RockvilleMDRecruiter Since 2001
the smart solution for Rockville jobs

Senior IT Security Officer

Company: TestPros
Location: Rockville
Posted on: May 3, 2021

Job Description:

Company Overview TestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide range of Commercial and U.S. Federal, State, and Local Government customers. Our capabilities include Program Management, Program Oversight, Process Audit, Intelligence Analysis, Cyber Security, NIST SP 800-171 Assessment and Compliance, Computer Forensics, Software Assurance, Software Testing, Test Automation, Section 508 and WCAG Accessibility Assessment, Localization Testing, Independent Verification and Validation (IV&V), Quality Assurance (QA), Compliance, and Research and Development (R&D) services. TestPros is an Equal Opportunity Employer. TestPros delivers innovative independent IT assessment solutions to critical challenges facing the nation and the world. We support the U.S. Federal Government and Commercial clients within the continental USA. TestPros is dedicated to making lives better, safer and more secure. Job Summary TestPros is seeking a Senior IT Security Officer for a federal contract located in Rockville, MD. The ideal candidate will provide support for specific activities related to system assessment and authorization, continuous monitoring, cybersecurity risk management, cybersecurity metrics development and presentation, and risk scoring, calculation, and tracking. If necessary, the Contractor shall support the client?s system security personnel and other contractors in understanding existing or proposed system architectures and other technological concerns. Position: Full-time Citizenship: U.S. Citizenship Location: Rockville, MD Clearance: None Responsibilities and Duties + Provide independent reviews, analyses, summaries, and recommendations of Authorization packages and FISMA related continuous monitoring deliverables (e.g., Contingency Plans, Contingency Test Reports, Plans of Action & Milestones (POA&M) Reports, etc.) of unclassified systems according to Federal regulations, guidelines, and standards. + Identify and update cybersecurity risk metrics, investigate best practices of communicating information to executives and staff, and perform daily tracking and updates of security metrics, and update numerical models such as cybersecurity performance indicator and other quantitative cybersecurity risk scoring. + Rank risk according to severity of total impact and associated remediation resource costs and generate reports to estimate the impact of exploited risks or events upon mission performance and the contracts resources. + Update the existing suite of Excel spreadsheets and SharePoint graphical displays comprising the cybersecurity risk dashboard (CRDB) used to calculate the Cyber Security Performance Index (CPI) upon any changes to the number of FISMA systems or their organizational alignment, or changes in the CPI mathematical basis. + Providing security artifact, risk assessment, and Plan of Action and Milestone (POA&M) support through the use of the agency's online POA&M data and/or tools. + Assess Business Area Risk Assessments (or their equivalents), quantitative estimation of risks in terms of resource metrics, tradeoff analyses of remediation and cyber defense options, and incorporate risk allocation amongst organizational entities and decision support for resource allocation and enhanced investment decision. + Perform sampled IV&V testing (e.g., vulnerability scanning, hardening verification.) based upon security best practices with NRC-approved tools and document the results in a formal report. + Conduct reviews of security categorizations as specified in National Institute of Standards (NIST) Special Publication 800-60, latest version. Required Qualifications and Skills + U.S. Citizenship. + 4-year B.S. or B.A. degree, or equivalent, in Computer Science, Information Systems, or related discipline. + 5-10 years of previous cyber security expertise. + Knowledge of federal IT systems cybersecurity polices, requirements, and best practices. + Familiarity with network security, information assurance principles as prescribed in the NIST 800 Special Publication series. + Experience with independent IT security system assessments, cybersecurity risk analyses, metrics development, operating systems. + Knowledge of: Microsoft Exchange and webserver technology; DHS Continuous Diagnostics and Mitigation; databases (e.g., Oracle, SQL, etc.); Active Directory; Citrix; Microsoft Excel (advanced data modeling/charting); AnyChart, Inc. graphing and charting tools; Microsoft SharePoint Servers and web parts; and quantitative risk analysis and modeling. Preferred Qualifications and Skills + Familiarity with NRC-specific cyber security regulations, guidelines, and standards. + Demonstrated experience within a federal government agency is preferred. Benefits TestPros offers a competitive salary, medical/dental/vision insurance, life insurance, paid time off, paid holidays, 401(k) retirement plan with company match, opportunities for professional growth, cell phone discounts, and much more! All benefits are per TestPros current policies and are subject to change without notice. Benefits are available to full-time employees.? TestPros, Inc. is an Equal Opportunity Employer. EEO Statement All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, marital status, age, national origin, protected veteran status, or disability. VEVRAA Federal Contractor.

Keywords: TestPros, Rockville , Senior IT Security Officer, Other , Rockville, Maryland

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Log In or Create An Account

Get the latest Maryland jobs by following @recnetMD on Twitter!

Rockville RSS job feeds