- Navy Federal Credit Union (Vienna, VA)
- …design and operating effectiveness of controls + Assist in performing IT control testing . Apply critical thinking skills by seeking to understand and execute ... technology areas including IT and information security. Responsibilities may include supporting control testing on in-flight audits, assisting with testing … more
- Humana (Richmond, VA)
- …enhancements to testing methodologies, identify gaps in organizational security controls , and suggest new assessment approaches to address emerging threats. ... assessments. + Your week involves reviewing new applications for security assessment opportunities, executing advanced penetration testing techniques across web… more
- CACI International (Hampton, VA)
- …addition, document and provide on-site assessments. + Perform a QA review of the risk scores and risk assessment reports. + Ensure processes, enhancements, ... following NIST 800-53. + Provide engineering services to support testing of SW that is enhanced and subsequently integrated...control impacts and likelihoods. + Prepare a system risk rating and determine risk reduction measures… more
- Infinitive Inc (Ashburn, VA)
- …effective integration of IT GRC initiatives. + Maintained accurate documentation, including risk assessment reports, control frameworks, policies, and ... GRC programs. + Provide recommendations for remediation and improvement based on risk assessment findings and best practices. Additionally, the ideal candidate… more
- ManTech (Virginia Beach, VA)
- …access controls , and compliance results in eMASS. + Evaluate control effectiveness through testing , documentation review, and staff interviews, identifying ... creating network diagrams and data flows to support accurate control selection and secure system design. + Guide ...with eMASS for RMF package management, POA&M maintenance, and risk assessment + Proficiency with ACAS/Nessus vulnerability… more
- NTT America, Inc. (Merrifield, VA)
- …as NIST, FISMA, FedRAMP, and RMF. The ISSO supports authorization and assessment activities, maintains continuous monitoring programs, and responds to incidents to ... with technical staff and external partners, as well as ensuring that security controls remain effective throughout the system lifecycle. The ISSO plays a central… more
- Navy Federal Credit Union (Vienna, VA)
- …and determine their residual risk through assessment of inherent risk and effective controls . The Summer Associate will support daily operations, ... Standards Compliance & Authorization, Assurance Monitoring and Analytics, and Controls Testing /Regulatory Compliance. Summer Associates working within this… more
- RTX Corporation (Richmond, VA)
- …requirements, and local regulations. + Strong understanding of global digital controls , risk management frameworks, standards, and best practices (eg, ... (KRIs) metrics related to SRS. + Lead the identification, assessment , prioritization and reporting of digital controls ...to ensure a cohesive approach to regulatory & policy testing and assessment . + Partner with other… more
- Koniag Government Services (Alexandria, VA)
- …matter expertise in the development and deployment of automated RMF security control assessment , informing authorization, and continuous monitoring processes. + ... packages. + Provide subject matter expertise on leveraging OSCAL (Open Security Controls Assessment Language) and other machine-readable compliance frameworks. +… more
- Elevance Health (Richmond, VA)
- …enterprise response exercises. + Leads the development and execution of risk assessment methodologies that address business disruption, regulatory compliance, ... Supports vendor-related incidents and disruptions. + Leads development and execution of risk assessment methodologies to fit business, regulatory, and technical… more