VariQ has an exciting opportunity for a highly qualified FISMA SME to support our client in Denver, CO.
Salary:Dependent upon experience
Security Clearance: None
Available: within 30 days
Has expertise in and follows NIST 800-53 guidelines and NIST 800-53a security controls assessment practices.
Ensures that Stakeholders adhere to Federal Information Assurance policies and procedures to acquire and maintain an Information System's Authority to Operate (ATO) under The Federal Information Security Management Act (FISMA).
Provides support with planning, coordinating, and implementing the organization’s information security.
Provides support for facilitating and helping agencies identify their current security infrastructure and define future programs, design and implementation of security related to IT systems.
Proficient with vulnerability and scanning tools and well-versed in interpreting risk posture resulting from assessment reports.
Ability to serve as Information System Security Officer.
Provides technical input to the Senior Security Specialist related to FISMA issues and, when required, provides technical input to the FISMA reporting team.
Familiarity and experience with Cyber Security Assessment & Management (CSAM) is preferred.
Education: Bachelor’s degree or equivalent experience in a related field.
Security Certification(s): CISSP, CISM, CRISC, CISA or ABCP
8+ years relevant experience.
Expert knowledge and hands-on experience with FISMA Systems, NIST 800-series guidelines, FIPS, C&A requirements and processes, Continuous Monitoring Framework experience and its tools, Plan of Action & Milestones (POA&M) policies, and vulnerability/patch management.
Experience in several of the following areas is required; understanding of business security practices and procedures; knowledge of current security tools available; hardware/software security implementation; different communication protocols; encryption techniques/tools; familiarity with commercial products, and current Internet/EC technology.