| Must have Federal Experience || Information Security Risk Specialist || Remote || USC & GC at Remote, Remote, USA |
| Email: [email protected] |
| Must have Federal Experience Senior folks with security control assessment experience who can think outside-of-the-box! Information Security Risk Specialist Remote, United States USC & GC Required Education Level: Masters Required Degree: computer science, electronics engineering or other engineering or technical discipline is required. Required Years Experience: 5 years Substitution Criteria: 10 years of additional relevant experience may be substituted for education Position Type: Contract As an Information Security Risk Specialist, Sr on our team, you'll use your experience to work witha government clientto discover their cyber risks, understand applicable policies, and develop a mitigation plan. You'll review technical, environmental, and personnel details to assess the entire threat landscape. Then, you'll guide the Veterans Administration (VA) client through a plan of action with presentations, white papers, and milestones. You'll work with your client to translate security concepts, so theycan make the best decisions to secure their mission critical systems and critical infrastructure. This is your opportunity to act as an information security subject matter expert where you will mentor others while broadening your skills in Risk Management Framework and NIST Security and Privacy controls. This position is open to remote delivery anywhere within the U.S., to include the District of Columbia. You have: Experience with NIST special publications and FIPS Experience with information security and assurance principles, including the NIST Cybersecurity Framework and RMF process Experience with leading and coaching efforts involving presentations, SOPs, whitepapers, and change management processes Experience with assessing NIST security and privacy controls and maintaining Plans of Action and Milestones (POA&Ms) Experience with analyzing data from Governance Risk Compliance (GRC) tools, including eMASSorRiskVision, to determine trends, root cause, and possible solutions Experience with providing guidance for the NIST security and privacy controls and for providing sufficient documentation and artifacts for each control in the GRC tool Experience in reviewing security requirements, recommending a mitigation strategy for deficiencies, and working directly with clients to provide solutionsand education Experience with performingannual security reviews in accordance with FISMA reporting Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements Master's degree in CS, Engineering, or IT and 5+ years of experience with IT or 15+ years of experience with IT in lieu of a degree Nice if you have: Experience with Privacy and Security control implementation, testing and assessment, and POAM management Experience with using data analytical tools Experience with the VA Experience with scanning tools Experience with creating formulas and data analysis in excel Possession of excellent customer service and organization skills Possession of excellent verbal and written communication skills Public Trust CAP, CISSP, CISM, PMP, or CCSK Certification Regards, Adarsh Sharma Senior Technical Recruiter A : 25 Oak Tavern Cir Branchburg, New Jersey - 08876 DISCLAIMER: Please respond as remove if you are not interested to receive any email with this email address. We sincerely apologize for any inconvenience caused to you. -- Keywords: information technology green card microsoft Virginia |
| [email protected] View all |
| Wed Jan 17 22:58:00 UTC 2024 |