RockvilleMDRecruiter Since 2001
the smart solution for Rockville jobs

Cybersecurity Assessment & Authorization Analyst

Company: Chickasaw Nation Industries
Location: Rockville
Posted on: January 13, 2021

Job Description:

It's fun to work in a company where people truly BELIEVE in what they're doing!We're committed to bringing passion and customer focus to the business.SUMMARYThe Cybersecurity Assessment and Authorization Analyst provides support to the Department of Health and Human Services, Indian Health Service (IHS). This position is responsible for executing and assisting in the completion of security certifications and for providing--support in the development and implementation of a program to manage all aspects of compliance with government regulationsESSENTIAL DUTIES AND RESPONSIBILITIESEssential duties and responsibilities include the following. Other duties may be assigned.Responsible for the integration of CNI Core Competencies into daily functions, including: commitment to integrity, knowledge / quality of work, supporting financial goals of the company, initiative / motivation, cooperation / relationships, problem analysis / discretion, accomplishing goals through organization, positive oral / written communication skills, leadership abilities, commitment to Affirmative Action, reliability / dependability, flexibility and ownership / accountability of actions taken.Assists in developing and implementing a program for tracking and reporting Federal Information Security Management Act (FISMA) compliance activities, including annual contingency plan tests, annual privacy impact assessments, quarterly Plan of Action and Milestones (POA&Ms) updates and user access reviews.Assists system owners in developing security authorization packages that are fully compliant with National Institute of Standards and Technology (NIST) guidelines. Reviews and updates the system security categorization and risk assessments for each system annually or upon significant change.Annually reviews and updates the security and contingency plan for each system and makes recommendations to address significant deficiencies. Evaluates the implementation of security controls as required by NIST. Prepares security authorization packages using approved customer templates.Conducts annual security controls effectiveness testing. Documents findings and advises and monitors remediation efforts on all systems.Annually reviews and assesses external partner and affiliate infrastructure to maintain the acceptable risk level set by the customers Authorizing Official (AO).Assists in meeting mandates, directives, reporting, and other security-related processes with respect to Federal regulations such as FISMA; Health Insurance Portability and Accountability Act (HIPAA); Office of Management and Budget (OMB) mandates; Homeland Security Presidential Directives (HSPD); Federal Information Processing Standards (FIPS) and NIST guidance implementation, oversight and compliance.Conducts significant research, evaluation, recommendation, and documentation development such as security assessment reports, methodologies, briefings, and presentations.Conducts risk assessments on customer systems and network and documents in accordance with NIST, Risk Management Guide for Information Technology Systems.Reviews and updates risk assessments when significant changes occur to systems/network.Ensures customer information and information systems are adequately protected from unauthorized access, use, disclosure, disruption, modification or destruction. Briefs and provides documented results to staff. Briefs include, at a minimum, areas of conformance to directives, corrective recommendations for deficiencies, and POA&M explanations to correct deficiencies.Analyzes major IT systems, from a security perspective, during the initial phases of system development and throughout the systems development lifecycle.Reviews standard security configurations to assure compliance with federal directives and industry best practices. If standard security configurations are not established, assists in developing and implementing them on an as needed basis.Conducts onsite information security audits.Assists with self-assessments or reviews and provides assistance on security processes. Prepares a written report with recommendations to be presented to local management officials.Based on audit results, develops and manages mitigation strategies that lead to the elimination of vulnerabilities and improved audit scores.Performs penetration testing to test resources and validate current security controls protecting systems and applications. Prepares recommendations to correct vulnerabilities.Provides security subject matter expertise in the development process of clinical applications to ensure compliance with Meaningful Use/HIPAA requirements.Responsible for aiding in own self-development by being available and receptive to all training made available by the company.Plans daily activities within the guidelines of company policy, job description and supervisor's instruction in such a way as to maximize personal output.Responsible for keeping own immediate work area in a neat and orderly condition to ensure safety of self and coworkers. Will report any unsafe conditions and/or practices to the appropriate supervisor and human resources. Will immediately correct any unsafe conditions to the best of own ability.EDUCATION/EXPERIENCEBachelor's degree in Computer Science or a related field of study and a minimum of four (4) years' relevant experience, or equivalent combination of education / experience. Must have at least one year of information security experience and one year of certification and accreditation (C&A) compliance / Security Assurance (SA) experience (preferably NIST based). Experience administering large, complex networks. Experience with current and emerging technologies that involves implementing, administering, performing tests and analyzing all elements of network systems, systems security, and design assurance. Ten years of experience may be substituted in lieu of degree.CERTIFICATES, LICENSES, REGISTRATIONCISSP, SANS GIAC, Security+, Network+, Linux+, MCSE, CCNA or SSCP certifications preferredJOB SPECIFIC KNOWLEDGE / SKILLS / ABILITIESWorking knowledge and understanding of OMB, FISMA, FIPS, HIPPA and other federal regulations and requirements associated with Information SecuritySpecialized knowledge and advanced skills in the tools, concepts, practices and procedures of security incident management, threat intelligence and continuous monitoringKnowledgeable of security-related processes with respect to Federal risk and compliance regulations best practicesAbility to read, analyze, develop and interpret common information systems security documentsExpert computer skills with advanced proficiency in a Windows and Linux based computer environmentExcellent critical thinking skills with ability to identify, analyze and resolve problems / complex issuesExcellent verbal and written communications skills with ability to prepare quality reports and effectively communicate / interact with a wide variety of technical and non-technical audiences (i.e., customers, team members, management and federal staff)Exceptional customer service skills with ability to respond to requests in a professional, helpful and timely mannerHighly organized with ability to effectively manage multiple projects and prioritiesAbility to work in a fast-paced environment and to learn and apply new knowledge and techniques related to incident response and continuous monitoring capabilitiesAbility to effectively work both independently and in a team environment for the successful achievement of goalsLANGUAGE SKILLSAbility to read, analyze and interpret common scientific and technical journals, financial reports, and legal documents. Ability to respond to common inquiries or complaints from customers, regulatory agencies, or members of the business community. Ability to write speeches and articles for publication that conform to prescribed style and format. Ability to effectively present information to top management, public groups, and/or boards of directors.MATHEMATICAL SKILLSAbility to calculate figures and amounts such as discounts, interest, commissions, proportions, percentages, area, circumference and volume. Ability to apply concepts of basic algebra and geometry.REASONING ABILITYAbility to define problems, collect data, establish facts, and draw valid conclusions. Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete variables.PHYSICAL DEMANDSThe physical demands described here are representative of those that must be met by an employee to perform successfully the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this job. Work is primarily performed in an office environment. Regularly required to sit. Regularly required use hands to finger, handle, or feel, reach with hands and arms to handle objects and operate tools, computer, and/or controls. Required to speak and hear. Occasionally required to stand, walk and stoop, kneel, crouch, or crawl. Must frequently lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, and ability to adjust focus. Exposed to general office noise with computers printers and light traffic.*MONIf you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!

