- TestPros (Sterling, VA)
- …Solutions Architect certification PROFESSIONAL CERTIFICATIONS: ISA (PCI SSC Internal Security Assessor ), QSA (PCI Qualified Security Assessor PCIP (Payment Card ... Industry Professional), CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), GX-PT (GIAC Experienced Penetration Tester), GCIA (GIAC Intrusion Analyst), Other GIAC certifications Benefits TestPros offers a… more
- NTT America, Inc. (Merrifield, VA)
- …+ Active Secret Security Clearance **Preferred Qualifications:** + Security Control Assessor intermediate certifications: o CCISO, CISSP, or CISSP-ISSEP o CISA, or ... CISM o CPTE or CySAo FITSP-A o GCSA, GSLC, or GSNA + Information System Security Manager (ISSM) o SASP, SSCP o CCISO, CCSP, CISSP-ISSMP o CGRC/CAP o CISM o CompTIA: Cloud+, Security+ CE, Security X, o FITSP-M o SANS: GCIA, GCIH,GCSA, GICSP, GSEC, or GSLC… more
- General Dynamics Information Technology (Mclean, VA)
- …submissions in alignment with Continuous Monitoring activities. 3. Security Control Assessor (SCA) & Auditing + Security Audits & Inspections: Conduct comprehensive ... security control audits, traditional security reviews, and formal inspections, including preparing for and executing FedRAMP/IL6 third-party assessment organization (3PAO) assessments, DOD CDS assessments, and IC assessments. (Potential to support DCSA… more
- Kelly Services (Alexandria, VA)
- …have five (5) or more years with RMF including roles such as the security control assessor . + Must have two (2) or more years with Cross Domain Solutions (CDS) in ... the last five years **Required Qualifications:** + Experience working in DoD environments or with organizations requiring high-security standards + **Top Secret Clearance** + IAT Level II - CompTIA Security+ or SSCP (Systems Security Certified Practitioner);… more
- SMX (Fort Belvoir, VA)
- …POA&M items to meet DoD and IC standards. + Coordinate with the Security Control Assessor (SCA) to perform analysis of the overall risk level the system poses to ... enterprise networks and to mission data. + Create and maintain cybersecurity policies and standards. + Ensure that cybersecurity plans, controls, processes, standards, policies, and procedures are aligned with cybersecurity standards. + Ensures security scans… more
- Exeter Government Services, LLC (Newport News, VA)
- …existing risk mitigation strategies . Act as an independent and impartial assessor to determine and certify aggregate cybersecurity risk for recommendations for ... JTF-CS domain enclave . Develop a Security Assessment Plan (SAP) for JTF-CS domain enclave of the NORTHCOM enterprise within Enterprise Mission Assurance Support Service (eMASS), describing the objectives of the security control assessment and providing a… more
- ASM Research, An Accenture Federal Services Company (Richmond, VA)
- …to work independently with substantial cloud computing security knowledge. + The assessor must have the essential skillsets to identify, manage and resolve cloud ... computing security risk and implement "best practices" as applied within a cloud environment (across all of the different deployment and service models, and derivatives). **Other Duties and Responsibilities** + Investigates computer and information security… more
- BAE Systems (Mclean, VA)
- …independent proposal reviews (Red Teams, Phase Reviews). May participate as an assessor in the Phase Review Process. 6. Establish and manage negotiation strategies ... and financial requirements, perform business risk assessment and mitigation plans, conduct negotiation of contracts requiring a high degree of negotiation expertise and execute proposals and contracts to the threshold delegated. 7. Draft and negotiate complex… more
- Guidehouse (Reston, VA)
- …understanding of customer's mission and impact managerial practices. + Act as a high-level assessor to help all the Security Control Assessors (SCA) on the RMF Team ... with their assessments and assessment report reviews prior to submission to the government + Manage security controls assessments including kickoff, submission of deliverables, final report, and executive briefing + Conduct audits to ensure that security… more
- CoStar Realty Information, Inc. (Arlington, VA)
- …**Industry relevant professional certifications such as:** + Offensive Security Web Assessor (OSWA) / Expert (OSWE) + Offensive Security Certified Professional ... (OSCP) / Experienced (OSEP) + Hack the Box Bug Bounty Hunter (CBBH) / Web Exploitation Expert (CWEE) + Hack the Box Penetration Testing Specialist (CPTS) / AD Pentesting Expert (CAPE) + INE Security Web Application Penetration Tester eXtreme (eWPTX) + **Those… more