- The MITRE Corporation (Mclean, VA)
- …with Risk Management Framework (RMF) policies and procedures to include System Security Plans (SSPs), Risk Assessment Reports, A&A packages, and ... formal accreditation to operate classified information systems. + Review security artifacts and determine risk mitigation, perform continuous monitoring… more
- Epsilon, Inc (Arlington, VA)
- …solutions. Our services, ranging from systems administration and network engineering to Information security and data center management, are essential to the ... II. **Preferred Qualifications:** + Experience Shaping policies and programs for DoD information security initiatives. + Knowledge of NIST guidance (SP 800-37,… more
- USAA (Chesapeake, VA)
- …At USAA, our mission is to empower our members to achieve financial security through highly competitive products, exceptional service and trusted advice. We seek to ... truly makes us special and impactful. **The Opportunity** Our Information Management Analyst manages and analyzes information ...ensure data is retained and purged appropriately. + Data Security to ensure data is properly secured and handled… more
- Leidos (Chesapeake, VA)
- …Team at Leidos** The **Leidos Digital Modernization Sector,** within the Chief Information Security Office, is seeking an experienced ** Information ... program. In this role, you will collaborate with the Information System Security Manager and the broader...(ATO)** processes. + Conduct weekly audits and maintain comprehensive security documentation (SSPs, POA&Ms, Security Assessment… more
- Washington Metropolitan Area Transit Authority (VA)
- …monitoring strategy. + Advises security leadership (eg, Chief Information Security Officer [CISO], Director, etc.) on risk levels and security ... Drive resolution to closure for Audit and Risk findings, Security vulnerabilities, Certification issues, Application assessment findings, and business… more
- M. C. Dean (Chantilly, VA)
- … security threats/risks throughout the program life cycle. + Contribute to the security planning, assessment , risk analysis, risk management, ... engineers, and developers in the identification and implementation of appropriate information security functionality to ensure uniform application of … more
- CoStar Realty Information, Inc. (Arlington, VA)
- …CSGP) is a leading global provider of commercial and residential real estate information , analytics, and online marketplaces. Included in the S&P 500 Index and the ... been living and breathing the world of real estate information and online marketplaces for over 35 years, giving...The candidate will utilize threat modeling, white box application security analysis, and grey box penetration testing. This position… more
- Amentum (Springfield, VA)
- …certified. + Efficient with RMF Package development, including POAM (mitigation statements) Security plans, Risk assessment system/site policies, procedures ... **Duties May Include:** + Develop, update, and or review Risk Management Framework (RMF) documentation to include ( Security... systems and assist in remediation tasks. + Conduct risk and vulnerability assessment of information… more
- General Dynamics Information Technology (Herndon, VA)
- …mitigation strategies. + Maintain and update security documentation, including System Security Plans (SSP), Security Assessment Reports (SAR), and ... and hardening of operating systems (Linux/Windows) and application layers. + Conduct risk assessments, threat modeling, and security impact analyses for CDS… more
- Amentum (Arlington, VA)
- …address ongoing awareness of information security , vulnerabilities, security controls, and threats to support organizational risk management decisions. ... vulnerability assessments of IT and IS for authorization; prepare risk assessment reports for submission to the...and 90 day notices). * Develop and maintain an Information Security Continuous Monitoring (ISCM) Plan. This… more