- Koniag Government Services (Arlington, VA)
- Koniag IT Systems, a Koniag Government Services company **,** is seeking an Open Security Controls Assessment Language SME with an active TS/SCI to ... time off, and more. We are seeking an experienced Open Security Controls Assessment... assessors, and compliance teams to improve efficiency in security control assessment and reporting.… more
- Koniag Government Services (Arlington, VA)
- …management tools) into RMF packages. + Provide subject matter expertise on leveraging OSCAL ( Open Security Controls Assessment Language) and other ... expertise in the development and deployment of automated RMF security control assessment , informing authorization,...expertise with RMF processes, NIST SP 800-53 Rev. 5 controls , and DoD RMF [DoDI 8510.01]. + Experience developing… more
- CIBC (Washington, DC)
- …and processes. **What You'll Be Doing** As the Manager, Cybersecurity & Technology Control Assessment you will independently conduct control testing, ... closely with the Sr. Managers and/or Program Director of the US TII Control Assessment Program on completion of cybersecurity on cybersecurity and information… more
- Leidos (Alexandria, VA)
- **Description** Leidos is seeking mid- to senior-level Security Control Assessors to join our SCA team. This position requires significant travel-please review ... equivalent) is required for consideration. **POSITION OVERVIEW** As a Security Control Assessor, you will play a...processes for each assessment type. + Support assessment development and execution to ensure security … more
- Leidos (Alexandria, VA)
- **Description** Leidos is seeking multiple Junior Security Control Assessors to join our SCA team. This position requires significant travel-please review the ... Assessor, you will play a key role in conducting Security Control Assessments at various government sites,...processes for each assessment type. + Support assessment development and execution to ensure security … more
- Leidos (Ashburn, VA)
- …major updates. Responsibilities may include creating security documentation (eg, System Security Plan, Security Assessment Report) and obtaining the ... system is authorized to operate + Conducting a formal assessment of the system's security posture +...the system's security posture + Evaluating whether security controls meet established standards and are… more
- Oracle (Washington, DC)
- …in secure architecture design, threat modeling, risk assessment , and cloud control frameworks. + Experience conducting ** security reviews such as CSAP, CSA ... and distributed systems. + Provide guidance on selecting and implementing security controls across identity, data, compute, networking, observability, and… more
- JPMorgan Chase (Washington, DC)
- …a focus on recommendations for enhancements or remediation, and proficiency in multiple security assessment methodologies (eg, Open Worldwide Application ... As an Assessments & Exercises Vice President in the Cybersecurity and Technology Controls line of business, you will contribute significantly to enhancing the firm's… more
- Office of the Secretary of Transportation (Washington, DC)
- …incidents. Personnel Security and Safety - Knowledge of methods and controls of personnel, public safety, and security operations; investigation and ... of Transportation, Office of the Secretary (OST), Office of Intelligence, Security and Emergency Response (OISER), Protective Service Division (PSD). OISER provides… more
- Oracle (Washington, DC)
- …and implementation required. + Ability to communicate with developers to explain how security controls and requirements pertain to their code and products. + ... cloud architecture and containers. + Knowledge of compliance program security controls , like ISO 27001, SOC 2...all aspects of enterprise and cloud computing. Evaluations of security architecture may include design assessment , risk… more
- CoStar Realty Information, Inc. (Arlington, VA)
- …on Friday. **Responsibilities** **Program & Strategy** + Build the enterprise SaaS Security program: charter, operating model, RACI, roadmap, control framework ... + Codify SaaS security standards and exception management with GRC; embed control checks into procurement/vendor risk and IT change processes. + Align to SOX… more
- Oracle (Washington, DC)
- …ensure that security requirements are set and the design implements the necessary controls to increase security posture for the service. As a member of the ... security requirements clearly to the development teams, risk assessment , risk mitigation and security tools/automation. **Responsibilities** Key… more
- Leidos (Bethesda, MD)
- …establishing a System Security Engineering (SSE) management process to integrate security and privacy controls into complex hardware and software systems You ... has an exciting opening for you, our next Cyber Security Engineer, to assist with the release of a...+ Perform and maintain vulnerability scans using Assured Compliance Assessment Solution (ACAS) and create reports + Track and… more
- Leidos (Arlington, VA)
- …to track vulnerability metrics and remediation progress. + Communicate risks and recommend security controls to stakeholders at all levels. + Assist in incident ... and patching. + Develop and implement vulnerability management processes, including change controls and security exceptions. + Track remediation progress and… more
- Oracle (Washington, DC)
- …ensure that security requirements are clear and the design implements the necessary controls to improve security posture for the service. As a member of the ... and best practices into the products and services. + Conduct threat modeling, security architecture reviews, risk assessment and provide guidance on mitigating… more
- Amentum (Washington, DC)
- …to a lengthy hiring process._ The PSS provides support for security assessment investigations, including background investigations, periodic reinvestigations, ... in the direction, from inception to completion of less complex security assessment investigations and rendering appropriate adjudication recommendations… more
- Assertive Professionals (Chantilly, VA)
- Information System Security Engineer (ISSE) About the Organization Established in 2015,AssertiveProfessionals(AP), is anEconomically Disadvantaged Woman Owned Small ... the Department of Defense, Intelligence Community, and Department of Homeland Security in accomplishing their missions worldwide, through an employee centric culture… more
- Leidos (Ashburn, VA)
- … field from an accredited college or university + Knowledge with auditing security controls and financial processes + Superior writing, communication and ... + Privacy Impact Assessment (PIA) + Risk Assessment Plan + System Security Plan (SSP)...Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated… more
- Leidos (Arlington, VA)
- … Architecture: Collaborate with IT and network engineering teams to integrate security controls into the overall system architecture, ensuring a defense-in-depth ... you will be responsible for designing, implementing, and maintaining security measures, with a specific focus on leveraging the...strategy. + Vulnerability & Risk Assessment : Conduct thorough risk assessments and vulnerability analyses to… more
- Leidos (Springfield, VA)
- …configuration management, and security authorization processes, including POA&M tracking and security assessment planning. + Serve as a key advisor for ... results across the organization. + Document and maintain System Security Plans, ensuring controls are in place...or related field. + Extensive experience in information systems security , including risk assessment , security … more