Information Security Support specialist

Conviso Inc is looking for an experienced Information Security Professional to join our team in Washington, DC. If you have a strong background in NIST RMF, FedRAMP, risk assessments, and security compliance, this is a great opportunity to make an impact!

Title: Information Security Support

Location: Onsite – Washington, DC

Security Clearance: Eligible to obtain Public Trust High (Tier 4/BI)

Responsibilities:

• Conduct security control assessments using NIST RMF to identify gaps.
• Ensure compliance with NIST SPs, FIPS, FedRAMP, and federal regulations.
• Prepare Security Impact Assessments, Authorization Packages, and related documentation.
• Identify, assess, and prioritize security risks.
• Collect artifacts and document findings for compliance reporting.
• Provide remediation recommendations and track POAMs to closure.
• Coordinate third-party risk assessments and IT audits.
• Manage remediation efforts and enforce policy adherence.
• Support global security initiatives, reporting, and metrics programs.
• Provide security expertise to stakeholders and enforce policies.

Requirements:

• Education: Bachelor's in Computer Science or related field with security training.

Experience:

• 10 years in Information Security.
• 5 years managing Windows server platforms.
• Strong knowledge of NIST 800 series, FIPS, and federal security regulations.
• Experience with SA&A documentation, security scanners (Nessus, Nexpose), and vulnerability remediation.
• Expertise in security configurations (CIS, STIGs), log analysis, and intrusion detection.
• Familiarity with tools like Forescout, BigFix, and RES (preferred).

Certifications (Preferred):

• CISSP
• CISM