Keywords: Chickasaw Nation Industries, Rockville , Cybersecurity Assessment & Authorization Analyst, Professions , Rockville, Maryland

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Other Professions Jobs


CDL A Truck Driver - Home Daily!
Description: Class-A CDL Truck Drivers - Home Daily Opportunities Available Local Regional Routes Available We are looking for Class A drivers who want to be part of a safe, highly motivated
Company: Gardner Trucking
Location: Lancaster
Posted on: 01/18/2021

Cloud Architect, Senior
Description: Job Number: R0084698Cloud Architect, SeniorThe Challenge:Are you looking for an opportunity to make a difference in the intelligence community IC What if you could find a position that is tailor made (more...)
Company: Booz Allen Hamilton
Location: Chantilly
Posted on: 01/18/2021

Engineer Senior - Systems Analyst
Description: Clearance Requirement: A current, active TS/SCI security clearance is required.Powered by endlessly curious people with an unwavering mission focus, Ball Aerospace pioneers discoveries that enable our (more...)
Company: Ball Aerospace
Location: Chantilly
Posted on: 01/18/2021


CDL-A Flatbed Truck Driver Jobs
Description: CDL-A Flatbed Drivers Enjoy Weekly Home Time, Great Pay, Generous Bonuses Unique Advantages You'll Find Nowhere Else br br CDL-A flatbed drivers like you are what powers Montgomery Transport- that's (more...)
Company: Montgomery Transport
Location: Lancaster
Posted on: 01/18/2021

CDL-A Team Truck Drivers
Description: Job Description LIMITED TIME US Xpress is offering great Dedicated Openings for CDL A
Company: US Xpress
Location: Leesburg
Posted on: 01/18/2021

Best Companies for Team Drivers Near You
Description: Hiring CDL drivers in your area. Apply once and choose a trucking job that works for you. Get home when you want to, and get paid what you
Company: Live Trucking
Location: Chantilly
Posted on: 01/18/2021

CDLA Team Truck Driving Jobs: Earn up to 80 CPM!
Description: Job DescriptionTeam Drivers: HUGE 30,000 Sign-On Bonus/split with TONS
Company: U.S.Xpress
Location: Leesburg
Posted on: 01/18/2021

Commercial Team Truck Driver Jobs: Earn up to 80 CPM!
Description: Job DescriptionTeam Drivers: HUGE 30,000 Sign-On Bonus/split with TONS
Company: U.S.Xpress
Location: Leesburg
Posted on: 01/18/2021

Enterprise Architect
Description: Job Details: Role: Enterprise ArchitectJob Type: FTELocation --- Initially remote to start with, post pandemic candidate has to work from client location --- Chantilly, VA br ------------------Strong
Company: emids
Location: Chantilly
Posted on: 01/18/2021

CDLA Team Driver Jobs
Description: Job DescriptionTeam Drivers: HUGE 30,000 Sign-On Bonus/split with TONS
Company: U.S.Xpress
Location: Leesburg
Posted on: 01/18/2021

Log In or Create An Account

Get the latest Maryland jobs by following @recnetMD on Twitter!

Rockville RSS job feeds