• Skip to main content
  • Skip to primary sidebar

ConvoCourses

Cyber Security Compliance and IT Jobs

  • Cyber Security Training
  • about me.
  • Information Assurance Jobs
  • Log in

emass

Cyber Security Engineer Cary, NC (JOB)

September 1, 2020 by cyberaware2 Leave a Comment

Role: Cyber Security Engineer
Duration: Full time
Location: Cary, NC

Clearance: Active Secret Clearance

The role will support proactive and iterative searches through the network to detect and isolate advance threat(s) that normally evade existing security solutions and/or automation. Will use available tools to support cyber threat hunts using both automated and manual tools and techniques to identify a compromise before it is detected.
This individual will analyze management and technical controls to ensure that specific security and compliance requirements are met through the verification of documented processes, procedures, and standards in order to validate the maintenance of secure configurations.

Qualifications/Required Skills:
· Bachelor degree or work experience supporting program operations for a government organization.
· Experience using the following is highly preferred: Tanium Software, Arc Sight, HBSS, ACASS, EMASS, FORESCOUT, or Palo-Alto.
· Experience using AESS (Army Endpoint Security Solutions) formerly HBSS (Host Based Security System) is strongly preferred.
· Excellent customer service and organization skills.
· Excellent verbal and written communication skills.
· Must be highly organized and detail oriented.
· Must be able to take initiative and work independently or as a member of a team.
· Must demonstrate proficiency in the following areas: multi-tasking, critical thinking; and the ability to work quickly, efficiently, and accurately in a dynamic and fluid environment.
· DoD 8570 CSSP Analyst1 Certification with Certified Ethical Hacker (CEH), Cisco Certified Network Associate Security (CCNA Security), or Cisco Certified Cyber Ops Associate (CCNA Cyber Ops) certification, at minimum.
· Proficient in Microsoft Office.
· Must have an active Secret Clearance.

Responsibilities and Duties:
· Interface with government customers/personnel to deliver timely and effective services.
· Management oversight of service functions and ensures that new or changed IT services and their supporting infrastructure are adequately approved, validated, and accepted by the government for successful delivery and operations.
· Ensure technical performance goals are met.
· Build and maintain strong and effective relationships with customers, program managers (PMs), functional leads, and management to secure compliance with schedules, resolve problems, and coordinate tasks.
· Attend weekly status meetings and assist to prepare reports.
· Facilitate problem resolution.
· Develop and implement plans and strategies for expanding capabilities to meet demand.
· Reviews and produces program deliverables.

If you are qualified, available, interested, planning to make a change, or know of a friend who might have the required qualifications and interest, please call me ASAP at (571) 223-5709 Ext.1046, even if we have spoken recently about a different position. If you do respond via e-mail please include a daytime phone number so I can reach you. In considering candidates, time is of the essence, so please respond ASAP. Thank you.
Regards,
Zaki Patel
Sr. Talent Acquisition Specialist
Ampcus Inc.
14900 Conference Center Dr, Suite 500,
Chantilly, VA 20151
703-647-6116 – Direct
703-637-7299 Ext 231 (V)
703-956-6996 (Fax)
Email ID: Zaki.patel@ampcus.com
www.ampcus.com

Filed Under: DIARMF Jobs, IT Security Jobs, risk jobs Tagged With: ACASS, Arc Sight, cary, cyber security, cyber security engineer, cybersecurity, emass, forescout, HBSS, HBSS (Host Based Security System), north carolina, Palo-Alto, Tanium Software

Find Free eMASS Training Link in Description

March 9, 2020 by Bruce Brown Leave a Comment

Join me free at http://convocourses.com

Link to PDF:
https://www.serdp-estcp.org/Tools-and-Training/Installation-Energy-and-Water/Cybersecurity/Registering-FRCS-in-eMASS-DITPR-SNaP-IT/eMASS-Step-by-Step-Instructions

emass training (on disa.mil):

https://disa.mil/Cybersecurity/Assessments-and-Inspections/EMASS/Training
eMASS training sessions are offered monthly in the National Capital Region (NCR). All trainings are administered at no cost by vendor representatives. Classes are first come first serve. You will receive a confirmation email once you have been added to the class.
To attend DISA-sponsored monthly training, you may sign up via the DISA IASE Classroom Training site.

Or you can email the DISA FSO Training Team directly at: disa.letterkenny.FSO.list.training-team-members@mail.mil

Computer-Based Training (CBT) is also available & hosted on both the Knowledge Services as well as the DISA Information Assurance Support Environment (IASE) web site.

Filed Under: cyberspace workforce Tagged With: emass, emass training, Enterprise Mission Assurance Support Service, Enterprise Mission Assurance Support Service (eMASS)

cybersecurity compliance project manager alexandia VA job

February 22, 2020 by cyberaware2 Leave a Comment

check out the courses:
http://convocourses.com

Job Title: #Cybersecurity #Compliance Project Manager
Job Location: Alexandria, VA, US
Project Length: Long Term

Clearance Requirement: Active Secret clearance.

Key Role:
Serve as a Task Lead responsible for the creation of a Cybersecurity Governance, Risk, and Compliance (GRC) team assessment program for a DoD organization. Design, develop, and implement the assessment program independently to measure Cyber GRC metrics, determine readiness for audits and inspections based on DoD policies and NIST standards, identify risks, and provide automated remediation plans. Work to improve communication and enhance the organization’s security posture through risk assessment preparation. Perform blind, non-punitive readiness assessments for organizational units to provide a preparatory remediation plan for upcoming inspections. Measure the effectiveness of the GRC programs and provide leadership with an unfiltered view of the organization’s security posture, measuring the balance between its objectives and risk profile. Recommend strategic enhancements and structural improvements for a compliance division.

Basic Qualifications:
10+ years of experience with Cybersecurity.
Ability to design, develop, and manage the implementation of risk assessment process methodology and tools, including eMASS.
Ability to communicate effectively and professionally in a fast-paced client-environment.
BA or BS degree in a Technology, IT, or Cybersecurity field.
DoD 8140 and 8570 IAM level II Certification.

Additional Qualifications:
Experience with GRC and assessment processes.
Experience with DoD 8500 series, NIST SP 800 series, DoD regulations, and instructions, including DoDI 8140-01, DoDI 8530.01, CJCSI 6510.01, and the Risk Management Framework (RMF).
Experience with briefing senior government officials at the General Officer and SES-levels.
PMP Certification.

Direct: 703-653-0218
karthik@param-solutions.com
https://recruiting-as-a-service.param…

https://param-solutions.com/careers

Filed Under: cyberspace workforce, DIARMF Jobs, Information Assurance Jobs, information system compliance, IT Security Jobs, Risk Management For DoD IT, security compliance Tagged With: 8570, and the Risk Management Framework (RMF), CJCSI 6510.01, cybersecurity compliance, dod 8530, DoDI 8140-01, DoDI 8530.01, emass, grc, nist 800, NIST 800-37, NIST 800-53, pmp, program management, security compliance

Supplemental Information to the Cloud Computing SRG Released

April 17, 2018 by cyberaware2 Leave a Comment

STIG Update – Supplemental Information to the Cloud Computing SRG Released
DISA has released supplemental information to the Cloud Computing SRG entitled “Cloud Related Baselines and EMASS Cloud Overlays v1r1” This file is available at http://iase.disa.mil/cloud_security/Pages/index.aspx

For all STIG related questions, please contact the DISA STIG Customer Support Desk: disa.stig_spt@mail.mil

Filed Under: STIGS Tagged With: DISA STIG, emass, STIG

Primary Sidebar

search


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book


This book is an overview of how the NIST SP 800-37 risk management framework works from the perspective of an information system security officer (ISSO).

also available on Amazon!

View Book

NIST RMF 800-37 templates
Free 800-37 templates

The NIST 800 Template download contains a .doc file template and xls templates for POAMs, Federal, State, cloud based and a legacy template as well as resources where you can find more on NIST 800-37 documents for your use.

View Book

Learn to Make 6 Figures in CyberSecurity

RMF ISSO Foundations Training
RMF ISSO Foundations Training

RMF ISSO Foundations

I was an Information System Security Officer (ISSO) doing Risk Management Framework (NIST SP 800-37) for over a decade. I am a Cybersecurity veteran and I can explain (in plain English) what you DO in the Risk Management Framework process as an ISSO.

View Course

NIST SP 800-37 Presentation
NIST SP 800-37 Presentation

View Course

login

  • Register
  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Recent Posts

  • Convocourses Podcast: Plan of Action and Milestone
  • Start with These IT Certifications (Part 1)
  • How to Tailor Security Controls in NIST 800
  • #cybersecurityjobs are recession proof
  • What IT Certifications for Information Security (part 2) (8140)

Meta

  • Register
  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Recent Comments

  • http://Www.Finance.Ipt.Pw/ on SRG/STIG Applicability Guide and Collection Tool Update
  • Elsa7 on ConvoCourses podcast: Cyber Security day to day activity
  • Tony on STIG Update – DISA has released the Microsoft SQL Server 2016 STIG Version 1
  • horloge on SCAP Compliance Checker SCC)
  • 218 Information assurance Success Criteria – ITSECURITYSURVIVAL.COM on Information Assurance Vulnerability Alert

Tags

8140 8570 ArcSight c&a CISSP convocourses cyber cybersecurity cyber security DIACAP DIARMF diarmf - implement disa DISA STIG dodd 8140 dodd 8140 cyberspace workforce IA implement implementation info assurance information assurance information security ISSO IT it jobs it jobs in usa job jobs Linux mcafee network nist nist risk management framework nist risk management framework 800-37 podcast risk risk assessment risk management risk management framework rmf security STIG stigs unix windows


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book

Copyright © 2023 · Author Pro on Genesis Framework · WordPress · Log in