Vector CSP
  • Washington, DC, USA
  • Based Upon Experience
  • Salary
  • Full Time

Competitive Package


Interviews are now being conducted for contingent hiring for this non-supervisory position located in Washington, D.C.  Work is performed in a typical office setting.

Citizenship Requirement: U.S. 

Security Clearance: Secret

Job Summary: Performing system, network and application Assessment and Authorization (A&A)-related tasks including Risk Management Framework (RMF) package development, Cybersecurity (Information Assurance) controls analysis, risk assessment, contingency planning, Security Test and Evaluation (ST&E), risk mitigation analysis, and technology reviews/assessments.

Education and Experience:

  • Bachelor of Arts / Bachelor of Science degree from an accredited university.
  • At least seven (7) years demonstrated experience supporting a major system acquisition program's Security Authorization process.

Essential Duties:

The candidate will be responsible for: 

  • Reviewing information system (IS) architectures, operating mode, applications, data types, system boundaries, connections and other relevant information that will allow a full risk assessment
  • Assisting or conducting at any time a CG system SBU or Classified systems authorization if the accreditation is revoked by /AO, system security posture changes, or by normal expiration of the Authority to Operate (ATO)
  • Determining the security requirements and provide a Requirements Traceability Matrix (RTM) to the Contracting Officer Representative (COR).
  • Complying with the defined Security Authorization Process (SAP) process consisting of:
    1. Generating an information system initial risk assessment report;
    2. Developing the security plan (SP);
    3. Supporting the security control assessment plan, independent verification and validation, independent audits.
  • Obtaining, retrieving, compiling, and drafting documentation for inclusion to the SP.
  • Ensuring that all drafts go thru Quality Assurance Review prior to delivery.
  • Verifying the accuracy of the SP, system architectural diagrams, and identity of the systems being accredited as SBU or Classified.
  • Performing and conducting independent Test and Evaluation to ensure that the system's confidentiality, integrity, and availability are maintained at the standards that are in accordance with the Federal Information Processing Standards (FIPS) 199, FIPS 200 and CNSSI 1253.
  • Performing System Architectural Analysis to include reviewing of network connections and interfaces, review system application specification and requirements, specifically those relevant to system security, and review other pertinent system development life cycle documentation.
  • Determining if Personal Identifiable Information is stored, processed, or transmitted within the general support system. If applicable, The candidate will conduct the USCG's Privacy Threshold Analysis
  • Assisting in the ongoing improvement of CG-9335 Cybersecurity (Information Assurance) procedures for information system security in the classified and unclassified areas.
  • Supporting DoD/DHS/USCG inspections and audits that take place on various CG-9335 supported systems.
  • The assembly of packages at the direction of the ISSM and ISSO's and provide copies of the package as needed.
  • Monitoring approved FISMA dashboard to ensure that all security criteria and regulatory requirements are maintained, and that changes that affect the SAP documentation are noted.
  • Provide support during Cyber Security Inspection (CSI) and Cyber Command Readiness Inspection (CCRI)

Knowledge, Skill and Abilities:

  • Knowledge of performing system, network and application A&A-related tasks including RMF package development, IA/security controls analysis, risk assessment, contingency planning, Security Test and Evaluation (ST&E), risk mitigation analysis, and technology reviews/assessments.
  • Experience managing complex projects or programs to include preparation of reports and correspondence that are technically correct; coordination and scheduling of multiple people, tasks and functions; managing funding of requirements; and providing support relative to Assessment and Authorization processes and DOD/DHS Cybersecurity (Information Assurance) directives.
  • Experience with Platform Information Technology (PIT) /Industrial Control System (ICS) analysis.
  • Familiar with DoD/DHS Cybersecurity directives, policy, instructions and orders
  • Experience with Acquisition Life Cycle Framework
  • Must hold appropriate current DoD baseline Cybersecurity certifications in accordance with DoD 8570.01-M (IAM Level III)

Vector CSP, LLC provides reasonable accommodation for disabled applicants to participate in the selection process. For assistance please contact our Human Resources Department by email, scott.reed@vectorcsp.com. Please state your reasonable accommodation need in your message. Only reasonable accommodation requests related to applying for a specific position within VectorCSP, LLC will be reviewed at the phone number and email address supplied.

Vector CSP, LLC is an equal opportunity employer and does not discriminate against any employee or applicant for employment because of race, color, religion, sex, sexual orientation, gender identity or national origin, veterans' status or any other reasons prohibited under Federal, State or local laws.  EOE/M/F/Disability/Vet

 

Vector CSP
  • Apply Now

  • * Fields Are Required

    What is your full name?

    How can we contact you?

    I agree to ApplicantPro's Applicant Information Use Policy.*
  • Sign Up For Job Alerts!

  • Share this Page
  • Facebook Twitter LinkedIn Email
.
Logo Home Employees Contact About Us Press Room Capabilities Case Studies Contract Vehicles Careers