Survey
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
ClearanceLevelNeeded:Secret-TS/SCI Category:Government Location:WashingtonDCMetroArea
CyberSecurityProfessional TheCyberSecurityProfessionalwillberesponsibleforworkingcloselywiththe organizationsprojectteamstoensureinformationsystemsecurityconcernsare addressedduringthedevelopmentofanInformationSystem.TheCyberSecurity Professionalwillberesponsibleforreviewingsystem/applicationAuditLogsand supporttheorganizationsInformationSystemSecurityManager(ISSM)onallcyber relatedmatterconcerningthecustomerssystems.TheCyberSecurityProfessional willberesponsibleforpreparing,implementing,andmaintainingtheorganizations BodyofEvidence(BOE)andprojectdocumentationtoincludetheSystemSecurity Plan(SSP),RiskManagementPlan,SystemInventoryAssessment,andInformation AssuranceAssessmentsthataccuratelyreflectsthesecurityprotectionmeasuresfor eachinformationsystemunderthecustomerspurviewincompliancewiththe Communitycertificationandaccreditationprocess.Thetaskingwillinvolvefull systemcertificationandaccreditationonsystemsunderthecustomers’purview. TheCyberSecurityProfessionalwillprovidesystemarchitectureandinformation assurancesupportonthedevelopment,integration,andoperationsand maintenanceofCustomersystemsdeployedontheCommunityinfrastructure, followingtheprojectdevelopmentlifecyclecompliancewiththeCommunityProject Managementandsecurityprocesses.Thecustomeriscontinuallysearchingforways toimproveourprocessesandprovidebetterservicestoourcustomers.TheCyber SecurityProfessionalisexpectedtoprovideinsightintobetterwaysofdoing businessandsupportusintheeffort. Duties: 1. Ensureinformationsystemsecurityconcernsareaddressedduringthe developmentofanInformationsystem. 2. Prepare,implementandmaintaintheorganizationsBodyofEvidence(BOE)to includeSystemSecurityPlan(SSP),RiskManagementPlan,andSystem InventoryAssessment. 3. Provideinsightintoindustrytrendsandmakerecommendationsonfuture directionfortheprogram. 4. Utilizecomplexanalysistoolstoidentifyandcorrectproblems. 5. Providetechnical/analyticalrecommendationsforimprovement. 6. Workwiththecustomertoimprovemetricsforreporting. Required: 1. Demonstratedon-the-jobexperienceinInformationSecurity/Information Assurance/CyberSecurity,specificallyasrelatedtoEnterpriseandoperational networksandsystems. 2. Demonstratedon-the-jobexperienceshowingfamiliarizationwithsecurity vulnerabilitytestingtoolssuchasNessus,AppDetective,NMAP,WebInspect,& self-scans. 3. Demonstratedon-the-jobexperiencecollaboratingandworkingwithSubject MatterExperts(SMEs)ondevelopingauthorizationpackagesinsupportof achievingAuthoritytoOperate(ATO)withinrequiredtimelines. 4. On-the-jobexperiencewithcompliancemanagementusingtheRMF Desired: 1. Demonstratedon-the-jobexperiencewithCloudComputingTechnologies, particularlyAWS. 2. Demonstratedon-the-jobexperiencecommunicatingcomplextechnicalconcepts andprojectinformationclearlyandconciselytobothtechnicalandnon-technical audiences. 3. Demonstratedon-the-jobexperiencewithasoftwarepackageusedfor processingtheA&Aprocess. 4. BachelorofScienceand/orMastersofScience(MS)inInformation Assurance/Cybersecurity.