Address
Form of work
SalaryTACG is seeking a Sr. Cyber Security Specialist to join our team in support of a contract at the FDA. This position will be performed mainly remote with the occasional need to be onsite in North Bethesda, MD.
Responsibilities (include but are not limited to):
- Conduct security control assessments for various categorization using RMF, FedRAMP and NIST processes and policies.
- Strong knowledge of NIST 800-53 security controls and the associated supporting artifacts.
- Provide in-depth analysis and reporting to FDA specializing in FISMA, and Cloud based security assessments.
- Work closely with FDA ISSOs to provide comprehensive Full lifecycle Security Control Assessments in accordance with NIST RMF, and FedRAMP guidelines.
- Work collaboratively with ISSOs on this development and maintenance of such artifacts as System Security Plans (SSPs), technical diagrams, SCA Matrices etc. and provides value added input to each process.
- Scan applications as part of assessments to identify weaknesses and system vulnerabilities that captures and develops a findings' report which ultimately becomes a Plan of Action and Milestone (POA&M).
- Develop kickoff briefs, and other documentation and facilitates meetings with stakeholders such as System Owners, ISSOs, and Risk and Compliance Team Leads.
- Develops deliverables such as Security Assessment Reports (SARs) which is the formal documented package that is reviewed by this Risk and Compliance Leadership team and submitted to this agency Authorizing Official (AO) to sign this Decision Memo for an Authorization-To-Operate (ATO).
- Provide guidance and input to lesser experienced staff in relation to Assessment processes, procedures and Assessment Analysis.
- Conduct exercises with the System Development Teams and ISSOs such as Information System Contingency Plan (ISCP) which demonstrates this development team's ability and understanding of how to proceed or restore if a system outage were to occur.
- Conduct deliverable reviews for quality assurance
Requirements:
- Education:
- COMPTIA Security+ Certified
- Experience:
- 5+ years of experience working as a Security Control Assessor
- 7+ years of experience within the Information Security industry
- 5+ years' experience working with Cloud Based Security Assessments
About Copper River & The Native Village of Eyak:
Owned by the Native Village of Eyak (NVE), a federally recognized Alaska Native Tribe, the Copper River Family of Companies are a collection of entities that deliver a complementary set of solutions and services to support the diverse missions and requirements of our clients. Proud participants of the Small Business Administration's (SBA) 8(a) Business Development Program since 2006, our companies consist of both current and graduation SBA 8(a) entities. It is our collective purpose to support the Tribe and diversify the NVE's ability to facilitate economic advancement.
The income generated from our companies helps the Native Village of Eyak fund health and social services, economic development, natural resource/environmental education, jobs, job training, and other benefits to the NVE in a manner that is consistent with Alaskan Native cultural values and traditions.
Copper River's Culture
The Copper River Family of Companies has a positive, supportive, and thriving culture. At the foundation of our culture is a focus on collaboration. No matter your role or which operating company you work for, we are ONE TEAM working toward the same goals for our customers and for our collective owner- The Native Village of Eyak. How we treat each other is just as important as the work we deliver.
Benefits
- Comprehensive medical, dental, and vision coverage
- Flexible Spending Account - healthcare and dependent care
- Health Savings Account - high deductible medical plan
- Retirement 401(k) with employer match
- Open leave policy and paid holidays
- Additional benefits including tuition reimbursement, transportation expense account, employee assistance program, and more!
Note: These benefits are only applicable to full time, regular associates at Copper River.
Disclaimer:
The Copper River Family of Companies provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.
