Security Assessor

Location: Rockville, MD
Date Posted: 04-02-2018
We are seeking candidates for 2 full time openings in Rockville, MD. We are seeking a Mid-level Assessor with 4 to 7 years of experience and a Senior-Level Assessor with 7+ years of experience. We can not use partners for these openings.
  • Location: Rockville, MD for ramp-up/training (approximately 90 days) with opportunity to transition to remote.
  • Security Clearance: active MBI Clearance highly desired, ability to attain is required.
  • Available: ASAP
  • Salary: dependent upon experience, competitive market rate
Responsibilities:
  • Supporting the  Certification Program Office (CPO) requirements and priorities with staff-like access based on completed Public Trust Clearance;
  • Conducting FISMA Annual Security Controls Assessments (ASCAs) on IRS FISMA reportable systems;
  • Scheduling and facilitating ad-hoc discovery sessions with the applicable stakeholders;
  • Scheduling and facilitating the Control Selection Meeting (CSM), Control Assessment Meeting (CAM) and Findings Review meetings with the system stakeholders;
  • Preparing a customized Assessment Plan based on the Control Selection Memo (CSM) and working closely with the System POC to coordinate the data gathering effort;
  • Reviewing and analyzing evidence to ensure each assessment objective is achieved;
  • Developing Security Assessment Report (SAR) based on assessment results;
  • Converting System Security Plan (SSP) to latest templates for the assessment;
  • Taking notes during the meetings;
  • Meeting deadlines and abiding by project schedule;
  • Attending and participating in team meetings and training (customer meetings/commitments take priority);
  • Taking PRIDE in work products and authorship;
  • Completing work to quality standards 
Qualifications:
  • Bachelor’s degree in relevant technical area or equivalent work experience
  • 4-7 years of relevant experience in information assurance, cyber security, or information technology for Mid-level Assessor
  • 7+ years of relevant experience in information assurance, cyber security, or information technology for Mid-level Assessor
  • Knowledge of National Institute of Standards and Technology’s (NIST) Special Publication (SP) 800-53 and NIST 800-137
  • Ability to develop strong working relationships with all relevant parties especially with the IRS CPO POCs and stakeholders;
  • Ability to work well with others in a collaborative manner and be a self-starter;
  • Team player capable of working in a results oriented environment;
  • Strong interpersonal, team building, active listening, and attention to detail are a must;
  • Excellent communication skills, both written and verbal with strong presentation skills.
or
this job portal is powered by CATS