Senior Information Assurance Engineer

Location: Bethesda, MD
Date Posted: 04-17-2018
Position Overview:
As a Senior Information Assurance Assessor/Engineer, you will also conduct FISMA-driven security assessments on Federal systems. At a minimum, you must have a sound working knowledge of National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53, Revision 4, and the Risk Management Framework (RMF) process outlined in the NIST SP 800-37, Revision.
Duties and Responsibilities:
  • Essential duties and responsibilities include the following. Other duties may be assigned.
  • Performs independent risk assessments and systems audits, as required;
  • Reviews security controls in accordance with the NIST SP 800-53 controls and generates compliance status reports;
  • Evaluates new IT systems involving software, hardware, configuration, and proposed changes to ensure IT security posture is in compliance with existing information security policies and regulations;
  • Collects evidence to support the implementation of system baseline security controls and performs analysis on evidence to ensure compliance with the systems security plan and risk management framework designs;
  • Coordinates resolution of system deficiencies and POA&M findings with other Department offices, as required;
  • Prepares plan of action and milestones (POA&M) reports to record system deficiencies and findings for all DS applications
  • Reviews and validates system configurations to ensure that a suite of security and compliance software, hardware and related toolsets are in accordance with appropriate risk management framework design;
  • Performs continuous monitoring activities on new and existing systems and networks.
Job Qualifications:
  • Must have Public Trust
  • CISSP certification Required
  • CAP Preferred
  • Bachelor's degree in Computer Science, Information Systems, Software Engineering or other related analytical, scientific, or technical disciplines.
  • Minimum of 8+ years of system security and/or FISMA compliance based experience
  • Ability to interpret the results of vulnerability scans and penetration tests
  • Demonstrated ability to conduct a system security assessment with minimal guidance
  • Familiarity with A&A Package deliverables (SAP, SAR, SSP, SCF)
This is an excellent opportunity for an experienced and motivated IT Professional seeking personal challenges and professional rewards. NIS is a fast-growing, award-winning provider of IT solutions and services, and provides software engineering and development solutions using a variety of development tools, including host-based, web-based, and client-server applications. We offer a unique, stimulating, challenging, and fun environment that fosters individual growth and rewards performance.
Our competitive benefits package includes medical and dental coverage, 401k plan with employer contribution, paid holiday, vacation and sick leave, metro-check program, and tuition reimbursement. If you enjoy working with bright, highly motivated people that are dedicated to excellence, please apply today!
Nationwide IT Services, Inc. provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics.
Talent Acquisition
Nationwide IT Services, Inc. (NIS)
this job portal is powered by CATS