Epicareer Might not Working Properly
Learn More

Lead Information Assurance Security Engineer - TS Cleared

Salary undisclosed

Apply on


Original
Simplified

Job Description

Job Description

RESPONSIBILITIES

  • Act as an independent and impartial assessor to determine and certify aggregate cybersecurity risk for recommendation to the SCA.
  • Experience in helping federal agencies manage risks associated with operating an on-premise and cloud-based information system while using RMF.
  • Conduct security control validation and assessment of technical security features of a system or network to address known threats and vulnerabilities.
  • The evaluation must consider and identify impacts as well as consideration of existing risk mitigation strategies.
  • Validate and assess security controls in accordance with NIST SP 800-53, CNSSI-1253 and with the DoD Risk Management Framework (RMF) process.
  • Conduct required vulnerability analysis to support mitigation and residual risk determination.
  • Ensure traceability of all vulnerabilities from raw assessment results to the POA&M.
  • Support updates of the RAR and POA&M based on the assessment results.
  • Advise the AODR, AO, CISO of all DoD RMF matters related to associated systems based on the evaluation of associated security controls and artifacts.
  • Identify, communicate and deliver concise, coherent narratives on key controls and technical details of nuanced issues.
  • Convey findings, recommendations and ideas on complex IT systems to functional leaders and executives.
  • Possess in-depth knowledge of all NIST and CNSSI publications related to RMF and security controls for national security systems (NSS) and non-NSS systems.
  • Possess working knowledge of DoD Risk Management Framework (RMF), DoD IA guidance and policies, and NIST 800 series standards.
  • Possess in-depth knowledge and hands-on experience with eMASS software supporting the RMF process.
  • Possess working knowledge of ACAS Security Center to include report generation and evaluation of vulnerability and discovery scans.
  • Possess experience with developing and briefing DoD Cybersecurity Scorecard and Key Performance Indicators (KPI)
  • Possess working knowledge of STIG Viewer to validate STIG checklists and SCAP scans.
  • Ability to work effectively within a team environment as well as independently.
  • Strong verbal and written communication skills.

REQUIRED QUALIFICATIONS

  • BS 8-10,Years, MS 6-8, PhD 3-5
  • eMASS Training and Experience
  • Minimum of DOD IAM II or III
  • Minimum Top-Secret Clearance
  • Bachelor s Degree
Company Description
Agensys Corporation is a small business IT Services firm headquartered in Loudoun County, Virginia. Our proven methodologies allow us to identify, attract and retain the highest quality of IT professionals. Agensys Corporation s leadership team capitalizes in over 30 years of expertise in government and commercial sectors and is one of the fastest growing Services firms in the DC Metro Area. Our goal is to develop strong relationships with our partners to understand and exceed the needs of their unique environments.

Company Description

Agensys Corporation is a small business IT Services firm headquartered in Loudoun County, Virginia. Our proven methodologies allow us to identify, attract and retain the highest quality of IT professionals. Agensys Corporation s leadership team capitalizes in over 30 years of expertise in government and commercial sectors and is one of the fastest growing Services firms in the DC Metro Area. Our goal is to develop strong relationships with our partners to understand and exceed the needs of their unique environments.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Report this job