Sekon
Cyber Security Compliance Lead
Sekon, Bethesda, Maryland, us, 20811
SeKON is looking for a
Cyber Security Compliance Lead
to join our team supporting an upcoming opportunity for
National Science Foundation (NSF).
With over 25 years of mission-focused success, SeKON delivers cultural, operational, and technical transformation to support federal government customers including the National Institutes of Health (NIH), Substance Abuse and Mental Health Services Administration (SAMHSA), the Centers for Disease Control (CDC), Centers for Medicare and Medicaid Services (CMS) and Defense Health Agency (DHA). Our vision is
“Better Health Through Innovation and Digital Transformation.”
RESPONSIBILITIES:
Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy.
Achieve passive evaluations such as compliance audits and active evaluations such as vulnerability assessments.
Establish strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems.
Support process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release.
Work with emerging technology, research inspections and periodic audits.
Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards.
Support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports.
REQUIREMENTS:
Active Public Trust Clearance
3+ years of experience in computing and information security, including experience with Internet Technology and Security Issues.
B.S. Degree in Information Technology or related field (preferred not required).
Knowledge of federal information security standards, rules and regulations related to information security and data confidentiality and desktop server, application, database, network security principles for risk identification and analysis.
Expertise in Risk Management Framework (RMF), Body of Evidence (BOE) documentation, System Security Plan (SSP), Security Controls Traceability Matrix (SCTM), Control Family Security Operating Plans (SOPs), Continuous Monitoring (ConMon) Plan, and Plan of Actions and Milestones (POA&M).
CompTIA 8570 IAM Level II Certifications (CAP, CASP+CE, CISM, CISSP, GSLC, CCISO) preferred.
Strong analytical and problem-solving skills.
Excellent communication (oral, written, presentation), interpersonal and consultative skills.
#J-18808-Ljbffr
Cyber Security Compliance Lead
to join our team supporting an upcoming opportunity for
National Science Foundation (NSF).
With over 25 years of mission-focused success, SeKON delivers cultural, operational, and technical transformation to support federal government customers including the National Institutes of Health (NIH), Substance Abuse and Mental Health Services Administration (SAMHSA), the Centers for Disease Control (CDC), Centers for Medicare and Medicaid Services (CMS) and Defense Health Agency (DHA). Our vision is
“Better Health Through Innovation and Digital Transformation.”
RESPONSIBILITIES:
Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy.
Achieve passive evaluations such as compliance audits and active evaluations such as vulnerability assessments.
Establish strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems.
Support process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release.
Work with emerging technology, research inspections and periodic audits.
Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards.
Support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports.
REQUIREMENTS:
Active Public Trust Clearance
3+ years of experience in computing and information security, including experience with Internet Technology and Security Issues.
B.S. Degree in Information Technology or related field (preferred not required).
Knowledge of federal information security standards, rules and regulations related to information security and data confidentiality and desktop server, application, database, network security principles for risk identification and analysis.
Expertise in Risk Management Framework (RMF), Body of Evidence (BOE) documentation, System Security Plan (SSP), Security Controls Traceability Matrix (SCTM), Control Family Security Operating Plans (SOPs), Continuous Monitoring (ConMon) Plan, and Plan of Actions and Milestones (POA&M).
CompTIA 8570 IAM Level II Certifications (CAP, CASP+CE, CISM, CISSP, GSLC, CCISO) preferred.
Strong analytical and problem-solving skills.
Excellent communication (oral, written, presentation), interpersonal and consultative skills.
#J-18808-Ljbffr