FISMA SME

US-CO
Job ID
2017-3016
# of Openings
2
Category
IT Security
Work Authorization
US Citizens, preferred

Overview

VariQ has an exciting opportunity for a highly qualified FISMA SME to support our client in Denver, CO.

 

Additional Information:

  • Salary: Dependent upon experience
  • Security Clearance: None
  • Available: within 30 days

Responsibilities

  • Has expertise in and follows NIST 800-53 guidelines and NIST 800-53a security controls assessment practices.
  • Ensures that Stakeholders adhere to Federal Information Assurance policies and procedures to acquire and maintain an Information System's Authority to Operate (ATO) under The Federal Information Security Management Act (FISMA).
  • Provides support with planning, coordinating, and implementing the organization’s information security.
  • Provides support for facilitating and helping agencies identify their current security infrastructure and define future programs, design and implementation of security related to IT systems.
  • Proficient with vulnerability and scanning tools and well-versed in interpreting risk posture resulting from assessment reports.
  • Ability to serve as Information System Security Officer.
  • Provides technical input to the Senior Security Specialist related to FISMA issues and, when required, provides technical input to the FISMA reporting team.
  • Familiarity and experience with Cyber Security Assessment & Management (CSAM) is preferred.

Qualifications

  • Education: Bachelor’s degree or equivalent experience in a related field.
  • Security Certification(s): CISSP, CISM, CRISC, CISA or ABCP
  • Required Experience:
  • 8+ years relevant experience.
  • Expert knowledge and hands-on experience with FISMA Systems, NIST 800-series guidelines, FIPS, C&A requirements and processes, Continuous Monitoring Framework experience and its tools, Plan of Action & Milestones (POA&M) policies, and vulnerability/patch management.
  • Experience in several of the following areas is required; understanding of business security practices and procedures; knowledge of current security tools available; hardware/software security implementation; different communication protocols; encryption techniques/tools; familiarity with commercial products, and current Internet/EC technology.

 

VariQ is an equal opportunity employer.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed