• Skip to main content
  • Skip to primary sidebar

ConvoCourses

Cyber Security Compliance and IT Jobs

  • Cyber Security Training
  • about me.
  • Information Assurance Jobs
  • Log in

c&a

Need Information Systems Security Officer in Herndon, VA

April 8, 2016 by Bruce Brown Leave a Comment

Information Systems Security Officer

Location: Herndon, VA
Duration: 1 year
US Citizenship Required –  Public Trust or Secret Clearance Tier III
Summary• Advises key technical personnel of system regarding design, engineering and compliance requirements
• Advises key stakeholders of security posture and risks associated with the system
• Reviews configurations changes for the system and the impact of changes
• Creates, manages and facilitates NIST based security documentation and controls
• Identifies, manages and facilitates remediation of security weaknesses

Job Responsibilities/ Duties:
• Develop, consult, implement controls and documentation for the security of the system. This includes: outlining system operating environment, overall mission, physical diagrams, hardware and software inventories, configuration management, type of data processed, user organizations, security classifications, operating modes, interconnections to other systems/networks, security personnel, and other associated responsibilities.
• Oversee, develop, improve and maintain the overall security posture of the system; that includes: Information System Security Plans, Risk Ratings, Contingency Plans, Security Assessments, and Contingency Plan Tests and other associated documentation.
• Participate in the development or revision of security controls of the system and local operating procedures that are based upon regulatory, policy and industry requirements.
• Act as a consultant to system owners for the security of the system and system documentation. For example, security incident reports, equipment/software inventories, operating instructions, technical vulnerability reports, and contingency plans
• Provide expertise in classified and unclassified ratings to customers.
• Work closely with technical teams for successful Certification & Accreditation of the system that leads to ATO
• Attend ISSO training courses and sessions as required
• Perform interpretations of monthly vulnerability scan results of assigned systems

Required Training:
Senior Level IT Security Certifications (CCDP, CCNP Security, CISSP, CISM, etc.)
Education/Equivalent Training Required: Bachelor’s Degree or equivalent experience will be evaluated
Unique/Additional /Experience (Position Specifics):
Expert knowledge of FISMA and NIST Special Publications
Experience implementing, assessing and managing security controls for federal IT systems
Expert knowledge of IT security best practices
Expert knowledge of current IT security threats
Broad knowledge of IT technologies and operations
Ability to develop good working relationships with customers, colleagues and other stakeholders.
Excellent verbal and written communication skills
Ability to handle and prioritize multiple simultaneous systems, projects and other assignments.
Experience leading information security teams
Knowledge of HIPAA, FedRAMP, PCI, ISO and other standards
Location(s): District of Columbia (Metro Area),
Department: IT Security
Keywords: Certification and Accreditation, C&A, A&A, SA&A, FISMA, compliance, information assurance, ISSO, AISO, ISO, IASO and ISSM
Comments: US Citizen, US Government Suitability Determination and DoE Q Security Clearance is a Plus

Thanks & Regards,
Kartik Jain
Technical Recruiter
Direct : 908-765-0002 Ext: 388

Filed Under: cyberspace workforce, DIARMF Jobs, Information Assurance Jobs, risk jobs Tagged With: A&A, AISO, c&a, Certification and Accreditation, compliance, FISMA, IASO, information assurance, ISO, ISSM, ISSO, SA&A

Information Systems Security Officer in Herndon, VA

March 21, 2016 by Bruce Brown Leave a Comment

Information Systems Security Officer 

US Citizenship Required –  Public Trust or Secret Clearance Tier III

Location: Herndon, VA
Duration: 1 year
Summary• Advises key technical personnel of system regarding design, engineering and compliance requirements
• Advises key stakeholders of security posture and risks associated with the system
• Reviews configurations changes for the system and the impact of changes
• Creates, manages and facilitates NIST based security documentation and controls
• Identifies, manages and facilitates remediation of security weaknesses

