- Koniag Government Services (Washington, DC)
- Koniag IT Systems, a Koniag Government Services company **,** is seeking an Open Security Controls Assessment Language SME with an active TS/SCI to ... time off, and more. We are seeking an experienced Open Security Controls Assessment... assessors, and compliance teams to improve efficiency in security control assessment and reporting.… more
- Foxhole Technology, Inc (Washington, DC)
- …management tools) into RMF packages. + Provide subject matter expertise on leveraging OSCAL ( Open Security Controls Assessment Language) and other ... expertise in the development and deployment of automated RMF security control assessment , informing authorization,...expertise with RMF processes, NIST SP 800-53 Rev. 5 controls , and DoD RMF [DoDI 8510.01]. + Experience developing… more
- Koniag Government Services (Washington, DC)
- …management tools) into RMF packages. + Provide subject matter expertise on leveraging OSCAL ( Open Security Controls Assessment Language) and other ... expertise in the development and deployment of automated RMF security control assessment , informing authorization,...expertise with RMF processes, NIST SP 800-53 Rev. 5 controls , and DoD RMF [DoDI 8510.01]. + Experience developing… more
- BigBear.ai (Annapolis Junction, MD)
- …of Git-based version control and branching strategies + Familiarity with OSCAL ( Open Security Controls Assessment Language) standards What we'd ... (GitHub, GitLab), and DevOps toolchains + Configure and maintain automated security control validation workflows using ATO Automation platform's real-time… more
- CIBC (Washington, DC)
- …and processes. **What You'll Be Doing** As the Manager, Cybersecurity & Technology Control Assessment you will independently conduct control testing, ... closely with the Sr. Managers and/or Program Director of the US TII Control Assessment Program on completion of cybersecurity on cybersecurity and information… more
- Leidos (Alexandria, VA)
- **Description** Leidos is seeking mid- to senior-level Security Control Assessors to join our SCA team. This position requires significant travel-please review ... equivalent) is required for consideration. **POSITION OVERVIEW** As a Security Control Assessor, you will play a...processes for each assessment type. + Support assessment development and execution to ensure security … more
- Leidos (Ashburn, VA)
- …major updates. Responsibilities may include creating security documentation (eg, System Security Plan, Security Assessment Report) and obtaining the ... system is authorized to operate + Conducting a formal assessment of the system's security posture +...the system's security posture + Evaluating whether security controls meet established standards and are… more
- Leidos (Alexandria, VA)
- **Description** Leidos is seeking multiple Junior Security Control Assessors to join our SCA team. This position requires significant travel-please review the ... Assessor, you will play a key role in conducting Security Control Assessments at various government sites,...processes for each assessment type. + Support assessment development and execution to ensure security … more
- JPMorgan Chase (Washington, DC)
- …a focus on recommendations for enhancements or remediation, and proficiency in multiple security assessment methodologies (eg, Open Worldwide Application ... As an Assessments & Exercises Vice President in the Cybersecurity and Technology Controls line of business, you will contribute significantly to enhancing the firm's… more
- Oracle (Washington, DC)
- …in secure architecture design, threat modeling, risk assessment , and cloud control frameworks. + Experience conducting ** security reviews such as CSAP, CSA ... and distributed systems. + Provide guidance on selecting and implementing security controls across identity, data, compute, networking, observability, and… more
- Tyto Athene (Washington, DC)
- …and essential safeguards + Support Incident Response and Contingency activities + Perform security control assessment in using NIST 800-53A + Conduct ... vulnerability assessment tools, open -source vulnerability assessment tools, and techniques used for evaluating security... assessment tools, and techniques used for evaluating security controls on Windows, Linux, and Unix… more
- Leidos (Ashburn, VA)
- …systems, and collects, investigates, and reports any suspected and confirmed security violations. **Primary Responsibilities** + Conduct risk assessment of ... the System Development Life Cycle (SDLC) to daily activities. + Analyze SSPs, Risk Assessment Reports or security related documentation. + Formulate security … more
- Oracle (Washington, DC)
- …and implementation required. + Ability to communicate with developers to explain how security controls and requirements pertain to their code and products. + ... cloud architecture and containers. + Knowledge of compliance program security controls , like ISO 27001, SOC 2...all aspects of enterprise and cloud computing. Evaluations of security architecture may include design assessment , risk… more
- CoStar Realty Information, Inc. (Arlington, VA)
- …on Friday. **Responsibilities** **Program & Strategy** + Build the enterprise SaaS Security program: charter, operating model, RACI, roadmap, control framework ... + Codify SaaS security standards and exception management with GRC; embed control checks into procurement/vendor risk and IT change processes. + Align to SOX… more
- Oracle (Washington, DC)
- …ensure that security requirements are set and the design implements the necessary controls to increase security posture for the service. As a member of the ... security requirements clearly to the development teams, risk assessment , risk mitigation and security tools/automation. **Responsibilities** Key… more
- Eliassen Group (Washington, DC)
- …matching, and life insurance._ **Responsibilities:** **Key Responsibilities** . Implement and document security controls in alignment with NIST SP 800-53 and the ... continuous monitoring. . Develop and maintain comprehensive security documentation: System Security Plans (SSPs), Security Assessment Reports (SARs), and… more
- Oracle (Washington, DC)
- …ensure that security requirements are clear and the design implements the necessary controls to improve security posture for the service. As a member of the ... and best practices into the products and services. + Conduct threat modeling, security architecture reviews, risk assessment and provide guidance on mitigating… more
- Leidos (Arlington, VA)
- …to track vulnerability metrics and remediation progress. + Communicate risks and recommend security controls to stakeholders at all levels. + Assist in incident ... and patching. + Develop and implement vulnerability management processes, including change controls and security exceptions. + Track remediation progress and… more
- Amentum (Washington, DC)
- …to a lengthy hiring process._ The PSS provides support for security assessment investigations, including background investigations, periodic reinvestigations, ... in the direction, from inception to completion of less complex security assessment investigations and rendering appropriate adjudication recommendations… more
- System One (Vienna, VA)
- …Description: We are seeking a skilled contractor to join our client's Finance Technology Security and Controls team. This team is responsible for security ... VA or Pensacola, FL (3 days/week onsite) Pay Rate: Open to Both C2C and W2 options Position Type:...and recommend improvements. o Support testing and validation of security configurations. o Assist in risk assessment … more