- Koniag Government Services (Arlington, VA)
- Koniag IT Systems, a Koniag Government Services company **,** is seeking an Open Security Controls Assessment Language SME with an active TS/SCI to ... time off, and more. We are seeking an experienced Open Security Controls Assessment... assessors, and compliance teams to improve efficiency in security control assessment and reporting.… more
- Koniag Government Services (Arlington, VA)
- …management tools) into RMF packages. + Provide subject matter expertise on leveraging OSCAL ( Open Security Controls Assessment Language) and other ... expertise in the development and deployment of automated RMF security control assessment , informing authorization,...expertise with RMF processes, NIST SP 800-53 Rev. 5 controls , and DoD RMF [DoDI 8510.01]. + Experience developing… more
- Eliassen Group (Washington, DC)
- …the development of ** Security Assessment Plans (SAPs)** by identifying security controls to be tested and selecting appropriate assessment methods. ... + Conduct testing of implemented security controls using examination, interview, and technical evaluation techniques in...RMF, FISMA, and NIST SP 800-53/53A** control assessment procedures. + Hands-on experience with ** security … more
- Leidos (Alexandria, VA)
- **Description** Leidos is seeking multiple Security Control Assessors to support our traveling assessment team. These positions require extensive travel, ... processes for each assessment type. + Support assessment development and execution to ensure security ... gaps and provide mitigation recommendations. + Validate cybersecurity controls , TTPs, STIGs, RMF controls , and compliance… more
- Leidos (Alexandria, VA)
- **Description** Leidos is seeking multiple Junior Security Control Assessors to support our assessment team. These positions can be based out of any of our ... processes for each assessment type. + Support assessment development and execution to ensure security ... gaps and provide mitigation recommendations. + Validate cybersecurity controls , TTPs, STIGs, RMF controls , and compliance… more
- Leidos (Ashburn, VA)
- …major updates. Responsibilities may include creating security documentation (eg, System Security Plan, Security Assessment Report) and obtaining the ... system is authorized to operate + Conducting a formal assessment of the system's security posture +...the system's security posture + Evaluating whether security controls meet established standards and are… more
- Leidos (Chantilly, VA)
- …compliance ( security best practices) demands, providing leadership over security assessment activities, working across system ownership and management ... organizations to test security controls , policies, and procedures, providing program...participating in and coordinating the support as needed for security assessment and activities The ISSO also… more
- Deloitte (Mclean, VA)
- …environments (Azure ML, HSMs). + Data access controls (Azure Policy, Purview). + Security assessment tools (SAST, DAST) adapted for ML. The wage range for ... strategies, and create AI risk heat maps + Implement security controls throughout the AI/ML lifecycle (data...Certified Solutions Expert (MCSE) + Microsoft MCSD Certification + Open Group Certified Architect ( Open CA) +… more
- Tyto Athene (Washington, DC)
- …and essential safeguards + Support Incident Response and Contingency activities + Perform security control assessment in using NIST 800-53A + Conduct ... vulnerability assessment tools, open -source vulnerability assessment tools, and techniques used for evaluating security... assessment tools, and techniques used for evaluating security controls on Windows, Linux, and Unix… more
- iCIMS (Washington, DC)
- …level. + Strong understanding of security tools to support the execution of Security Control Assessments and evaluate control effectiveness. + Lead ... the execution of mitigation plans in alignment with established security policies and controls . + Manage internal...like ISO 27001, NIST, SOC 2, GDPR, and risk assessment methodologies + Knowledge of risk management processes and… more
- Eliassen Group (Washington, DC)
- …matching, and life insurance._ **Responsibilities:** **Key Responsibilities** . Implement and document security controls in alignment with NIST SP 800-53 and the ... continuous monitoring. . Develop and maintain comprehensive security documentation: System Security Plans (SSPs), Security Assessment Reports (SARs), and… more
- Leidos (Ashburn, VA)
- …risk scoring, or AI-driven SOC platforms. + Working knowledge of auditing security controls , risk management, and compliance reporting. + Superior writing, ... + Privacy Impact Assessment (PIA) + Risk Assessment Plan + System Security Plan (SSP)...Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated… more
- Amentum (Washington, DC)
- …to a lengthy hiring process._ The PSS provides support for security assessment investigations, including background investigations, periodic reinvestigations, ... in the direction, from inception to completion of less complex security assessment investigations and rendering appropriate adjudication recommendations… more
- Assertive Professionals (Chantilly, VA)
- Information System Security Engineer (ISSE) About the Organization Established in 2015,AssertiveProfessionals(AP), is anEconomically Disadvantaged Woman Owned Small ... the Department of Defense, Intelligence Community, and Department of Homeland Security in accomplishing their missions worldwide, through an employee centric culture… more
- Leidos (Bethesda, MD)
- …into the system development lifecycle (SDLC), including selecting, implementing, and validating security controls . + Develop and maintain key security ... documentation such as System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessments, and...System Security Engineering management process to integrate security and privacy controls into complex hardware… more
- Fannie Mae (Washington, DC)
- …* Risk Assessment and Management including evaluating and designing controls , conducting impact assessments, identifying control gaps, remediating risk, etc. ... for assessing and identifying potential risks that may threaten our reputation, safety, security , and/or financial success, as well as work with management and team… more
- Parsons Corporation (Chantilly, VA)
- …with security stakeholders including system engineers, program managers, security control assessors, and authorizing officials. + Provide independent ... Assessment and Authorization (A&A) documentation, eg System Security Plans (SSPs), Security Assessment ...solutions using technologies such as: + Nessus, WebInspect, Splunk, Open SCAP + Microsoft Windows Server Active Directory +… more
- Xcelerate Solutions (Washington, DC)
- …/ or very sensitive security concerns relating to the most complex security assessment issues for the purpose of determining merit for granting, continuing, ... in the direction, from inception to completion, of highly sensitive and complex security assessment investigations conducted by the Agency Field Offices (FO) and… more
- Amentum (Washington, DC)
- …to a lengthy hiring process._ The PSS provides support for security assessment investigations, including background investigations, periodic reinvestigations, ... global logistics and stability operations, technical services and national security solutions to customers around the world. Amentum has...of the Internet to conduct research and / or open -source checks in aid of investigations + Experience with… more
- Tyto Athene (Washington, DC)
- …candidate will be responsible for are the System Security Plan, Risk Assessment Report, Security Assessment Plan and Report, Contingency Plan, Incident ... **Description** Tyto Athene is searching fora **Senior Information Systems Security Officer (ISSO)** with privacy experience. The candidate will ensure that … more