- Koniag Government Services (Alexandria, VA)
- Koniag IT Systems, a Koniag Government Services company **,** is seeking an Open Security Controls Assessment Language SME with an active TS/SCI to ... time off, and more. We are seeking an experienced Open Security Controls Assessment... assessors, and compliance teams to improve efficiency in security control assessment and reporting.… more
- Koniag Government Services (Arlington, VA)
- …management tools) into RMF packages. + Provide subject matter expertise on leveraging OSCAL ( Open Security Controls Assessment Language) and other ... expertise in the development and deployment of automated RMF security control assessment , informing authorization,...expertise with RMF processes, NIST SP 800-53 Rev. 5 controls , and DoD RMF [DoDI 8510.01]. + Experience developing… more
- Eliassen Group (Richmond, VA)
- …the development of ** Security Assessment Plans (SAPs)** by identifying security controls to be tested and selecting appropriate assessment methods. ... + Conduct testing of implemented security controls using examination, interview, and technical evaluation techniques in...RMF, FISMA, and NIST SP 800-53/53A** control assessment procedures. + Hands-on experience with ** security … more
- Leidos (Alexandria, VA)
- **Description** Leidos is seeking multiple Security Control Assessors to support our traveling assessment team. These positions require extensive travel, ... processes for each assessment type. + Support assessment development and execution to ensure security ... gaps and provide mitigation recommendations. + Validate cybersecurity controls , TTPs, STIGs, RMF controls , and compliance… more
- Leidos (Alexandria, VA)
- **Description** Leidos is seeking multiple Junior Security Control Assessors to support our assessment team. These positions can be based out of any of our ... processes for each assessment type. + Support assessment development and execution to ensure security ... gaps and provide mitigation recommendations. + Validate cybersecurity controls , TTPs, STIGs, RMF controls , and compliance… more
- Leidos (Ashburn, VA)
- …major updates. Responsibilities may include creating security documentation (eg, System Security Plan, Security Assessment Report) and obtaining the ... system is authorized to operate + Conducting a formal assessment of the system's security posture +...the system's security posture + Evaluating whether security controls meet established standards and are… more
- Leidos (Chantilly, VA)
- …compliance ( security best practices) demands, providing leadership over security assessment activities, working across system ownership and management ... organizations to test security controls , policies, and procedures, providing program...participating in and coordinating the support as needed for security assessment and activities The ISSO also… more
- Deloitte (Richmond, VA)
- …environments (Azure ML, HSMs). + Data access controls (Azure Policy, Purview). + Security assessment tools (SAST, DAST) adapted for ML. The wage range for ... strategies, and create AI risk heat maps + Implement security controls throughout the AI/ML lifecycle (data...Certified Solutions Expert (MCSE) + Microsoft MCSD Certification + Open Group Certified Architect ( Open CA) +… more
- iCIMS (Richmond, VA)
- …level. + Strong understanding of security tools to support the execution of Security Control Assessments and evaluate control effectiveness. + Lead ... the execution of mitigation plans in alignment with established security policies and controls . + Manage internal...like ISO 27001, NIST, SOC 2, GDPR, and risk assessment methodologies + Knowledge of risk management processes and… more
- Eliassen Group (Richmond, VA)
- …matching, and life insurance._ **Responsibilities:** **Key Responsibilities** . Implement and document security controls in alignment with NIST SP 800-53 and the ... continuous monitoring. . Develop and maintain comprehensive security documentation: System Security Plans (SSPs), Security Assessment Reports (SARs), and… more
- Leidos (Ashburn, VA)
- …risk scoring, or AI-driven SOC platforms. + Working knowledge of auditing security controls , risk management, and compliance reporting. + Superior writing, ... + Privacy Impact Assessment (PIA) + Risk Assessment Plan + System Security Plan (SSP)...Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated… more
- Assertive Professionals (Chantilly, VA)
- Information System Security Engineer (ISSE) About the Organization Established in 2015,AssertiveProfessionals(AP), is anEconomically Disadvantaged Woman Owned Small ... the Department of Defense, Intelligence Community, and Department of Homeland Security in accomplishing their missions worldwide, through an employee centric culture… more
- Parsons Corporation (Chantilly, VA)
- …with security stakeholders including system engineers, program managers, security control assessors, and authorizing officials. + Provide independent ... Assessment and Authorization (A&A) documentation, eg System Security Plans (SSPs), Security Assessment ...solutions using technologies such as: + Nessus, WebInspect, Splunk, Open SCAP + Microsoft Windows Server Active Directory +… more
- William C Brown Inc (Springfield, VA)
- Cyber Security Operations Specialist II EOE Statement We are an equal employment opportunity employer. All qualified applicants will receive consideration for ... other characteristic protected by law. Description WCBinc is looking for a Cyber Security Operations Specialist II to operate and manage all aspects of Information… more
- Nightwing (Sterling, VA)
- …POAMs, SCTMs, SOPs, ConOps, test plans, etc. + Performing technical security control assessments to identify vulnerabilities and potential deficiencies ... tools and investigation methodologies + Experience with various information system security assessment /hardening tools - SCAP Compliance Checker, STIG Viewer,… more
- M. C. Dean (Chantilly, VA)
- …Working knowledge of operational control systems and implementing a variety of security assessment tools + Working knowledge of other operational control ... of a team that designs, engineers, integrates, operates and maintains electronic security services inclusive of intrusion detection, access control , biometric… more
- Shuvel Digital (Vienna, VA)
- Description: The IT Risk and Compliance Analyst will carry out IT security assessment activities including IT risk assessments and security reviews for ... university departments (eg developing asset inventory, assessing endpoint and application security controls and configurations, examining procedures, etc.) The… more
- Capital One (Mclean, VA)
- …independent risk analysis workshops, applying quantitative and qualitative risk assessment methodologies, understanding the stack of controls , identifying ... Risk (FAIR), Process, Risk & Control (PRC) library, Risk and Control Self Assessment (RCSA), scenario analysis, new initiative risk assessments) +… more
- Infinitive Inc (Ashburn, VA)
- …of IT GRC initiatives. + Maintained accurate documentation, including risk assessment reports, control frameworks, policies, and procedures. Required ... Information Systems Auditor), CRISC (Certified in Risk and Information Systems Control ), CISSP (Certified Information Systems Security Professional), or… more
- Imagine One Technology & Management (Virginia Beach, VA)
- …Diagram + Completing the Hardware and Software List + Updating Implementation Plan, Security Controls /Aps/CCIs and anything WRT the RMF/RMF AO package + Apply ... Manager (ISSM) and director of the facility (ie, unauthorized devices) + Track security baselines and attend configuration control board (CCB) meetings dealing… more