• Skip to main content
  • Skip to primary sidebar

ConvoCourses

Cyber Security Compliance and IT Jobs

  • Cyber Security Training
  • about me.
  • Information Assurance Jobs

IT

IT Experience by Asking and Volunteering

November 6, 2021 by Bruce Brown Leave a Comment

Sign up for free at http://convocourses.com for deeper dives.  

Many more videos on https://www.youtube.com/convocourses

short videos at https://www.tiktok.com/@convocourses?lang=en

and https://www.instagram.com/convocourses/

https://www.facebook.com/ConvoCourses-108091850619388

Podcast version of the content:

https://podcasts.apple.com/us/podcast/convocourses/id1500188278

http://www.nist80037rmf.com/google_podcast

Filed Under: convocourses, cyberspace workforce, IT Certifications, IT Security Jobs Tagged With: cybersecurity, IT, IT Experience by Asking and Volunteering, IT volunteering, rmf security controls

What if we cannot meet the POAM dates (Part 1)

May 27, 2021 by Bruce Brown Leave a Comment

Sign up for free at http://convocourses.com for deeper dives.  

Many more videos on https://www.youtube.com/convocourses

short videos at https://www.tiktok.com/@convocourses?lang=en

and https://www.instagram.com/convocourses/

https://www.facebook.com/ConvoCourses-108091850619388

Podcast version of the content:

https://podcasts.apple.com/us/podcast/convocourses/id1500188278

http://www.nist80037rmf.com/google_podcast

Filed Under: Assurance Technology, convocourses, DIACAP Tagged With: fmr, IT, it jobs, NIST80037, POA&M Risk, POAM dates, Six Figures, What if we cannot meet the POAM dates (Part 1)

ConvoCourses Podcast: Get Into IT from other fields

February 3, 2021 by Leave a Comment

I often get questions from other professionals on how they can get into Cybersecurity. There are a few things that you can do to start. For one thing, start where you are. If you work in a company ask the resident IT guy what the career is like. Another thing to consider is IT adjacent careers that are not as technical such as program management.


http://www.nist80037rmf.com/wp-content/uploads/2020/11/ConvoCourses-podcast-get-into-IT-from-other-fields_1.mp3

Podcast: Play in new window | Download

Subscribe: Google Podcasts | Pandora | iHeartRadio | Stitcher | TuneIn | Deezer | RSS

Filed Under: IT Security Jobs, podcast, Risk Management For DoD IT Tagged With: cybersecurity, IT, IT career

IT Cybersecurity Andrew Yang 4th Industrial Revolution US Middle Class

March 21, 2020 by Leave a Comment


This is just my speculation on what is going on in the USA’s middle class right now.
It is getting harder and harder to make ends meet and we are feeling it more and more.

Filed Under: Risk Management For DoD IT Tagged With: 4th industrial revolution, andrew yang, cybersecurity, IT, middle class

Remote Work Cyber security Architect

October 22, 2018 by Leave a Comment

For more on cybersecurity:
http://securitycompliance.thinkific.com

CyberSecurity Architect (remote work)
I would really appreciate if you can give me a call back at my contact # 302-401-6677 Ext- 330.

Job Title Remote position-Information Security Architect
Location Philadelphia PA
Duration 6 months /Contract

JOB DESCRIPTION

Interview Mode-Phone and Skype
Needs USC or GC Only

This role will be able to work remotely but the idea is someone in the Philadelphia area to be able to come in once/week.
If they are further away, it would be less than that.
The manager is open to remote candidates but they need to be in the Eastern Standard Time Zone.

Description:

[Information Security Architect]

Brief description of the role

• Collaborate with Security Architecture and Information Security leadership to help guide the Security Architecture Program
• Collaborate with and influence technology leaders and stakeholders to produce solutions and architectures

Key deliverables but not limited to:

• Interpret Information Security requirements, Policies, and Standards to help ensure delivery of secure IT solutions
• Identify and deliver strategic initiatives that drive revenue and improve efficiency, aligned with business strategy
• Develop technology visions and strategies that support and enhance the business strategy
• Cultivate relationships with business stakeholders and IT leadership
• Communicate architectural plans and strategies
• Develop, communicate, and deploy Enterprise Architecture processes, reference architectures, and technical standards/strategies
• Recommend and arbitrate between technical choices that best serve the enterprise needs and adhere to IT’s guiding principles
• Advocate and practice enterprise architecture as well as security solution architecture best practices
• Develop solutions for the enterprise and business application IT segments
• Create and maintain technology standards, strategies, and roadmaps for the enterprise
• Research and recommend current and future technologies by tracking trends and industry best practice
• Maintain in-depth knowledge of the organizations technologies and architectures
• Contribute to the enterprise technology roadmap
• Evaluate and assess new technologies

Key relationships

• Security Architecture Leadership
• Information Security Leadership team
• Information Technology Leadership and team
• Business technical team

High level skills:

• Change and Adaptability
• Client Focus
• Business Acumen
• Results Focus
• Broad knowledge of Information Security, IT and industry best practices
• 10 + years or equivalent experience
• Excellent written communication and presentation skills

High level technical skills

• Network Security
• Network Hardware Configuration
• Network Protocols
• Networking Standards
• Supervision
• Conceptual Skills
• Decision Making
• Informing Others
• Functional and Technical Skills
• Dependability
• Information Security Policies and Standards

