- Toeroek Associates (Alexandria, VA)
- …PTO, 401k, Life, LTD, STD Toeroek Associates is seeking qualified candidates for the Compliance Assessment Program ( CAP ) and Chemical Weapons Convention ... (CWC) Program Analyst position to assist the Naval Treaty Implementation Program (NTIP) with the compliance review of arms control related documents,… more
- Red Gate Group (Washington, DC)
- …security professionals and serve as the primary architect and quality controller for the Compliance Assessment Program ( CAP ). You'll shape assessments ... mission-critical setting with broad institutional impact. Key Responsibilities: + Lead the Compliance Assessment Program ( CAP ), overseeing up to 500… more
- Red Gate Group (Washington, DC)
- …global stage. You will serve as a subject matter expert and core contributor to the Compliance Assessment Program ( CAP ), analyzing a wide range of ... Gate Group is seeking a highly skilled and detail-oriented Compliance Assessment Program Analyst to...Contribute to technical studies, briefing materials, policy reviews, and CAP -related reports required by NTIP leadership + Support and… more
- OCT Consulting, LLC (Washington, DC)
- …NIST Cybersecurity Framework (CSF) alignment + Support development and modification of program plans to improve FISMA compliance + Conduct comprehensive ... program documentation + Experience working with federal cybersecurity compliance requirements and assessments + Security+ certification or equivalent… more
- GovCIO (Washington, DC)
- …DC (4 days onsite, 1 day remote). **Responsibilities** + Provide an assessment of the severity of weaknesses or deficiencies discovered in the information ... corrective actions to address identified vulnerabilities + Prepare the final security assessment report containing the results and findings from the assessment .… more
- BAE Systems (Quantico, VA)
- …Systems is excited to offer an opportunity to support a dynamic DOJ program as an **Information Systems Security Engineer (ISSE)** , providing mission critical ... enhancement of information systems security programs; infrastructure; application; Security Assessment and Authorization (SAA), IA policy directives (PD) and guides… more
- Cayuse Holdings (Rosslyn, VA)
- …software, hardware, and firmware (U) Develop system security policy and ensure compliance . This position performs all duties and responsibilities in accordance with ... information + Maintain operational security posture for an information system or program + Provide support to the Information System Security Manager (ISSM) for… more
- CGI Technologies and Solutions, Inc. (Fort Belvoir, VA)
- …Information Assurance policies, Security Technical Implementation Guides (STIGS), and Assured Compliance Assessment Solution (ACAS) scans. -Report and remedy ... with Government systems. -Provide Federal Risk and Authorization Management Program (FedRAMP) self- assessment reports and physical locations lists.… more
- CGI Technologies and Solutions, Inc. (Fort Belvoir, VA)
- …Information Assurance policies, Security Technical Implementation Guides (STIGS), and Assured Compliance Assessment Solution (ACAS) scans. Report and remedy data ... with Government systems. Provide Federal Risk and Authorization Management Program (FedRAMP) self- assessment reports and physical locations lists.… more
- Saliense Consulting (Mclean, VA)
- …(or contingency to have within 8 months) ISC2 Certified in Governance, Risk and Compliance (CGRC) (Formerly CAP ) or industry equivalent certificate. + Must have ... and account management. Duties include: + Developing and maintaining the master assessment schedule and schedule security assessments + Leading and conducting … more
- Tetrad Digital Integrity LLC (Washington, DC)
- …Risk Management Framework (RMF) support for a Department of Defense (DoD) program operating within Google Cloud Platform (GCP). This position involves direct support ... This will be a key role in securing complex cloud environments, ensuring compliance with DoD cybersecurity policies, and guiding the system through the RMF lifecycle… more
- NANA Regional Corporation (Fort Belvoir, VA)
- …Department of Defense (DoD) component in managing enterprise cybersecurity operations, compliance initiatives, and technical risk assessments. This role focuses on ... team that provides enterprise-wide support including Blue Team - aligned assessment activities and site visits, cybersecurity assistance reviews, and risk posture… more
- KBR (Chantilly, VA)
- …Plan of Action and Milestone (POA&M), Risk Assessment Report (RAR), and Security Assessment Plan (SAP). + Assess system compliance against NIST, DoD, and IC ... work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions. + Collaborative Environment: Be… more
- KBR (Chantilly, VA)
- …(RAR), and Security Assessment Plan (SAP). + Assist in assessing system compliance against NIST, DoD, and IC security requirements to include the NIST 800-53 and ... work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions. + Collaborative Environment: Be… more
- Amazon (Arlington, VA)
- …This role will assist in developing, monitoring and evaluating corrective actions ( CAP ) for suppliers due to findings identified during designed audits and ... supply chain, including quality issues, delivery delays, financial instability, and compliance breaches * Investigate supplier compliance breaches upon… more
- Capital One (Mclean, VA)
- …properties. The responsibilities for this role are specialized in the analysis and assessment of risk associated with loans secured by Commercial Real Estate (CRE) ... site assessments (ESAs), and property condition reports (PCRs) + Compliance & Servicing Actions: Ensure borrower compliance ...and caps), and key performance indicators (NOI, DSCR, LTV, Cap Rate, Debt Yield) + Completion of a formal… more
- General Dynamics Information Technology (Fairfax, VA)
- …systems that process sensitive data at scale, ensuring continuous compliance with federal cybersecurity frameworks and regulations. **Responsibilities:** + Serve ... + Manage the full Risk Management Framework (RMF) lifecycle and oversee Assessment & Authorization (A&A) activities. + Develop and maintain security documentation,… more
- Northrop Grumman (Fairfax, VA)
- …Implementation Guide (STIG) and requirements development to ensure regulatory compliance + Accreditation functions, including documentation, scanning, assessment ... from acceptable configurations, enclave policy, or local policy. Establishes strict program control processes to ensure mitigation of risks and supports obtaining… more