- Exeter Government Services, LLC (Newport News, VA)
- … risk mitigation strategies . Act as an independent and impartial assessor to determine and certify aggregate cybersecurity risk for recommendations for ... Security Plan (SP) + Security Assessment Report (SAR) + Risk Assessment Report (RAR) + Up-to-date POA&M + Updated...+ Assemble the security authorization package + Determine the risk to organizational operations to include delivering the Residual… more
- Leidos (Alexandria, VA)
- …and functional changes of assigned systems. + Conduct cybersecurity assessments, risk analyses (operational and technical) and authorization tasks across all RMF ... categorize systems (FIPS199). + Identify data classifications and conduct system-level risk assessments. + Track system changes, assess impacts, and report updates… more
- CoStar Realty Information, Inc. (Arlington, VA)
- …infrastructure for vulnerabilities using both manual and automated techniques + Demonstrate risk of detected issues to both technical and non-technical audiences + ... application + Experience writing comprehensive reports that clearly demonstrate the risk of vulnerabilities to developers and technical leadership + Experience with… more
- Guidehouse (Reston, VA)
- …cleared Sr. Information Security Consultant to leverage their understanding of IC/DOD Risk Management Frameworks (RMF), continuous monitoring, risk scoring, and ... understanding of customer's mission and impact managerial practices. + Act as a high-level assessor to help all the Security Control Assessors (SCA) on the RMF Team… more
- ASM Research, An Accenture Federal Services Company (Richmond, VA)
- …of the application of the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) standards and guidance as outlined in the NIST ... to work independently with substantial cloud computing security knowledge. + The assessor must have the essential skillsets to identify, manage and resolve cloud… more
- BAE Systems (Herndon, VA)
- …destruction, or disclosure of information. We are actively seeking Security Controls Assessor (SCA) with a minimum of 11 years' experience. Bachelor's or Master ... meets the customer s defined security requirements. + Produce risk data/artifacts that are submitted to an Information Systems...are submitted to an Information Systems Security Manager for risk analysis and decision making. + Use experience and… more
- UIC Government Services and the Bowhead Family of Companies (Arlington, VA)
- …policies and procedures, as defined by cybersecurity-related documentation to include the Risk Management Framework (RMF) and applicable overlays. * Ensure that all ... to DoD information Systems. Process and review DD-2875s. * Support Risk Management Framework (RMF) system categorization process and memorandum for Confidentiality,… more
- Kratos Defense & Security Solutions, Inc. (Herndon, VA)
- …environments. Must have previously performed assessment work based on Federal Risk and Authorization Management Program (FedRAMP) assessments, Department of Defense ... of Standards and Technology (NIST) Special Publications and frameworks. Key Responsibilities: Assessor Role + Support teams in the review and analysis of Security… more
- BAE Systems (Sterling, VA)
- …control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) and ICD 503 Security Accreditation for various Assessment ... and Authorization (A&A) reviews by ISSO/M, as well as the Security Controls Assessor (SCA) + Document the Plans of Actions and Milestones (POA&Ms) implementation… more