- TestPros (Sterling, VA)
- …expertly and consistently: + Develop NIST 800-53 Rev5 based System Security Plan ( SSP ). + Create/Update the applicable documents identified by NIST 800-53 Rev 5, ... specifically the Security Assessment Report (SAR). + Create/Update the associated Plan of Actions and Milestones (POA&M). + Provide detailed security-related reports including data, analyses, and conclusions upon completion of tests, scans, and assessments,… more
- GovCIO (Richmond, VA)
- …+ Develops and maintains security documentation, including System Security Plans ( SSP ), Plan of Action and Milestones (POAMs), Business Impact Analyses (BIA), ... Information Security Contingency Plans (ISCP), Configuration Management Plans (CMP), etc. + Evaluates security controls and identifies potential vulnerabilities within software and systems, providing mitigation strategies and recommendations. + Collaborates… more
- BAE Systems (Sterling, VA)
- …developed for each project in order to write the Systems Security Plans ( SSP )/CONOPS in the Greenlight application. + Gather the information by working with various ... team members in order to write various additional A&A related documents such as Contingency Plan (CP), General User Guide (GUG), Privileged User Guide (PUG), Standard Operating Procedures (SOP s), etc. + Support Accreditation and Authorization (A&A) reviews by… more
- Leidos (Alexandria, VA)
- …update documentation in the Risk Management Framework (RMF) System Security Package ( SSP ), verify systems are operating in their intended manner, and validate ... administrator permissions and access to systems under their purview This role requires an individual that is familiar with security accreditation frameworks and directives (eg NIST, RMF, Common Criteria, DoD, and Intelligence Community Directives (ICDs)) and… more
- SAIC (Arlington, VA)
- …and/or prepare and maintain security Assessment and Authorization documentation (eg, IA SOP, SSP , RAR, SCTM). + Support higher level ISSOs and ISSMs with daily ... requirements while being mentored. **Qualifications** **Required Education & Qualifications:** + **Active DoD Secret Clearance** + **Current/active professional certification that complies with DoD 8570 IAM Level I requirements. Security+ certification is a… more
- BOOZ, ALLEN & HAMILTON, INC. (Lorton, VA)
- …IAM III Certification such as CISSP Certification Nice If You Have: + Experience developing SSP or ATO packages for systems deployed in a DoD cloud environment + TS ... / SCI clearance + Bachelor's degree in CS, Cybersecurity, or a technical field + DoD 8570 IAM III - CISSP Certification + Amazon Web Service ( AWS ) , Micro sof t Azure, or Google Cloud Service Provider Certification Clearance: Applicants selected will be… more
- St. George Tanaq Corporation (Richmond, VA)
- …+ Coordinate and prepare system documentation including: System Security Plan ( SSP ); Security Assessment Report (SAR); Risk Assessment Reports (RAR); Incident ... Response Plans (IRP). + Conduct regular security reviews, vulnerability assessments, STIG compliance checks, and audit log reviews. + Collaborate with system owners, developers, and operations staff to ensure security is integrated into IT projects and daily… more
- AECOM (Virginia Beach, VA)
- …customer service expectations and training. + Dispatch and communicate with SSP patrollers, using program-directed radio and/or phone communication protocols. + ... Communicate with appropriate local agencies, authorities, and wrecker companies to effectively monitor and clear traffic incidents. + Answer phone calls and provide information to VDOT personnel, or other agencies on traffic and road conditions, transfer calls… more
- BOOZ, ALLEN & HAMILTON, INC. (Arlington, VA)
- …of Assessment and Authorization documentation such as the System Security Plan ( SSP ), Security Assessment Report (SAR), and Plan of Action and Milestones (POA&M). ... Provide cybersecurity guidance across technical and non-technical clients and peers. Basic Qualifications: + 1+ year of experience with hands-on security hardening, vulnerability management and audit log review in a Microsoft Windows environment + Knowledge of… more
- KBR (Chantilly, VA)
- …update, and/or review RMF documentation to include the System Security Plan ( SSP ), Security Control Traceability Matrix (SCTM), Plan of Action and Milestone (POA&M), ... Risk Assessment Report (RAR), and Security Assessment Plan (SAP). + Assess system compliance against NIST, DoD, and IC security requirements to include the NIST 800-53 and 800-171 controls, and DISA Security Technical Implementation Guides (STIGs) and Security… more