Not Authorized
You are currently not authorized to access this section.
Please contact your Administrator to change your authorization settings.
Please contact your Administrator to change your authorization settings.
Security - Information Assurance Engineer (Sr)
Aberdeen Proving Ground, MD
Job Description
Senior Information Assurance Engineer
Aberdeen Proving Ground, MD (Hybrid)
MUST:
Interim Top Secret clearance accepted at start, but ultimately requires Top Secret clearance
Experienced Senior Information Assurance Engineer
10+ years of overall applicable experience highly preferred
Must have Security+ certification (also desire any of the following: CAP, CND, Cloud+, GSLC, HCISPP, CCNA Security, CySA+, GICSP, GSEC, SSCP)
Experience with policy creation, best business practices and general Cybersecurity governance.
Experience in RMF Assess and Authorize (A&A) and Cybersecurity inspection actions
Experience serving as Information System Security Manager, Representative (ISSM-R)
Experience managing all steps of the DoD Risk Management Framework (RMF) assess & authorize processes
Experience assessing security controls in accordance with NIST SP 800-53.
Experience creating Assess-only RMF instances for software packages
Experience developing Plan of Actions and Milestones (POA&M)
Experience creating policy, best business practices and general Cybersecurity governance.
Possess in-depth knowledge of all NIST and CNSSI publications related to RMF and security controls for national security systems (NSS).
Experience developing, maintaining and reporting FISMA metrics }
Experience managing the Authority to Operate (ATO) lifecycle to include coordinating Security Control Assessor - Validation (SCA-V).
Must be able to work independently.
Must have strong verbal and written communication skills.
Must be able to follow instructions and provide support to all team members.
BA or BS Bachelor's Degree
DUTIES:
Govern and monitor the IT security posture of all DAC (Data Analysis Center) network enclaves, unclassified and classified, as well as provide authority on Cybersecurity policies.
Work closely with the client regarding policy creation, best business practices, and general Cybersecurity governance.
Function as the primary DAC POC for all RMF Assess and Authorize (A&A) responsibilities and Cybersecurity inspection actions.
Serve as the DAC Information System Security Manager, Representative (ISSM-R) for all Cybersecurity actions required.
Responsible for all DAC activities relating to Cybersecurity procedures and systems.
Confer with and advise subordinates on administrative policies and procedures and resolving technical problems, priorities, and methods.
Consult with and advise other support teams regarding internal controls and security procedures.
Prepare activities and progress reports relating to the information systems audit function.
Manage all steps of the DoD Risk Management Framework (RMF) assess & authorize process for DAC (Data Analysis Center).
Develop Plan of Actions and Milestones (POA&M) for registered DAC systems.
Manage and maintain the System Security Plan (SP) for DAC.
Assess security controls in accordance with NIST SP 800-53.
Possess in-depth knowledge of all NIST and CNSSI publications related to RMF and security controls for national security systems (NSS).
Maintain ISSM and Program Manager (PM) roles within the instance of eMASS for DAC client systems.
Register new systems within eMASS as required.
Obtain Interim Authority to Test (IATT) authorization for new systems.
Create Assess-only RMF instances for software packages (NETCOM Certificate of Networthiness replacement).
Develop and maintain System-level artifacts for associated systems within eMASS.
Coordinate the development of technology-level artifacts with other teams.
Advise other teams on STIG compliance and mitigation strategies.
Manage the Authority to Operate (ATO) lifecycle for associated DAC systems, to include coordinating Security Control Assessor - Validation (SCA-V) teams.
Develop and maintain FISMA metrics for DoD Cybersecurity scorecard reporting.
Maintain FISMA metric reporting within the client system.
Advise client CISO, and ISSM of all DoD RMF matters related to associated systems.
Ensure STIG checklists and associated artifacts for all technologies are reviewed, and validation results are posted to the client portal.
Quadrant is an affirmative action/equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, status as a protected veteran, or status as an individual with a disability.
Quadrant, Inc. is an equal opportunity and affirmative action employer. Quadrant is committed to administering all employment and personnel actions on the basis of merit and free of discrimination based on race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or status as an individual with a disability. Consistent with this commitment, we are dedicated to the employment and advancement of qualified minorities, women, individuals with disabilities, protected veterans, persons of all ethnic backgrounds and religions according to their abilities.
