Cyberesi Cg
Information System Security Officer, Senior Cyber Engineering Services
Cyberesi Cg, Baltimore, Maryland, United States,
```html
Job DescriptionProvides support for a program, organization, system, or enclave’s information assurance program. Provides support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies. Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed.
Assists with the management of security aspects of the information system and performs day-to-day security operations and continuous monitoring of the system. Evaluates security solutions to ensure they meet security requirements for processing classified information.
Performs vulnerability/risk assessment analysis to support certification and accreditation. Provides configuration management (CM) for information system security software, hardware, and firmware. Manages changes to the system and assesses the security impact of those changes.
Supports security authorization activities in compliance with the NIST Risk Management Framework (RMF) and prescribed business processes. Prepares and reviews documentation to include:
System Security Plans (SSPs)
Risk Assessment Reports
Certification and Accreditation (C&A) packages
System Requirements Traceability Matrices (SRTMs)
```#J-18808-Ljbffr
Job DescriptionProvides support for a program, organization, system, or enclave’s information assurance program. Provides support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies. Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed.
Assists with the management of security aspects of the information system and performs day-to-day security operations and continuous monitoring of the system. Evaluates security solutions to ensure they meet security requirements for processing classified information.
Performs vulnerability/risk assessment analysis to support certification and accreditation. Provides configuration management (CM) for information system security software, hardware, and firmware. Manages changes to the system and assesses the security impact of those changes.
Supports security authorization activities in compliance with the NIST Risk Management Framework (RMF) and prescribed business processes. Prepares and reviews documentation to include:
System Security Plans (SSPs)
Risk Assessment Reports
Certification and Accreditation (C&A) packages
System Requirements Traceability Matrices (SRTMs)
```#J-18808-Ljbffr