Job Responsibilities/ Duties:
• Develop, consult, implement controls and documentation for the security of the system. This includes: outlining system operating environment, overall mission, physical diagrams, hardware and software inventories, configuration management, type of data processed, user organizations, security classifications, operating modes, interconnections to other systems/networks, security personnel, and other associated responsibilities.
• Oversee, develop, improve and maintain the overall security posture of the system; that includes: Information System Security Plans, Risk Ratings, Contingency Plans, Security Assessments, and Contingency Plan Tests and other associated documentation.
• Participate in the development or revision of security controls of the system and local operating procedures that are based upon regulatory, policy and industry requirements.
• Act as a consultant to system owners for the security of the system and system documentation. For example, security incident reports, equipment/software inventories, operating instructions, technical vulnerability reports, and contingency plans
• Provide expertise in classified and unclassified ratings to customers.
• Work closely with technical teams for successful Certification & Accreditation of the system that leads to ATO
• Attend ISSO training courses and sessions as required
• Perform interpretations of monthly vulnerability scan results of assigned systems

Required Training:
Senior Level IT Security Certifications (CCDP, CCNP Security, CISSP, CISM, etc.)
Education/Equivalent Training Required: Bachelor’s Degree or equivalent experience will be evaluated
Unique/Additional /Experience (Position Specifics):
Expert knowledge of FISMA and NIST Special Publications
Experience implementing, assessing and managing security controls for federal IT systems
Expert knowledge of IT security best practices
Expert knowledge of current IT security threats
Broad knowledge of IT technologies and operations
Ability to develop good working relationships with customers, colleagues and other stakeholders.
Excellent verbal and written communication skills
Ability to handle and prioritize multiple simultaneous systems, projects and other assignments.
Experience leading information security teams
Knowledge of HIPAA, FedRAMP, PCI, ISO and other standards
Location(s): District of Columbia (Metro Area),
Department: IT Security
Keywords: Certification and Accreditation, C&A, A&A, SA&A, FISMA, compliance, information assurance, ISSO, AISO, ISO, IASO and ISSM
Comments: US Citizen, US Government Suitability Determination and DoE Q Security Clearance is a Plus

Thanks & Regards,
Kartik Jain
Technical Recruiter
Direct : 908-765-0002 Ext: 388

Filed Under: cyberspace workforce, DIARMF Jobs, Information Assurance Jobs, risk jobs Tagged With: A&A, AISO, c&a, CCDP, CCNP Security, Certification and Accreditation, CISM, CISSP, compliance, FISMA, IASO and ISSM, information assurance, ISO, ISSO, SA&A

Remote Program Manager Monterey CA Naval Research Laboratory Department of the Navy

March 11, 2016 by Bruce Brown Leave a Comment

www.tscti.com
Given below is the job details:
Agency:                                Naval Research Laboratory, Department of the Navy
Position:                              Program Manager
Duration:                             Long Term 100%Remote             
Location:                             100% Remote Support to Monterey, CA

Job Description
Secret Security Clearance or Higher required for this job.
•             At least ten (10) years of experience in technical management of DoD IT contracts.
•             A bachelor’s degree in Business Administration, Computer Science or in a related technical field such as engineering or science, or equivalent experience.
Thanks & Regards,
Harpal Singh
Technical Recruiter
22nd Century Technologies Inc.(TSCTI)
Direct : (908) 765-0003 Ext: 315
Fax : 609-228-4044
Email: singhh@tscti.com
Web: www.tscti.com
22nd Century Technologies Inc. is an Equal Employment Opportunity and Affirmative Action employer.
8(a), SDB, MBE, CMMi3, ISO 9001:2008, ISO 20000-1:2011, ISO 27001:2005 Certified

Filed Under: DIARMF Jobs, Information Assurance Jobs, Risk Management For DoD IT Tagged With: c&a, california, Department of the Navy, Monterey, Naval Research Laboratory, Program Manager, remote

Information Security Certification and Accreditation (C&A) specialist

February 10, 2016 by Bruce Brown Leave a Comment

Please review the job description below and let me know if this position is of interest to you. If it’s not a good fit for you currently, I’d still appreciate the opportunity to cultivate a working relationship with you. In getting to know you better, and in understanding your short-term and long-term career goals, it will certainly be a mutually beneficial relationship moving  forward.
Title:                            Information Security Certification and Accreditation (C&A) specialist
Location:                     Raleigh, NC
Duration:                    6 Months
–Job Description:
The client seeks an Information Security Certification and Accreditation (C&A) specialist to perform C&A evaluations across multiple applications, ensuring continual compliance with federal and agency standards
Required Skills:
  • Experience with the Information Resource Security Certification and Accreditation (C&A) processes
  • Must be certified in at least one of the following:
  • Certified Information Systems Security Professional (CISSP)
  • Certified Authorization Professional (CAP)
  • Certified Security Analyst (CSA)
  • Certified Information Security Manager (CISM)
  • Experience with assessing business system for sensitivity and criticality
  • Experience with recommending security requirements, based on generally accepted industry practices
  • Additional Provisions
  • Pass both a client mandated clearance process to include drug screening, criminal history check and credit check.
  • Once candidate’s resume is approved and interview passed, the agency is responsible for providing drug screening. Failure to submit the drug screening results will delay the security clearance process.
  • If a candidate is given an interim clearance, continuation of employment is then based on the candidate receiving a sensitive clearance.

Filed Under: certification & accreditation, cyberspace workforce, DIARMF Jobs, Information Assurance Jobs, risk jobs Tagged With: accreditation, c&a, certifcation and accreditation, certification, Information Security Certification and Accreditation (C&A) specialist

Security Administrator in TORRANCE, CA

January 28, 2016 by Bruce Brown Leave a Comment

Security Administrator in TORRANCE, CA

22nd Century is an equal opportunity employer and considers qualified applicants for employment without regard to race, gender, age, color, religion, disability, veterans status, sexual orientation, or any other protected factor.
Kindly send me your updated resume along with expected rates and below details at damandeeps@tscti.com
Rate/ Salary:
Full Name:
Contact No:
Alternate contact (if any):
Email address:
Current Address:
Availability:
Best time to take call:
Relocation at own Expenses- (Yes/No):
Distance from client’s location- (In Miles, In case candidate is Local or adjoining):
Interview- (In-Person/ Phone/ Both):
End Date of Current Project:
Availability:
Interviews/ Offers in pipeline:
Visa Status- (in case of H1b, please mention validity date of his visa):
Title:                                                   Security Administrator (58468-1)
Position:                                            1
Location:                                          TORRANCE, CA 90501
Duration:                                           6 Month
Visa-                                                   US citizen and GC only.
Comments:    long term role please present candidates that will be willing to convert to FTE.
Job Description:  
Security Administrator
Responsibilities
Systems administration support for IBM Security Identity Environment (ISIM / ISDI / ISDS).
Installing, updating and configuring ISIM application adaptors. Development of policies, internal security, workflow and forms within ISIM.
Supporting project teams for integrations into the Honda security environment. Investigate operational problems and develop counter measure for remediation.
Perform upgrades and apply patches to IBM Security software. Monitor the environment for effective operations.MUSTS
IBM Security Identity Manager administration, design and support. IBM Security Directory Integrator – Including the ability write complicated assembly lines from scratch and maintain an existing code base.
Experience with IBM Security Directory Server – including the ability to install from scratch, setup replication, manage issues and develop complex
queries and reports.
Strong understanding of Identity Managements architecture concepts and best practices.
Strong technical skills with UNIX. – This means you need to be comfortable with UNIX and can easily ssh into servers, use vi and other common UNIX tools.
Strong Javascript development skills – This means you should have no problem writing custom operations in ISIM and maintaining an existing javascript code base in ISIM
Must have broad range of understanding with different technical platforms (servers, networks, storage, etc.)
Must be able to work individually as well as in a team. Self-starter, must be able to see projects and tasks from start to completion.
Must have strong written and verbal communications skills. You will be required to work with project teams and end users in person, on the phone and in writing.

