Certification and Accreditation (C&A) Consultants
Location: Falls Church, VA
Description: To provide technical subject matter expertise and consulting to client(s) in support of certification and accreditation (C&A) and FISMA compliance tasks. This person will initially support the tasks with client providing C&A support for their cloud computing environments.
Roles & Responsibilities:
- Develop essential artifacts pertaining to NIST C&A packages (System Security Plans, Configuration Management Plans, Contingency Plans, Risk Assessment Reports, Privacy Impact Assessments, Security Assessment Reports, etc.)
- Develop security assessment plans using NIST/FISMA requirements, as well as industry best practices.
- Execute security assessments in accordance with NIST 800-53A assessment procedures, as well as vulnerability scanning using tools such as Nessus, Retina, AppDetective, WebInspect, etc.
- Perform penetration testing on select high impact information systems.
- Maintain currency on the latest Federal and industry security best practices and automated tools pertaining to security.
Provide consulting expertise to a variety of commercial and government organizations.
Minimum Qualifications: To be considered for this position, you must minimally meet the knowledge, skills, and abilities listed below:
- Minimum 3 to 7+ years of experience providing information assurance and consulting support to organizations using the FISMA and NIST security requirements.
- Additionally, the candidate must have experience performing penetration testing, experience in writing/analyzing source code, and understand the fundamentals of TCP/IP.
- Bachelors degree in Computer Science, Computer Information Systems, or related field. 10+ years experience in lieu of degree is acceptable.
- Must be a U.S. Citizen
Desired:
- CISSP, CISA, CISM, or similar certification a plus, but not a specific requirement.
Security: Must possess an active Secret level Clearance
Submit Resumes to: bert.dickerson@secureinfo.com
EOE/AA/M/F/D/V
