Today
Secret
Mid Level Career (5+ yrs experience)
Occasional travel
Security
Crystal Hills, CO (On-Site/Office)
Responsibilities:
Serve as the primary point of contact for security compliance activities, collaborating with stakeholders to track and resolve security concerns.
Manage and maintain POA&Ms, ensuring timely remediation of findings and alignment with government and contract requirements.
Support vulnerability management efforts, including running security scans and reviewing scan results, tracking remediation activities, and verifying closure of findings.
Conduct risk management activities including risk assessments, risk analysis, and documentation of risk mitigation strategies.
Conduct compliance reviews to ensure systems adhere to federal regulations, contract requirements, and applicable frameworks (e.g., NIST 800-53, RMF).
Assist in preparing and maintaining security documentation, including System Security Plans (SSPs), assessment reports, and risk analyses.
Collaborate with technical teams across disciplines to validate security controls, provide compliance guidance, and ensure mission success.
Participate in incident response and after-action reviews, documenting lessons learned and compliance impacts.
Develop and deliver compliance reports and metrics for leadership, federal stakeholders, and auditors.
Contribute to security awareness and training initiatives to promote compliance across operational teams.
Requirements:
Active Secret clearance required.
U.S. Citizenship required (dual citizens not eligible due to federal contract requirements).
Experience with federal government contracts, with preference for contracts under Homeland Security.
7+ years of experience in security compliance, vulnerability management, or related cybersecurity field.
4+ years of experience with:
Managing and tracking POA&Ms within government contracting environments.
Federal security frameworks, policies, and requirements (e.g., FISMA, NIST RMF).
Vulnerability management processes and tools.
Risk management activities, including conducting risk assessments and risk analysis.
Collaboration with technical teams to address findings and implement compliance solutions.
Strong written and verbal communication skills with the ability to prepare compliance documentation and reports.
Candidates must reside within a commutable distance for daily onsite work and meet recall/on-call requirements in a 24x7x365 environment.
Serve as the primary point of contact for security compliance activities, collaborating with stakeholders to track and resolve security concerns.
Manage and maintain POA&Ms, ensuring timely remediation of findings and alignment with government and contract requirements.
Support vulnerability management efforts, including running security scans and reviewing scan results, tracking remediation activities, and verifying closure of findings.
Conduct risk management activities including risk assessments, risk analysis, and documentation of risk mitigation strategies.
Conduct compliance reviews to ensure systems adhere to federal regulations, contract requirements, and applicable frameworks (e.g., NIST 800-53, RMF).
Assist in preparing and maintaining security documentation, including System Security Plans (SSPs), assessment reports, and risk analyses.
Collaborate with technical teams across disciplines to validate security controls, provide compliance guidance, and ensure mission success.
Participate in incident response and after-action reviews, documenting lessons learned and compliance impacts.
Develop and deliver compliance reports and metrics for leadership, federal stakeholders, and auditors.
Contribute to security awareness and training initiatives to promote compliance across operational teams.
Requirements:
Active Secret clearance required.
U.S. Citizenship required (dual citizens not eligible due to federal contract requirements).
Experience with federal government contracts, with preference for contracts under Homeland Security.
7+ years of experience in security compliance, vulnerability management, or related cybersecurity field.
4+ years of experience with:
Managing and tracking POA&Ms within government contracting environments.
Federal security frameworks, policies, and requirements (e.g., FISMA, NIST RMF).
Vulnerability management processes and tools.
Risk management activities, including conducting risk assessments and risk analysis.
Collaboration with technical teams to address findings and implement compliance solutions.
Strong written and verbal communication skills with the ability to prepare compliance documentation and reports.
Candidates must reside within a commutable distance for daily onsite work and meet recall/on-call requirements in a 24x7x365 environment.
group id: 90860665
