- TestPros (Sterling, VA)
- …Cyber Security, NIST 800-53, NIST SP 800-171 / CMMC Consulting/ Assessment /Compliance, PCI Compliance, Zero Trust, Resiliency, Computer Forensics, Software Supply ... Software Testing, Test Automation, Section 508 and WCAG Accessibility Assessment and Remediation, Localization Testing, Independent Verification and Validation… more
- NTT America, Inc. (Merrifield, VA)
- …as NIST, FISMA, FedRAMP, and RMF. The ISSO supports authorization and assessment activities, maintains continuous monitoring programs, and responds to incidents to ... controls implementation in accordance with RMF requirements. e. Support the Assessment and Authorization (A&A) process. 2. The ISSO supports developing, maintaining,… more
- Nightwing (Sterling, VA)
- …include cyber space operations, cyber defense and resiliency, vulnerability research, ubiquitous technical surveillance, data intelligence, lifecycle mission ... will support the establishment of a recruitment, evaluations, and long-term assessment program, to include the structure and team, critical activities, project… more
- Washington Metropolitan Area Transit Authority (VA)
- …are integrated into system/software acquisition stages and oversees system/application vulnerability scans to verify control implementation across all systems and ... Audit and Risk findings, Security vulnerabilities, Certification issues, Application assessment findings, and business continuity. + Executes a risk-based,… more
- CACI International (Hampton, VA)
- …assessments. + Perform a QA review of the risk scores and risk assessment reports. + Ensure processes, enhancements, and sustainment activities are following NIST ... Assurance policies and regulations and how they relate to the assessment and authorization process. + Experience authoring and maintaining systems security… more
- Amentum (Fort Belvoir, VA)
- …gathering, analysis, and course of action development pertaining to the assessment . The Analyst is responsible for researching, reviewing, editing, planning, ... Contribute constructively to threat emulation. Identify information requirements, develop assessment strategies and collection plans, identify information sources, and… more
- ICF (Alexandria, VA)
- …documentation specialists. + Develop and maintain key RMF artifacts including Security Assessment Plans (SAPs), System Security Plans (SSPs), Security Assessment ... authorization packages and schedules. + Support continuous monitoring activities, vulnerability management, and risk mitigation planning. + Track ATO timelines,… more
- Tetrad Digital Integrity LLC (Ashburn, VA)
- …Categorization of Federal Information and Information Systems (FIPS 199) Assessment , E-Authentication Determination, Privacy Threshold Analysis (PTA), Privacy Impact ... Assessment (PIA), Risk Assessment Plan, System Security...and vulnerabilities involving new/enhanced technology. + Provide oversight to vulnerability scanning processes and procedures and security patch management/flaw… more
- Infinitive Inc (Ashburn, VA)
- …Framework, and other relevant standards. + Strong knowledge of risk assessment methodologies and tools, including vulnerability scanning, penetration testing, ... programs. + Provide recommendations for remediation and improvement based on risk assessment findings and best practices. Additionally, the ideal candidate has: +… more
- Tyto Athene (Fairfax, VA)
- …you will be responsible for are the System Security Plan (SSP), Risk Assessment Report, Security Assessment Plan and Report, Contingency Plan, Incident Response ... Support Incident Response and Contingency activities + Able to perform security control assessment using NIST 800-53A publication as well as OMB A-130 and OMB A-123… more