Home - Company - Careers

Certification and Accreditation (C&A) SME

Location: Seattle, WA

Description: This individual must be an expert in FISMA, DoD regulations and ITAR. Purpose of the position is to provide technical subject matter expertise and consulting to client(s) in support of certification and accreditation (NIST and DIACAP) and FISMA compliance tasks. This person will support the tasks with client providing C&A support for their cloud computing environments. Additionally, this individual will need to develop requirements and processes to ensure compliance with International Traffic in Arms Regulations (ITAR). The individual will need to extract the requirements from many Federal regulations and develop business strategies and processes for the organization to comply with these requirements. The candidate will be required to develop documentation to meet the regulations and will also assist in creating a market strategy for the organization to compete in the U.S. Federal Sector.

Roles & Responsibilities:

  • Develop essential artifacts pertaining to NIST and DIACAP C&A packages (System Security Plans, Configuration Management Plans, Contingency Plans, Risk Assessment Reports, Privacy Impact Assessments, Security Assessment Reports, etc.)
  • Develop security assessment plans using NIST/FISMA/DoD requirements, as well as industry best practices.
  • Execute security assessments in accordance with NIST 800-53A assessment procedures, as well as vulnerability scanning using tools such as Nessus, Retina, AppDetective, WebInspect, etc.
  • Perform penetration testing on select high impact information systems.
  • Maintain currency on the latest Federal and industry security best practices and automated tools pertaining to security.
  • Provide consulting expertise to a variety of commercial and government organizations.
  • Develop marketing strategies to expand the services within the U.S. Federal Government

Minimum Qualifications: To be considered for this position, you must minimally meet the knowledge, skills, and abilities listed below:

  • Minimum 7+ years of experience providing information assurance and consulting support to organizations using the FISMA, NIST and DoD security requirements.
  • Additionally, the candidate must have experience performing penetration testing, experience in writing/analyzing source code, and understand the fundamentals of TCP/IP.
  • Bachelors degree in Computer Science, Computer Information Systems, or related field. 10+ years experience in lieu of degree is acceptable.

Desired:

  • CISSP, CISA, CISM, or similar certification a plus, but not a specific requirement.

Security: Must possess an active Secret level Clearance

Submit Resumes to: bert.dickerson@secureinfo.com

EOE/AA/M/F/D/V