Job Requirements
Quantico, VA
Secret Polygraph not specified
Career Level not specified
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
Role: Information Systems Security Officer
Location: 5 days onsite in Quantico, VA
Duration: Contract (long term)
Citizenship: USC with Active Secret Clearance
Rate: $ 55 an hour (some flex)
Top Skills:
A&A
ACAS, Nessus and/or Tenable
IAT Level II (Sec+, CCNA, etc)
RMF
RSA Archer eGRC
5 years of experience
Assist the Government Lead in daily tasks to ensure all systems have current Authorizations to Operate (ATOs). Facilitate Assessment and Authorization (A&A) for Information Systems, data availability, integrity, authentication, confidentiality, and non-repudiation. Through A&A review processes, ensure security measures are implemented for communication systems, networks, and provide advice that systems and personnel adhere to established security standards and Governmental requirements for security on these systems. Develop and execute security policies, plans, and procedures. Initiate creation of A&A packages to support receipt of Authorizations to Operate (ATOs), collaborate with Engineers to gather required information for A&A packages, and update A&A packages as required. Perform lifecycle maintenance of A&A packages ensuring ATOs do not expire without proper updates. Update the appropriate documentation for Department of the Navy (DON) Application & Database Management System (DADMS) and Department of Defense Information Technology Portfolio Repository - Department of the Navy (DITPR-DON). Submit Ports and Protocols with all supplemental documentation to DISA for approval. Submit tickets to initiate action from Headquarters Marine Corps (HQMC) Command, Control, Communications, and Computers (C4) Cybersecurity Division (CY) for approval. Ensure appropriate action is taken in a timely manner by appropriate point of contact (POC) within the A&A packages. Assist with validation of A&A packages as required by the Government. Review and provide input for Operational Plan of Action and Milestones (POA&M) for submission to Action Officer (AO). Conduct vulnerability scans using Assured Compliance Assessment Solution (ACAS) and assist Engineers in documenting system vulnerabilities. Vulnerability management duties include, but are not limited to, using Tenable SecurityCenter and Nessus scanners, RedSeal, BigFix, Security Content Automation Protocol (SCAP) Compliance Checker (SCC) Tool, HP Fortify, other automated tools, and manual inspections to identify vulnerabilities; documenting vulnerabilities in the RSA Archer eGRC system; reporting vulnerability statistics. Experience with Department of Defense Information Assurance Program (DIACAP) and Risk Management Framework (RMF). Must possess Information Technology Infrastructure Library (ITIL) version 3 Foundation certification.
Education Level
High school Diploma or General Equivalency Diploma (GED)*
5 years of experience
Certification Credential Name
IAT Level II
Thanks and Regards,
Murali Sharma
Direct no#: (202) 828-3494.
Email: Murali@nastechglobal.com
Location: 5 days onsite in Quantico, VA
Duration: Contract (long term)
Citizenship: USC with Active Secret Clearance
Rate: $ 55 an hour (some flex)
Top Skills:
A&A
ACAS, Nessus and/or Tenable
IAT Level II (Sec+, CCNA, etc)
RMF
RSA Archer eGRC
5 years of experience
Assist the Government Lead in daily tasks to ensure all systems have current Authorizations to Operate (ATOs). Facilitate Assessment and Authorization (A&A) for Information Systems, data availability, integrity, authentication, confidentiality, and non-repudiation. Through A&A review processes, ensure security measures are implemented for communication systems, networks, and provide advice that systems and personnel adhere to established security standards and Governmental requirements for security on these systems. Develop and execute security policies, plans, and procedures. Initiate creation of A&A packages to support receipt of Authorizations to Operate (ATOs), collaborate with Engineers to gather required information for A&A packages, and update A&A packages as required. Perform lifecycle maintenance of A&A packages ensuring ATOs do not expire without proper updates. Update the appropriate documentation for Department of the Navy (DON) Application & Database Management System (DADMS) and Department of Defense Information Technology Portfolio Repository - Department of the Navy (DITPR-DON). Submit Ports and Protocols with all supplemental documentation to DISA for approval. Submit tickets to initiate action from Headquarters Marine Corps (HQMC) Command, Control, Communications, and Computers (C4) Cybersecurity Division (CY) for approval. Ensure appropriate action is taken in a timely manner by appropriate point of contact (POC) within the A&A packages. Assist with validation of A&A packages as required by the Government. Review and provide input for Operational Plan of Action and Milestones (POA&M) for submission to Action Officer (AO). Conduct vulnerability scans using Assured Compliance Assessment Solution (ACAS) and assist Engineers in documenting system vulnerabilities. Vulnerability management duties include, but are not limited to, using Tenable SecurityCenter and Nessus scanners, RedSeal, BigFix, Security Content Automation Protocol (SCAP) Compliance Checker (SCC) Tool, HP Fortify, other automated tools, and manual inspections to identify vulnerabilities; documenting vulnerabilities in the RSA Archer eGRC system; reporting vulnerability statistics. Experience with Department of Defense Information Assurance Program (DIACAP) and Risk Management Framework (RMF). Must possess Information Technology Infrastructure Library (ITIL) version 3 Foundation certification.
Education Level
High school Diploma or General Equivalency Diploma (GED)*
5 years of experience
Certification Credential Name
IAT Level II
Thanks and Regards,
Murali Sharma
Direct no#: (202) 828-3494.
Email: Murali@nastechglobal.com
group id: 91142412