- ManTech (Virginia Beach, VA)
- …access controls , and compliance results in eMASS. + Evaluate control effectiveness through testing , documentation review, and staff interviews, identifying ... creating network diagrams and data flows to support accurate control selection and secure system design. + Guide ...with eMASS for RMF package management, POA&M maintenance, and risk assessment + Proficiency with ACAS/Nessus vulnerability… more
- Infinitive Inc (Ashburn, VA)
- …effective integration of IT GRC initiatives. + Maintained accurate documentation, including risk assessment reports, control frameworks, policies, and ... GRC programs. + Provide recommendations for remediation and improvement based on risk assessment findings and best practices. Additionally, the ideal candidate… more
- NTT America, Inc. (Merrifield, VA)
- …as NIST, FISMA, FedRAMP, and RMF. The ISSO supports authorization and assessment activities, maintains continuous monitoring programs, and responds to incidents to ... with technical staff and external partners, as well as ensuring that security controls remain effective throughout the system lifecycle. The ISSO plays a central… more
- Navy Federal Credit Union (Vienna, VA)
- …and determine their residual risk through assessment of inherent risk and effective controls . The Summer Associate will support daily operations, ... Standards Compliance & Authorization, Assurance Monitoring and Analytics, and Controls Testing /Regulatory Compliance. Summer Associates working within this… more
- Koniag Government Services (Alexandria, VA)
- …matter expertise in the development and deployment of automated RMF security control assessment , informing authorization, and continuous monitoring processes. + ... packages. + Provide subject matter expertise on leveraging OSCAL (Open Security Controls Assessment Language) and other machine-readable compliance frameworks. +… more
- RTX Corporation (Richmond, VA)
- …requirements, and local regulations. + Strong understanding of global digital controls , risk management frameworks, standards, and best practices (eg, ... (KRIs) metrics related to SRS. + Lead the identification, assessment , prioritization and reporting of digital controls ...to ensure a cohesive approach to regulatory & policy testing and assessment . + Partner with other… more
- Elevance Health (Richmond, VA)
- …enterprise response exercises. + Leads the development and execution of risk assessment methodologies that address business disruption, regulatory compliance, ... Supports vendor-related incidents and disruptions. + Leads development and execution of risk assessment methodologies to fit business, regulatory, and technical… more
- SAIC (Springfield, VA)
- …(Security Plans, Implementation Plans, Plans of Action and Milestones (POA&Ms), and Risk Assessment Reports. + Assess system compliance against National ... with RMF Package development, including POAM (mitigation statements) Security plans, Risk assessment system/site policies, procedures and processes, architecture… more
- Truist (Richmond, VA)
- …and the Engagement Manager. 7. Develop advanced audit skills and begin developing risk assessment and project management skills 8. Deepen knowledge of the ... skills. 7. Strong knowledge of audit principles, practices, and methodologies including risk assessment , and audit documentation. 8. Good aptitude for learning… more
- Guidehouse (Reston, VA)
- …team of Assessors in conducting rigorous technical testing of security controls across various domains such as access control , cryptography, network ... Information Security Consultant to leverage their understanding of IC/DOD Risk Management Frameworks (RMF), continuous monitoring, risk ...as a high-level assessor to help all the Security Control Assessors (SCA) on the RMF Team with their… more