Security Compliance Analyst with Security Clearance
If interested, please send to :
WORD resume, desired hourly/salary rate, and best time to speak! Position:
Security Compliance AnalystLocation:
HYBRID - Suitland, MD/Remote - could possibly change Duration:
6 Month Contract to Hire 3 Days ONSITE, 2 Days REMOTE - dealers choice but must stay consistent - Potential for more remote days in 2024 MUST HAVE:
o US Citizen Bachelor's Degree Ability to Pass a NOAA Public Trust o 3
years of Experience - Knowledge with RMF, NIST, POA&M'so Understanding of NIST guidelines ROLE AND RESPONSIBILITIES o Provides support to one or more assigned Information System Security Officers (ISSOs) for Authorization & Accreditation documentation, artifact collection, Plans of Action and Milestones (POAMs), and data calls.
o Responsible for completing / providing oversight over IT security operational activities such as execution/remediation of vulnerability scans, monthly account reconciliation and security incident response process monitoring.
o Provide coordination and reporting of IT Security Operation, IT Risk Management, IT Audit, and Disaster Recovery functions.
o Analyze management and technical controls to ensure that specific security and compliance requirements are met through the verification of documented processes, procedures, and standards to validate maintenance of secure configurations.
o Map requirements and regulatory requirements across the information security framework to identify overlapping requirements and compliance efficiencies.
o Track enterprise compliance across multiple security frameworks and maintain up-to-date records of requirements and corresponding mitigating controls.
o Monitor third-party risk assessments and assist in performing internal risk assessments.
o Collaborate on critical IT projects to ensure that security policy/risk issues are addressed throughout the project life cycle.
o Monitor NFA's change management process to ensure compliance.
o Develop key performance metrics to track and ensure compliance with established policies and standards.
o Support development of security processes and procedures and support service-level agreements to ensure that security controls are managed and maintained.
o Participate in the development of security and privacy awareness training in conjunction with other members of the Security Compliance group.
o Ensure POA&Ms are accurately identified, documented and that the resolution timeline meets the System Owner's expectations.
Ensure POA&Ms are accurately identified, documented and that the resolution timeline meets the System Owner's expectations, and is entered into the Government tool in a timely manner.
o Provide system interconnections support.
(e.
g.
, maintain and update all system Interconnection Security Agreements (ISAs).
o Provide system security documentation support, such as Security Authorization Package Core Documents.
o Provide security Assessment& Authorization (A&A) support.
o Provide System and Information Integrity (SI) and Flaw Remediation support.
o Support processes that enable achievement in compliance with Government security mandates and maintain an ATO for each system.
o Comply with Quality Assurance process.
o Provide system security documentation support.
o Participate in the security authorization and assessment process for FISMA systems.
o Provide Risk Assessment (RA) support.
o Assist with Data calls.
o Provide Contingency Planning (CP) support.
o Continually helping develop and improve the security posture of the system.
o Review Risk Management program issues and risks associated with assigned systems, propose remediation, and support efforts to remediate or mitigate those risks.
o Perform in depth reviews of logs and other artifacts for each IT system.
o System and Information Integrity (SI) and Flaw Remediation support.
o Accurately document contingency activities and lessons learned.
Recommended Skills Finance Accounting Research Reports Due Diligence Investigation Estimated Salary: $20 to $28 per hour based on qualifications.
WORD resume, desired hourly/salary rate, and best time to speak! Position:
Security Compliance AnalystLocation:
HYBRID - Suitland, MD/Remote - could possibly change Duration:
6 Month Contract to Hire 3 Days ONSITE, 2 Days REMOTE - dealers choice but must stay consistent - Potential for more remote days in 2024 MUST HAVE:
o US Citizen Bachelor's Degree Ability to Pass a NOAA Public Trust o 3
years of Experience - Knowledge with RMF, NIST, POA&M'so Understanding of NIST guidelines ROLE AND RESPONSIBILITIES o Provides support to one or more assigned Information System Security Officers (ISSOs) for Authorization & Accreditation documentation, artifact collection, Plans of Action and Milestones (POAMs), and data calls.
o Responsible for completing / providing oversight over IT security operational activities such as execution/remediation of vulnerability scans, monthly account reconciliation and security incident response process monitoring.
o Provide coordination and reporting of IT Security Operation, IT Risk Management, IT Audit, and Disaster Recovery functions.
o Analyze management and technical controls to ensure that specific security and compliance requirements are met through the verification of documented processes, procedures, and standards to validate maintenance of secure configurations.
o Map requirements and regulatory requirements across the information security framework to identify overlapping requirements and compliance efficiencies.
o Track enterprise compliance across multiple security frameworks and maintain up-to-date records of requirements and corresponding mitigating controls.
o Monitor third-party risk assessments and assist in performing internal risk assessments.
o Collaborate on critical IT projects to ensure that security policy/risk issues are addressed throughout the project life cycle.
o Monitor NFA's change management process to ensure compliance.
o Develop key performance metrics to track and ensure compliance with established policies and standards.
o Support development of security processes and procedures and support service-level agreements to ensure that security controls are managed and maintained.
o Participate in the development of security and privacy awareness training in conjunction with other members of the Security Compliance group.
o Ensure POA&Ms are accurately identified, documented and that the resolution timeline meets the System Owner's expectations.
Ensure POA&Ms are accurately identified, documented and that the resolution timeline meets the System Owner's expectations, and is entered into the Government tool in a timely manner.
o Provide system interconnections support.
(e.
g.
, maintain and update all system Interconnection Security Agreements (ISAs).
o Provide system security documentation support, such as Security Authorization Package Core Documents.
o Provide security Assessment& Authorization (A&A) support.
o Provide System and Information Integrity (SI) and Flaw Remediation support.
o Support processes that enable achievement in compliance with Government security mandates and maintain an ATO for each system.
o Comply with Quality Assurance process.
o Provide system security documentation support.
o Participate in the security authorization and assessment process for FISMA systems.
o Provide Risk Assessment (RA) support.
o Assist with Data calls.
o Provide Contingency Planning (CP) support.
o Continually helping develop and improve the security posture of the system.
o Review Risk Management program issues and risks associated with assigned systems, propose remediation, and support efforts to remediate or mitigate those risks.
o Perform in depth reviews of logs and other artifacts for each IT system.
o System and Information Integrity (SI) and Flaw Remediation support.
o Accurately document contingency activities and lessons learned.
Recommended Skills Finance Accounting Research Reports Due Diligence Investigation Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
