| Location | |
| Country: | United States |
| State/Prov: | Maryland |
| City: | Rockville |
| Position | |
| Position/Title: | Certification & Accreditation Engineer |
| Position Type: | Permanent F/T |
| Closing Date: | 2009-07-23 |
| Job Description: |
Primary Certifier (519) Applicants selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. Secret clearance is required and must be clearable to TS/SCI. • Review all aspects of complete C&A packages based on NIST standards for general support systems and major applications. • Recommend appropriate FIPS 199 impact level designations and identify appropriate security controls based on characterization of the general support system or major application. • Review and track POA&Ms for all accepted risks upon completion of system C&A. • Provide recommendations to the government on improvements and efficiencies in the enterprise C&A process and C&A organization. • Development of evaluation criteria and procedures for approval to ensure that systems are evaluated in a similar manner. • Assisting with the response to data calls from OIG, OMB, and other government agencies. • Provide recommendations on IT security best practices. • Integrate with a team of skilled information technology security professionals demonstrating competence in the application of the system certification guidelines and procedures. |
| Job Requirements: |
• Must possess 5 years dedicated security experience. BS Degree preferred. Security related Certification (CISSP, CAP, CISM, etc) strongly preferred. • Ability to and interest in providing support and guidance to System Owner’s through the four phases of C&A, including monitoring C&A artifact compliance, annual self-assessment (NIST 800-53A) completion, vulnerability scans, annual contingency plan testing, and POA&M management. Must possess experience with FISMA. • Ability to work effectively in a team environment and participate in collaborative initiatives which foster the mutual exchange of knowledge and expertise. • Must be able to multi-task, work independently and as part of a team, share workloads, and deal with sudden shifts in project priorities. • Ability to communicate effectively orally and in writing to build and maintain customer satisfaction and express conclusions in a clear, technically sound manner on matters associated with IT security. • Experience with developing Security Test and Evaluation Plans and analyzing the results of security test activities to evaluate the existence and effectiveness of 800-53 security controls. Desired Skills: • Awareness of current information security issues and the ability to interpret the requirements of relevant policies and standards set forth in NIST documentation, specifically, 800-37, 800-53A, FIPS-199/200, and 800-30. • Knowledge of NIST in regards to how it applies to FISMA reporting. • Above average skills in MS Excel, and MS Access (to include ability to write macros, and/or code). • CAP (Certification and Accreditation Professional) • CISSP (Certified Information System Security Professional) |
| Contact Information | |
| Contact Directions: | http://www.cytiva.com/kcg/apply2.asp?kcg?kcg519?sbarger? |
| Company: | Knowledge Consulting Group |
| First Name: | Stephanie |
| Last Name: | Barger |
| Title: | Technical Recruiter |
| Email: | stephanie.barger (at) knowledgecg (dot) com [email concealed] |
