- ICF (Reston, VA)
- …and countermeasures, and document the analysis in White Papers + Review NIST guidelines and create Security Provisions for FPLS Certification and Accreditation, ... incorporate OCSE security directives to enhance infrastructure protection, and complete FPLS System Self Assessments + Ensure accurate and complete FISMA reporting through the Security and Privacy Risk Management Framework Portal (RMFP) as well as the Security… more
- MPR Associates (Alexandria, VA)
- …of electrical and electronics theory + Extensive knowledge of cybersecurity frameworks from NIST , FDA, FIPS and RMF processes within the Federal government + Strong ... background in networking including but not limited to: + Knowledge of Ethernet, TCP/IP, IPv4, IPv6 + Ability to create and interpret network diagrams + Managing and modifying registry, group policy and firewall settings + Software programming experience,… more
- CoStar Realty Information, Inc. (Arlington, VA)
- …ERP environment. + Working knowledge of recognized cybersecurity frameworks, such as ** NIST 800-53** , **ISO/IEC 27001** , or **CIS Controls** , with ability ... to map framework requirements to enterprise financial systems. + Certification(s) such as **CISA** , **CIA** , **CPA** , or **ITIL Foundation** strongly preferred. + Experience supporting a user base of 500+ across global financial systems. **Why Join CoStar… more
- Amentum (Springfield, VA)
- …of 3-6 years of experience + Experience in assessing systems using NIST 800-53 and DISA, Defense Information + Systems Agency(DISA) Security Technical Implementation ... Guides (STIGs)and Security Requirements Guide (SRG) Department of Defense (DOD) 8070/8140 Compliant + Efficient with Risk Management Framework Package development, including Plan Of Action Milestone (POAM) (mitigation statements) Security plans, Risk… more
- Amazon (Herndon, VA)
- …(eg, Terraform, Python) - Knowledge of security and compliance standards (eg, NIST , ICD) - Strong communication skills with the ability to explain technical ... concepts to both technical and non-technical audiences Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status. Our inclusive culture empowers Amazonians to… more
- William C Brown Inc (Springfield, VA)
- …(IaC) tools (eg, Terraform, Ansible) Understanding of Risk Management Framework (RMF) NIST SP 800-53 Understanding of security best practices and tools (eg, ... vulnerability scanning, penetration testing) Strong problem-solving and troubleshooting skills Excellent communication and collaboration skills Technical curiosity to learn new skills and are ready to help across the team Location Springfield… more
- Leidos (Alexandria, VA)
- …architectures, LAN/WAN, TCP/IP, routing, and switching + Strong understanding of NIST 800-53, 8551.01, DISA security policies, and compliance monitoring + Excellent ... written and verbal communication for technical documentation and stakeholder engagement **Original Posting:** July 8, 2025 For US Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain… more
- ARSIEM (Arlington, VA)
- …of incident response and handling methodologies + Having close familiarity with NIST 800-62 (latest revision), and FISMA standards as they pertain to reporting ... incidents + Ability to prioritize incidents, investigate and describe tactics used in phishing campaigns, as well as recognize gaps in incident reporting + Knowledge of general attack stages (eg, footprinting and scanning, enumeration, gaining access,… more
- ARSIEM (Arlington, VA)
- …of incident response and handling methodologies + High familiarity with NIST 800-62 (latest revision) and FISMA standards pertaining to reporting incidents. ... + Knowledge of the NCCIC National Cyber Incident Scoring System to be able to prioritize triaging of incidents + Knowledge of general attack stages (eg, footprinting and scanning, enumeration, gaining access, escalation of privileges, maintaining access,… more
- Sciolex Corporation (Chantilly, VA)
- …and Implementation of Information Assurance initiatives in accordance with DoD NIST and Intelligence Community ICD503 processes + Work with Directorates and ... Offices to prepare and provide Assessment and Authorization (A&A) packages for ATO + Interface with multiple government agencies in the areas of Information Assurance and act as a liaison between government program offices (Directorates and Offices) and… more