COPPER RIVER ENTERPRISE SERVICES

  • Information Assurance SME/Team Lead

    Job Location
    MD-Bethesda
    # of Openings
    1
    Security Clearance
    Ability to gain Public Trust Lvl V
    Percentage of Travel Required
    N/A
    Type
    Regular Full-Time
  • Overview

    Provide the client with expertise and solutions to facilitate assessments and security related matters at the location.

    Responsibilities

    • Develop and provide FISMA compliant system security authorization packages; security authorization packages contain documentation, reports, and test results that provide the Authorizing Official (AO) information and evidence for determining risks and decisions for system authorization
    • Review System Security Plan (SSP), Business Impact Assessment (BIA), and Information System Contingency Plan (ISCP)
    • Develop Security Assessment Plan (SAP)
    • Develop and update the Security Assessment Report (SAR)
    • Develop and execute the Security Controls Assessment (SCA)
    • Conduct ISCP exercises, document findings in report format
    • Develop and update Plan of Action and Milestones (POA&M), Prepare and conduct findings briefing, document and discuss recommended remediation
    • Develop and update Plan of Action and Milestones (POA&M), Prepare and conduct findings briefing
    • Develop NIST / FISMA SA&A documentation for systems and networks undergoing certification and validate the quality of deliverables produced by the team
    • Assess risks, identify mitigation requirements and develop accreditation recommendations; be responsible for tracking SA&A requirements for assigned systems within the agency and validate that tasks are on schedule, and ensure the delivery of quality documentation
    • Assist in the creation of SA&A packages with the responsibility for gathering information from system owners, applying data to the appropriate templates, and conducting meetings in support of the effort
    • Determine enterprise information assurance and security standards
    • Develop and implements information assurance/security standards and procedures
    • Coordinate the identification, reporting, and resolution of security violations across multiple divisions within the organization
    • Establish and satisfy information assurance and security requirements based upon the analysis of user requirements, policy, regulatory, and resource demands
    • Perform vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle

    Qualifications

    • Education:
      • College degree in Information Security or relevant field
    • Required Knowledge/Experience:
      • Knowledge and experience with NIST Risk Management Framework required
      • 10+ years of working experience in security related field
      • Security +, SANS, ISC2, CISSP or other relevant certification
      • Demonstrated ability to review and edit draft security artifacts as assigned to ensure compliance with SA&A, and FISMA
      • Experience working and managing virtual team and could work virtually on a schedule determined by the prime contractor PM
      • Strong communication, soft and writing skills, along with technical knowledge are core to this position knowledge skills and abilities
      • Ability to work under compressed deadlines and adapt to a client with changing requirements
      • Experience and Competency with:
        • Trusted Agent FISMA (TAF)
        • Tenable Security Center
        • Strong understanding and demonstrated experience applying a risk-based approach to information security and IT assessments
      • Ability to work in a fast-paced, demanding environment
      • Excellent organizational skills and strong attention to detail
      • Ability to prioritize duties based on shifting demands
      • Knowledge in DBProtect, WebInspect, Firewalls, and Enterprise anti-virus management
      • Strong analytical and problem-solving skills
      • Excellent verbal and written communication skills

    Other Responsibilities

    • Perform other tasks consistent with the goals and objectives of the department/contract
    • Perform other duties as assigned by Sr Program Manager

    Invest in a company that invests in you! Copper River provides its employees with ample opportunities for career growth and development. Tuition reimbursement is offered to help employees further their education and skillset. Other perks include Open Leave, 401k matching with immediate vesting, Medical, Vision, and Dental coverage.

     

    EEO/AA Employer Minorities/Females/Vets/Disability

     

    Disclaimer: The above statements are intended to describe the general nature and level of work performed by employees assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed