidate must have knowledge and experience with NIST requirements as they pertain to the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) Assessment and Authorization (A&A;) process with experience in providing advice, consulting in regards to IT security risk and mitigation relevant to industry best practices and business trends and forecasts. The IT Security control assessor shall possess strong oral and written communications and must be capable of conducting briefings for Authorizing Officials.
Required Experience
BA/BS Degree in a technical area (i.e. engineering, math, statistics, chemistry, etc)
3
years of relevant experience providing subject matter expertise in security control assessment support, risk management and risk mitigation field to Federal agencies
Experience with the following NIST Special Publications:
800-30, Risk Management Guide for Information Technology Systems
800-34 Revision 1, Contingency Planning Guide for Information Technology Systems
800-37 Revision 1, Guide for Applying the Risk Management Framework to Federal Information Systems
800-53 Revision 4, Recommended Security Controls for Federal Information Systems and Organizations
800-53A Revision 1, Guide for Assessing the Security Controls in Federal Information Systems and Organizations
Industry recognized IT Security certification (i.e. CISSP, CISA, CAP, etc)
Current Dept of Commerce badge or ability to obtain
Physical Requirements:
Sedentary work: Exerting up to 10 lbs. of force occasionally and/or a negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects, including the human body. Sedentary work involves sitting most of the time. Jobs are sedentary if walking and standing are required, only occasionally and all other sedentary criteria are met.
Robbins Gioia is an Equal Employment Opportunity/Affirmative Action/Disability/Vet/VEVRAA Federal Contractor
Job Location
Washington, District of Columbia, United States
Position Type
Full-Time/RegularEstimated Salary: $20 to $28 per hour based on qualifications.
Robbins Gioia
Tracking Code
2015004
Job Description
Robbins Gioia is a respected, national, and global operations management and technology consulting firm that has served the public and private sector for over 30 years. RG pioneered the project and program management industry and has made our clients successful in their most complex initiatives. We advise and support governments and businesses across the nation and around the world. Our exceptional associates apply consultative and structured methods and enabling technologies to implement, manage, and improve critical capabilities, initiatives, projects, and programs. We offer advisory, training, technology and related support services in the areas of project and program management, process engineering and related information and telecommunications systems development and integration services and solutions.
RG is currently seeking an IT Security Controls Assessor to support Assessment and Authorization activities on a Department of Commerce contract. The successful candidate will:
Provide support in conducting Security Controls Assessment (SCA) activities.
Be responsible for testing security controls.
Review and analyze systems, along with conduct network security and vulnerability assessments and scans.
Stay up to date with current vulnerabilities, attacks, and countermeasures.
Be able to multitask and give equal attention to a variety of functions while under pressure.
Required Skills
A Senior Analyst is an exempt resource who typically contributes to the gathering of information used for assessments (front end) and evaluations (back end); often participating in or assisting with data collection and research activities. The candidate must have knowledge and experience with NIST requirements as they pertain to the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) Assessment and Authorization (A&A;) process with experience in providing advice, consulting in regards to IT security risk and mitigation relevant to industry best practices and business trends and forecasts. The IT Security control assessor shall possess strong oral and written communications and must be capable of conducting briefings for Authorizing Officials.
Required Experience
BA/BS Degree in a technical area (i.e. engineering, math, statistics, chemistry, etc)
3
years of relevant experience providing subject matter expertise in security control assessment support, risk management and risk mitigation field to Federal agencies
Experience with the following NIST Special Publications:
800-30, Risk Management Guide for Information Technology Systems
800-34 Revision 1, Contingency Planning Guide for Information Technology Systems
800-37 Revision 1, Guide for Applying the Risk Management Framework to Federal Information Systems
800-53 Revision 4, Recommended Security Controls for Federal Information Systems and Organizations
800-53A Revision 1, Guide for Assessing the Security Controls in Federal Information Systems and Organizations
Industry recognized IT Security certification (i.e. CISSP, CISA, CAP, etc)
Current Dept of Commerce badge or ability to obtain
Physical Requirements:
Sedentary work: Exerting up to 10 lbs. of force occasionally and/or a negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects, including the human body. Sedentary work involves sitting most of the time. Jobs are sedentary if walking and standing are required, only occasionally and all other sedentary criteria are met.
Robbins Gioia is an Equal Employment Opportunity/Affirmative Action/Disability/Vet/VEVRAA Federal Contractor
Job Location
Washington, District of Columbia, United States
Position Type
Full-Time/RegularEstimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
