VariQ

Junior Assessor

Job Locations US-DC-Washington DC
Job ID
2020-3601
Posted Date
3/4/2020
# of Openings
1
Category
IT Security
Clearance
Public Trust
Work Authorization
US Citizens, preferred
Type
Contract - W2

Overview

VariQ’s Cybersecurity Line of Business is seeking team members with strong cybersecurity analytical skills in the areas of security assessments, continuous monitoring, and privacy to support a US Government client. This highly visible and critical position includes developing security plans and business impact analyses, as well as performing, security categorizations, contingency planning, and control assessments. The team also provides consulting services to the client on the best practices within the Risk Management Framework (RMF), waterfall to agile migrations, and the rollout of the Department of Homeland Security’s Continuous Diagnostics and Mitigation (DHS CDM) technologies.

 

Additional Information:

  • Location: US Mint Headquarters at 801 Ninth Street, NW Washington DC, 20220
  • Salary: Dependent upon experience
  • Security Clearance: Public Trust (DoD Secret is preferred)
  • Available: Within 30 days

Responsibilities

Provides quality assessment while interfacing directly with key customer stakeholders:

 

Key Responsibilities: 

  • Provide and complete Security Assessment and Accreditation (SA&A) processes for multiple business functions with hardware, software, and networking technologies requiring an Authority To Operate (ATO).
  • Apply knowledge of NIST SP 800-53 and NIST SP 800-37 to perform detailed security assessments of all FISMA-categorized information systems.
  • Follow a Risk Management Framework (RMF) to categorize, implement, and assess all security controls; then use client templates to create and manage ATO-related deliverables, some of which include, but are not limited to, the following:
    • Business Impact Analyses (BIAs)
    • Privacy Threshold Analyses (PTAs) / Privacy Impact Assessment (PIA)
    • System Security Plans (SSPs)
    • Security Assessment Report (SARs) / Vulnerability Assessment Reports (VARs)
    • Plan of Action and Milestones (POA&Ms)
  • Work directly with Subject Matter Experts (SMEs) throughout the SA&A process to resolve issues and answer questions related to all aspects of the RMF life-cycle.
  • Liaise with the Cybersecurity Compliance office to properly vet all deliverables for their submission to the Authorizing Official (AO).
  • Assist the Program Management team to help manage the delivery of multiple ATO packages.
  • Participate in Continuous Monitoring activities and initiatives.
  • Support other Cybersecurity priorities, as advanced by evolving Compliance needs. 

Qualifications

Required:

  • 3+ year(s) of experience as a cybersecurity assessor and/or ISSO
  • Current CAP certification required
  • Must have the ability to transport laptop/work equipment to and from work and home in order to support remote work, if required.

 

OTHER DUTIES

  • This job description is not designed to cover a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities are subject to change at any time. Employees will be required to follow any other job-related instructions and to perform any other job-related duties requested by any person authorized to give instructions or assignments.

PHYSICAL DEMANDS AND WORK ENVIRONMENT

  • The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodation may be made to enable individuals with disabilities to perform these functions.
  • While performing the duties of this position, the employee is regularly required to talk or hear. The employee frequently is required to use hands or fingers, handle or feel objects, tools, or controls. The employee is occasionally required to stand, walk, sit, and reach with hands and arms. Specific vision abilities required by this position include close vision, distance vision, and the ability to adjust focus. The noise level in the work environment is usually low to moderate. 

NOTE

  • All duties and responsibilities are essential functions and requirements and are subject to possible modification to reasonably accommodate individuals with disabilities. To perform this job successfully, the employee will possess the skills, aptitudes, and abilities to perform each duty proficiently. The requirements listed in this document are the minimum levels of knowledge, skills, or abilities. This document does not create an employment contract, implied or otherwise, other than an “at will” relationship.

 

VariQ is an Equal Opportunity/Affirmative Action employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veteran status, or any other protected class. We consider diversity and inclusiveness to be core to our culture, and central to our commitment to fostering an empowering and supportive workplace.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed