Information Assurance, Security and Controls Assessor with Security Clearance
Company: Phacil, Inc.
Posted on: March 18, 2019
Is it time for a new and exciting job opportunity? Phacil, an employee-owned IT consulting company, is seeking an Information Assurance, Security and Controls Assessor for an important customer in Vienna, VA. Join an amazing group of dedicated professionals and see the possibilities! We bring service excellence and professional commitment delivering quality service and ferocious execution to our Federal Government customers. We provide solutions in the areas of Information Assurance, Cyber Security, Artificial Intelligence, Software & Systems Engineering, Cloud & Managed Services, and Network Engineering. Join us by applying at www.phacil.com/careers/opportunities . This is a hands-on, Risk Management Framework, security assessor position requiring intermediate knowledge of Windows Server 2008/2012; Red Hat Linux; VMWare; SQL Server; Oracle, and other administrative aspects of workstation and enterprise server technology. Support the security assessment of globally-deployed departmental systems through hands-on execution of customer-supplied tools and best-practice techniques, including manual and automated verification scans against defined component baselines. Determine the security and configuration status of a variety of system components including Linux and Windows operating systems; SQL Server and Oracle databases; system support components; VMWare implementations. There are occasional ---one-off--- components requiring the development of baseline security configurations, hence technical curiosity and a desire to learn and innovate are beneficial. For Assessment & Authorization purposes, validate the components and configurations of departmental systems deployed both globally and domestically. Identify misconfigurations, non-compliances, and anomalies which are relevant to FISMA assessment practices. Coordinate system assessment and findings to the Security Analyst for inclusion in the Security Assessment Report and participate in findings meetings with relevant system stakeholders. Using the NIST Risk Management Framework and the NIST 800-53 security control catalog, map system and configuration anomalies to specific NIST security controls, along with specific remediation. Write accurate, cogent and defensible descriptions of security configuration status as well as succinct and defensible suggested remediation. Required Skills --- Linux and Windows Server environment familiarity --- Ability to design and/or develop custom scripts (bash and Windows Powershell or equivalent) --- Working knowledge of various assessment tools that may include Oracle OEM, DBsat, Tenable Nessus, HP Webinspect, AppDetective, nmap, and related --- NOC, SOC, operations, data center, configurations management or similar related experience --- NIST and Risk Management Framework (RMF) familiarity and use Preferred Skills --- Prior Department of State experience --- Application security principles and experience --- NOC, SOC, operations, data center or similar experience --- Knowledge of cloud migrations/assessments or PKI-DAR (data at rest) or general services support typical of completing RMF type assessments Degree Required/Equivalent Experience w/o degree: 3-5 years of experience Certification Requirements: CAP, CISSP, Security + or related certifications preferred Travel Requirement: None, Local only metro DC area Additional info regarding work environment: 8 AM to 5 PM with Flex, Monday thru Friday at Prime contract site in Vienna, VA. Top Secret
Keywords: Phacil, Inc., Washington DC , Information Assurance, Security and Controls Assessor with Security Clearance, Other , Vienna, DC
Didn't find what you're looking for? Search again!