ISSO- College Park, MD Job at VIKTech LLC
- Develop, maintain and manage Security Authorization and Assessment packages that include System Security Plans (SSP), Contingency Plans (CP), POA&Ms, and other relevant security documentation for existing and new systems
- Conduct both technical and non-technical internal audits and testing to validate system and operational requirements compliance
- Use workflows to develop security artifacts
- Document, organize and implement security control requirements
- Identify current and new risks
- Prepare vulnerability test plans and coordinate the testing and result procedures
- Assess customer based solutions and provide recommendations for any improvements to current security posture
- Ability to review and write security related policies and procedures
A minimum of a Bachelor's degree coupled with 12+ years' experience in the Information Technology arena or Masters Degree with 10+ years of relevant experience.
Clearance:
Must have an active Secret Clearance and in addition, must have a current or be able to favorably pass a 5 year (BI) Background Investigation to join this program.
- Minimum of 5 years of experience as an ISSO supporting major federal information systems/applications
- Bachelor Degree in Computer Science, IT, Information/Cyber Security field from an accredited college or university
- Knowledge with auditing security controls and financial processes
- Superior writing, communication and critical analysis skills
- Deep understanding of Information Assurance, Information Technology and Information Management concepts, processes and procedures
- ISC2 Certified Authorization Professional (CAP) or ISC2 Certified Cloud Security Professional (CCSP) certification or CompTIA Certified Advanced Security Practitioner (CASP+)
- NIST SP 800-37 Risk Management Framework security assessment and authorization (A&A) processes
- NIST 800-53 security controls and required documentation
- Security controls (i.e. NIST SP 800-53, FISCAM, etc.) assessments in support of FISMA, A-123 and annual self-assessment initiatives
- Federal Risk and Authorization Management Program (FedRAMP) for authorization of cloud services
- Enterprise Logging System to conduct regular reviews of audit logs (operating system, application, database, etc.) for security anomalies and compliance with applicable policies and procedures
- POA&M Management and Risk Management Framework (RMF)
- Reviewing operating system, application, and database security baseline configuration documentation to ensure compliance with agency hardening guidelines
- Reviewing proposed change requests related to system design / configuration and performing a security impact analysis to provide approval or denial recommendations
- Reviewing vulnerability scan results
At VIKTech:
Medical/Dental/Vision-Employee is 100%
Employee coveredTuition- We do 5k tuition/training reimbursement per year.
Roth 401k 18k maximum per employee contribution (does 10% matching (No vesting schedule payments are deposited monthly)
Short Term Long Term and AD&D are covered by employer
Flexible Schedules and 4 Weeks PTO
8 Holidays and 2 Floating
www.viktech.net
Please Note :
www.epokagency.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, www.epokagency.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.