- Koniag Government Services (Washington, DC)
- Koniag IT Systems, a Koniag Government Services company **,** is seeking an Open Security Controls Assessment Language SME with an active TS/SCI to ... time off, and more. We are seeking an experienced Open Security Controls Assessment... assessors, and compliance teams to improve efficiency in security control assessment and reporting.… more
- Foxhole Technology, Inc (Washington, DC)
- …management tools) into RMF packages. + Provide subject matter expertise on leveraging OSCAL ( Open Security Controls Assessment Language) and other ... expertise in the development and deployment of automated RMF security control assessment , informing authorization,...expertise with RMF processes, NIST SP 800-53 Rev. 5 controls , and DoD RMF [DoDI 8510.01]. + Experience developing… more
- Koniag Government Services (Washington, DC)
- …management tools) into RMF packages. + Provide subject matter expertise on leveraging OSCAL ( Open Security Controls Assessment Language) and other ... expertise in the development and deployment of automated RMF security control assessment , informing authorization,...expertise with RMF processes, NIST SP 800-53 Rev. 5 controls , and DoD RMF [DoDI 8510.01]. + Experience developing… more
- BigBear.ai (Annapolis Junction, MD)
- …of Git-based version control and branching strategies + Familiarity with OSCAL ( Open Security Controls Assessment Language) standards What we'd ... (GitHub, GitLab), and DevOps toolchains + Configure and maintain automated security control validation workflows using ATO Automation platform's real-time… more
- Leidos (Odenton, MD)
- **Description** Leidos is seeking multiple Security Control Assessors to join our SCA team. This position requires significant travel-please review the position ... equivalent) is required for consideration. **POSITION OVERVIEW** As a Security Control Assessor, you will play a...processes for each assessment type. + Support assessment development and execution to ensure security … more
- Leidos (Odenton, MD)
- **Description** Leidos is seeking multiple Junior Security Control Assessors to join our SCA team. This position requires significant travel-please review the ... Assessor, you will play a key role in conducting Security Control Assessments at various government sites,...processes for each assessment type. + Support assessment development and execution to ensure security … more
- JPMorgan Chase (Washington, DC)
- …a focus on recommendations for enhancements or remediation, and proficiency in multiple security assessment methodologies (eg, Open Worldwide Application ... As an Assessments & Exercises Vice President in the Cybersecurity and Technology Controls line of business, you will contribute significantly to enhancing the firm's… more
- Oracle (Annapolis, MD)
- …in secure architecture design, threat modeling, risk assessment , and cloud control frameworks. + Experience conducting ** security reviews such as CSAP, CSA ... and distributed systems. + Provide guidance on selecting and implementing security controls across identity, data, compute, networking, observability, and… more
- Tyto Athene (Washington, DC)
- …and essential safeguards + Support Incident Response and Contingency activities + Perform security control assessment in using NIST 800-53A + Conduct ... vulnerability assessment tools, open -source vulnerability assessment tools, and techniques used for evaluating security... assessment tools, and techniques used for evaluating security controls on Windows, Linux, and Unix… more
- Oracle (Annapolis, MD)
- …and implementation required. + Ability to communicate with developers to explain how security controls and requirements pertain to their code and products. + ... cloud architecture and containers. + Knowledge of compliance program security controls , like ISO 27001, SOC 2...all aspects of enterprise and cloud computing. Evaluations of security architecture may include design assessment , risk… more
- Oracle (Annapolis, MD)
- …ensure that security requirements are set and the design implements the necessary controls to increase security posture for the service. As a member of the ... security requirements clearly to the development teams, risk assessment , risk mitigation and security tools/automation. **Responsibilities** Key… more
- Eliassen Group (Annapolis, MD)
- …matching, and life insurance._ **Responsibilities:** **Key Responsibilities** . Implement and document security controls in alignment with NIST SP 800-53 and the ... continuous monitoring. . Develop and maintain comprehensive security documentation: System Security Plans (SSPs), Security Assessment Reports (SARs), and… more
- Leidos (Bethesda, MD)
- …establishing a System Security Engineering (SSE) management process to integrate security and privacy controls into complex hardware and software systems You ... has an exciting opening for you, our next Cyber Security Engineer, to assist with the release of a...+ Perform and maintain vulnerability scans using Assured Compliance Assessment Solution (ACAS) and create reports + Track and… more
- Oracle (Annapolis, MD)
- …ensure that security requirements are clear and the design implements the necessary controls to improve security posture for the service. As a member of the ... and best practices into the products and services. + Conduct threat modeling, security architecture reviews, risk assessment and provide guidance on mitigating… more
- Amentum (Washington, DC)
- …to a lengthy hiring process._ The PSS provides support for security assessment investigations, including background investigations, periodic reinvestigations, ... in the direction, from inception to completion of less complex security assessment investigations and rendering appropriate adjudication recommendations… more
- Oracle (Annapolis, MD)
- … security controls to mitigate those risks. Evaluations of internal security architecture may include design assessment , risk assessment , and threat ... **Job Description** Responsible for the planning, design and build of security architectures; oversees the implementation of network and computer security and… more
- Tyto Athene (Washington, DC)
- …requirements and NIST SP 800-53, including System Security Plans (SSPs), Risk Assessment Reports (RARs), Security Assessment Plans and Reports (SAP/SAR), ... activities. + Thorough understanding and knowledge of FISMA, NIST RMF and Security and Privacy Assessment and Authorization (SPA&A) processes. + Experience… more
- Xcelerate Solutions (Washington, DC)
- …/ or very sensitive security concerns relating to the most complex security assessment issues for the purpose of determining merit for granting, continuing, ... in the direction, from inception to completion, of highly sensitive and complex security assessment investigations conducted by the Agency Field Offices (FO) and… more
- Leidos (Annapolis Junction, MD)
- …(CM) for security software, hardware, and firmware, ensuring compliance with security controls , and assessing the impact of system changes. + **Developing ... and maintaining security documentation** , including System Security Plans (SSPs), Risk Assessment Reports, Certification...Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated… more
- Amentum (Washington, DC)
- …to a lengthy hiring process._ The PSS provides support for security assessment investigations, including background investigations, periodic reinvestigations, ... to address their most significant and complex challenges in science, security and sustainability. Our people apply undaunted curiosity, relentless ambition and… more