Key Requirements
• Acquire a complete understanding of a company’s technology and information systems
• Plan, research and design robust security architectures for any IT project
• Full understanding of a vulnerability testing, risk analyses and security assessments
• Research security standards, security systems and authentication protocols
• Develop requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related network devices
• Full understanding of public key infrastructures (PKIs), including but not limited to use of certification authorities (CAs) and digital signatures (key management is a must)
• Prepare cost estimates and identify integration issues
• Review and approve installation of firewall, VPN, routers, IDS scanning technologies and servers
• Review final security structures to ensure they behave as expected
• Provide technical supervision for (and guidance to) a security team
• Define, implement and maintain corporate security policies and procedures
• Assist when required to security-related incidents and provide a thorough post-event analysis
• Recommend on update and upgrade security systems as needed
• Understanding of the Cloud security, predominantly Microsoft Azure cloud and Oracle cloud, special security needs for cloud systems

Qualifications:

• CISSP (required)
• CISSP-ISSAP (preferred)
• CEH (optional)
• CISA/CISM (optional)

The 3 main components to this role are:
1) Networking knowledge
2) Security knowledge
3) Writing/Communication

Note: Travel is not required, but could be an option.

Filed Under: cyberspace workforce, Information Assurance, Information Assurance Jobs, information system compliance, IT Security Jobs, risk jobs, Risk Management For DoD IT, security compliance, STIGS Tagged With: IT, IT work, Remote Work, Remote Work Cyber security Architect

Sr Systems Administrator in Cedar Rapids, IA

February 15, 2016 by Bruce Brown Leave a Comment

This is a Job Opportunity from Rockwell Collins
Title                                       Sr Systems Administrator 1 (12446)
Location:                             Cedar Rapids, IA
Duration:                              29 W, 5 D
PLEASE NOTE:
**possibility of working remotely. if this is the case, there may be some training in Cedar Rapids. Travel expenses will be reimbursed for this training**
Job Description:
A challenging opportunity to be part of Rockwell Collins backup and storage strategies as we introduce modern redundancies, replications and cloud initiatives.
These positions are responsible for the design, standards, and overall availability and performance of the Rockwell Collins backup and storage environments. Reporting to the Manager of Enterprise Data Centers and Storage, this technical position will provide second and third tier technical support and participate in projects to ensure that they are implemented to RC’s satisfaction. These roles will also be responsible for Responsible for mentoring entry level admins
Requirements:
-Bachelor’s degree in appropriate discipline or in the absence of a degree, HS Diploma/Equivalent plus six years of related experience
-Minimum of 5-10 years related experience with emphasis in enterprise backup (EMC, NetApp, HP hardware).
-Previous experience working with multiple teams, including internal and external departments and organizations.
-Experience managing and leading virtual, cross-functional teams, including defining requirements, developing architecture designs, assisting in project plans, and delivering results.
Preferred Experience:
Demonstrated experience and/or certifications of following key technologies are a plus:
*EMC VNX,
*XtremIO
*Networker
*Avamar
*Data Domain
*VPLEX
*RecoverPoint
*Data Protection Advisor
*SRM
*Load balancing
*clustering

Filed Under: cyberspace workforce, DIARMF Jobs, risk jobs Tagged With: Avamar, Cedar Rapids, clustering, Data Domain, Data Protection Advisor, EMC VNX, IA, IT, jobs, Load balancing, Networker, RecoverPoint, Sr Systems Administrator, SRM, VPLEX, XtremIO

  • Go to page 1
  • Go to page 2
  • Go to Next Page »

Primary Sidebar

search


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book


This book is an overview of how the NIST SP 800-37 risk management framework works from the perspective of an information system security officer (ISSO).

also available on Amazon!

View Book

NIST RMF 800-37 templates
Free 800-37 templates

The NIST 800 Template download contains a .doc file template and xls templates for POAMs, Federal, State, cloud based and a legacy template as well as resources where you can find more on NIST 800-37 documents for your use.

View Book

Learn to Make 6 Figures in CyberSecurity

RMF ISSO Foundations Training
RMF ISSO Foundations Training

RMF ISSO Foundations

I was an Information System Security Officer (ISSO) doing Risk Management Framework (NIST SP 800-37) for over a decade. I am a Cybersecurity veteran and I can explain (in plain English) what you DO in the Risk Management Framework process as an ISSO.

View Course

NIST SP 800-37 Presentation
NIST SP 800-37 Presentation

View Course

login

  • Register
  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Recent Posts

  • Cybersecurity Jobs Resume Marketing: Book 1 Find Cybersecurity jobs
  • Security Control Assessor (SCA) Methods table top exercise
  • Cybersecurity Pro opinion about Tiktok
  • Las Vegas teleworking
  • STIGS in the RMF Process

Meta

  • Register
  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Recent Comments

  • http://Www.Finance.Ipt.Pw/ on SRG/STIG Applicability Guide and Collection Tool Update
  • Elsa7 on ConvoCourses podcast: Cyber Security day to day activity
  • Tony on STIG Update – DISA has released the Microsoft SQL Server 2016 STIG Version 1
  • horloge on SCAP Compliance Checker SCC)
  • 218 Information assurance Success Criteria – ITSECURITYSURVIVAL.COM on Information Assurance Vulnerability Alert

Tags

8140 8570 ArcSight c&a CISSP convocourses cyber cybersecurity cyber security DIACAP DIARMF diarmf - implement disa DISA STIG dodd 8140 dodd 8140 cyberspace workforce HBSS IA implement implementation info assurance information assurance information security ISSO it jobs it jobs in usa job jobs Linux mcafee network nist nist risk management framework nist risk management framework 800-37 podcast risk risk assessment risk management risk management framework rmf security STIG stigs unix windows


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book

Copyright © 2023 · Author Pro on Genesis Framework · WordPress · Log in