WANTS
Experience with IBM Security Access Manager administration, design and support. Experience with web application design and a strong understanding of the
HTTP protocol and reverse proxy systems. Experience with J2EE, C# or other language development Basic SQL and reporting skills – You should be able to write simple SQL queries and work with reporting software to generate and manage reports.

Filed Under: cyberspace workforce, DIARMF Jobs, Information Assurance Jobs Tagged With: c&a, C#, honda, ibm, isdi, isds, isim, J2EE, Security Administrator, sql, torrance, unix

Security Engineer – Foster City, CA

January 26, 2016 by Bruce Brown Leave a Comment

9to9 Software Solutions is looking for Security Engineer for our client in  Foster City, CA.

 Client:      Gilead Sciences

Title:         Security Engineer

Duration: 12+ Months

Location:  Foster City, CA

  • Someone who is in the operational side of the security space.
  • Must have great communication and have worked on security projects.
  • Must have 3+ years experience using Nexpose and ArcSight.

 

Main Requirements:

·         Someone who can run Nexpose for us day to day (fairly operational work).

·         Can help us build ArcSight ESM content.

·         Take care of ArcSight related operational tasks.

·         Been in the security space for 5+ years.

·         Great communication skills.

Filed Under: cyberspace workforce, DIARMF Jobs, risk jobs Tagged With: 9to9 Software Solutions, ArcSight, c&a, foster, gilead sciences, nexpose, security engineer

  • Go to page 1
  • Go to page 2
  • Go to Next Page »

Primary Sidebar

search


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book


This book is an overview of how the NIST SP 800-37 risk management framework works from the perspective of an information system security officer (ISSO).

also available on Amazon!

View Book

NIST RMF 800-37 templates
Free 800-37 templates

The NIST 800 Template download contains a .doc file template and xls templates for POAMs, Federal, State, cloud based and a legacy template as well as resources where you can find more on NIST 800-37 documents for your use.

View Book

Learn to Make 6 Figures in CyberSecurity

RMF ISSO Foundations Training
RMF ISSO Foundations Training

RMF ISSO Foundations

I was an Information System Security Officer (ISSO) doing Risk Management Framework (NIST SP 800-37) for over a decade. I am a Cybersecurity veteran and I can explain (in plain English) what you DO in the Risk Management Framework process as an ISSO.

View Course

NIST SP 800-37 Presentation
NIST SP 800-37 Presentation

View Course

login

  • Register
  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Recent Posts

  • Convocourses Podcast: Plan of Action and Milestone
  • Start with These IT Certifications (Part 1)
  • How to Tailor Security Controls in NIST 800
  • #cybersecurityjobs are recession proof
  • What IT Certifications for Information Security (part 2) (8140)

Meta

  • Register
  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Recent Comments

  • http://Www.Finance.Ipt.Pw/ on SRG/STIG Applicability Guide and Collection Tool Update
  • Elsa7 on ConvoCourses podcast: Cyber Security day to day activity
  • Tony on STIG Update – DISA has released the Microsoft SQL Server 2016 STIG Version 1
  • horloge on SCAP Compliance Checker SCC)
  • 218 Information assurance Success Criteria – ITSECURITYSURVIVAL.COM on Information Assurance Vulnerability Alert

Tags

8140 8570 ArcSight c&a CISSP convocourses cyber cybersecurity cyber security DIACAP DIARMF diarmf - implement disa DISA STIG dodd 8140 dodd 8140 cyberspace workforce IA implement implementation info assurance information assurance information security ISSO IT it jobs it jobs in usa job jobs Linux mcafee network nist nist risk management framework nist risk management framework 800-37 podcast risk risk assessment risk management risk management framework rmf security STIG stigs unix windows


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book

Copyright © 2023 · Author Pro on Genesis Framework · WordPress · Log in