Skip to content
Information Assurance and Security – Lead Associate
| Company | Peraton |
|---|
| Location | Woodlawn, MD, USA |
|---|
| Salary | $80000 – $128000 |
|---|
| Type | Full-Time |
|---|
| Degrees | Bachelor’s |
|---|
| Experience Level | Senior |
|---|
Requirements
- 5 years with BS/BA; 3 years with MS/MA; 0 years with PhD
- Experience developing and executing Plans of Action and Milestones (POAM)
- Experience supporting Federal Agencies in transitioning information systems to the latest revision of NIST 800-53
- Deep knowledge and understanding of NIST Special Publications such as NIST SP (800-18, 30, 37, 53, 53A, 60, 128, 137) and FIPS (199, 200)
- US Citizenship is required
- Ability to obtain/maintain a Public Trust clearance
Responsibilities
- Provides technical and programmatic information assurance services to internal and external customers in support of network and information security systems.
- Perform Security Assessment of information systems in accordance with Agency’s risk management framework
- Designs, develops, and implements security requirements within an organization’s business processes.
- Develops, revises and maintains a Security Assessment Plan (SAP).
- Conduct security control interviews, documentation review, testing security controls and artifact collection.
- Create draft Security Assessment Result (SAR) to communicate findings to System Stakeholders.
- Prepares security test and evaluation plans.
- Provides certification and accreditation support in the development of security and contingency plans and conducts complex risk and vulnerability assessments.
- Analyzes policies and procedures against Federal laws and regulations and provides recommendations for closing gaps.
- Recommends system enhancements to improve security deficiencies.
- Develops, tests, and integrates computer and network security tools.
- Secures system configurations and installs security tools, scans systems to determine compliance and report results and evaluates products and various aspects of system administration.
- Conducts security program audits and develops solutions to lessen identified risks.
- Provides information assurance support for the development and implementation of security architectures to meet new and evolving security requirements.
- Provides assistance to those conducting computer incident investigations.
- Performs vulnerability assessments including development of risk mitigation strategies.
- Support Federal Agency in transitioning information systems to revision of NIST 800-53
Preferred Qualifications
No preferred qualifications provided.