Aberdeen Proving Ground, MD (Hybrid)
MUST:
Interim Top Secret clearance accepted at start, but ultimately requires Top Secret clearance
Experienced Senior Information Assurance Engineer
10+ years of overall applicable experience highly preferred
Must have Security+ certification (also desire any of the following: CAP, CND, Cloud+, GSLC, HCISPP, CCNA Security, CySA+, GICSP, GSEC, SSCP)
Experience with policy creation, best business practices and general Cybersecurity governance.
Experience in RMF Assess and Authorize (A&A) and Cybersecurity inspection actions
Experience serving as Information System Security Manager, Representative (ISSM-R)
Experience managing all steps of the DoD Risk Management Framework (RMF) assess & authorize processes
Experience assessing security controls in accordance with NIST SP 800-53.
Experience creating Assess-only RMF instances for software packages
Experience developing Plan of Actions and Milestones (POA&M)
Experience creating policy, best business practices and general Cybersecurity governance.
Possess in-depth knowledge of all NIST and CNSSI publications related to RMF and security controls for national security systems (NSS).
Experience developing, maintaining and reporting FISMA metrics }
Experience managing the Authority to Operate (ATO) lifecycle to include coordinating Security Control Assessor - Validation (SCA-V).
Must be able to work independently.
Must have strong verbal and written communication skills.
Must be able to follow instructions and provide support to all team members.
BA or BS Bachelor's Degree
DUTIES:
Govern and monitor the IT security posture of all DAC (Data Analysis Center) network enclaves, unclassified and classified, as well as provide authority on Cybersecurity policies.
Work closely with the client regarding policy creation, best business practices, and general Cybersecurity governance.
Function as the primary DAC POC for all RMF Assess and Authorize (A&A) responsibilities and Cybersecurity inspection actions.
Serve as the DAC Information System Security Manager, Representative (ISSM-R) for all Cybersecurity actions required.
Responsible for all DAC activities relating to Cybersecurity procedures and systems.
Confer with and advise subordinates on administrative policies and procedures and resolving technical problems, priorities, and methods.
Consult with and advise other support teams regarding internal controls and security procedures.
Prepare activities and progress reports relating to the information systems audit function.
Manage all steps of the DoD Risk Management Framework (RMF) assess & authorize process for DAC (Data Analysis Center).
Develop Plan of Actions and Milestones (POA&M) for registered DAC systems.
Manage and maintain the System Security Plan (SP) for DAC.
Assess security controls in accordance with NIST SP 800-53.
Possess in-depth knowledge of all NIST and CNSSI publications related to RMF and security controls for national security systems (NSS).
Maintain ISSM and Program Manager (PM) roles within the instance of eMASS for DAC client systems.
Register new systems within eMASS as required.
Obtain Interim Authority to Test (IATT) authorization for new systems.
Create Assess-only RMF instances for software packages (NETCOM Certificate of Networthiness replacement).
Develop and maintain System-level artifacts for associated systems within eMASS.
Coordinate the development of technology-level artifacts with other teams.
Advise other teams on STIG compliance and mitigation strategies.
Manage the Authority to Operate (ATO) lifecycle for associated DAC systems, to include coordinating Security Control Assessor - Validation (SCA-V) teams.
Develop and maintain FISMA metrics for DoD Cybersecurity scorecard reporting.
Maintain FISMA metric reporting within the client system.
Advise client CISO, and ISSM of all DoD RMF matters related to associated systems.
Ensure STIG checklists and associated artifacts for all technologies are reviewed, and validation results are posted to the client portal.
Quadrant, Inc. is an equal opportunity and affirmative action employer. Quadrant is committed to administering all employment and personnel actions on the basis of merit and free of discrimination based on race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or status as an individual with a disability. Consistent with this commitment, we are dedicated to the employment and advancement of qualified minorities, women, individuals with disabilities, protected veterans, persons of all ethnic backgrounds and religions according to their abilities.
Job Summary
Company
Start Date
As soon as possible
Employment Term and Type
Regular, Full Time
Required Education
Bachelor's Degree
Required Experience
10+ years
Email this Job to Yourself or a Friend