3 SECURITY CONTROL ASSESSOR-INTERMEDIATE (NGA) Jobs in Fort Belvoir, VA
SORT BY
Q
C
C
SECURITY CONTROL ASSESSOR-INTERMEDIATE (NGA)
$90k-110k (estimate)
Full Time | Business Services
1 Month Ago
Sorry! This job is no longer available. Please explore similar jobs listed on the left.
QUANTUM RESEARCH INTERNATIONAL is Hiring a SECURITY CONTROL ASSESSOR-INTERMEDIATE (NGA) Near Fort Belvoir, VA
OverviewQuantum Research International, Inc. (Quantum) provides our national defense and federal civilian and industry customers with services and products in the following main areas: 1) Cybersecurity and Information Operations; 2) Space Operations and Control; 3) Aviation Systems; 4) Ground, Air and Missile Defense, and Fires Support Systems; 5) Intelligence Programs Support; 6) Experimentation and Test; 7) Program Management; and (8) Audio/Visual Technology Applications. Quantum's Corporate Office is located in Huntsville, AL, but Quantum actively hires for positions nationwide and internationally. We pride ourselves on providing high quality support to the U.S. Government and our Nation's Warfighters. In addition to our corporate office, we have physical locations in Aberdeen, MD; Colorado Springs, CO; Shalimar, FL; and Tupelo, MS.
MissionThe SECURITY CONTROL ASSESSOR (Intermediate) conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST 800-37).
Responsibilities
MissionThe SECURITY CONTROL ASSESSOR (Intermediate) conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST 800-37).
Responsibilities
- Manage and approve Accreditation Packages (e.g., ISO/IEC 15026-2).
- Plan and conduct security authorization reviews and assurance case development for initial installation of systems and networks.
- Review authorization and assurance documents to confirm that the level of risk is within acceptable limits for each software application, system, and network.
- Verify that application software/network/system security postures are implemented as stated, document deviations, and recommend required actions to correct those deviations.
- Develop security compliance processes and/or audits for external services (e.g., cloud service providers, data centers).
- Perform security reviews and identify security gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy.
- Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
- Verify and update security documentation reflecting the application/system security design features.
- Ensure that security design and cybersecurity development activities are properly documented (providing a functional description of security implementation) and updated as necessary.
- Ensure that all acquisitions, procurements, and outsourcing efforts address information security requirements consistent with organization goals.
- Assess the effectiveness of security controls.
- Assess all the configuration management (change configuration/release management) processes.
- Bachelor’s degree. In lieu of degree, Security , CGRC/CAP, CASP , Cloud , PenTest , or GSEC may be accepted.
- Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
- Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
- Ability to identify systemic security issues based on the analysis of vulnerability and configuration data.
- Ability to communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.
- Knowledge of cyber threats and vulnerabilities
- Ability to prepare and present briefings and technical documentation.
- Ability to collect, verify, and validate test data.
- Knowledge of cyber defense and vulnerability assessment tools and their capabilities.
- Ability to ensure security practices are followed throughout the acquisition process.
- Ability to apply collaborative skills and strategies.
- Ability to apply critical reading/thinking skills.
- Ability to effectively collaborate via virtual teams.
- Ability to evaluate information for reliability, validity, and relevance.
- TS/SCI eligible, subject to CI Polygraph.
- IAT or IAM Level 2
- Skill in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.
- Skill in network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.
Job Summary
JOB TYPE
Full Time
INDUSTRY
Business Services
SALARY
$90k-110k (estimate)
POST DATE
05/26/2024
EXPIRATION DATE
06/23/2024
WEBSITE
firstresponseteam.com
HEADQUARTERS
Shalimar, FL
SIZE
<25
INDUSTRY
Business Services
Related Companies
Show more
Similar Jobs
Popular Articles
Top 10 Things to Avoid Putting on a Job Application
Read Article
How to Describe Your Education in a Resume
Read Article
How to Write a Memorable Cover Letter in 5 Ways
Read Article
4 Personal Finance Tips to Make During Job Transition
Read Article
4 Best Camera Setups for Interview
Read Article
Keeping a Job Search Journal: 9 Types of Journaling You Can Do
Read Article
