Job summary:
Title:
Security Auditor
Location:
Washington, DC, United States
Length and terms:
Long term - W2 Only - US Citizens Only
Position created on 05/15/2020 05:46 pm
Job description:
US Citizens Only - Federal/DoD project; must be able to undergo background check** Initial contract for 1 year with extensions;
Scope
- Perform an assessment to ensure security controls are consistently implemented on an information system
- Analyze and verify implementation of security controls across the information system are following NIST Special Publication 800-53A (SP 800-53A) certification standards
- Document all findings from the security control analysis and provide a final recommendation report on authorizing operation of the information system
- Complete Assessment and Authorization testing within a 2-month period
- Perform gap analysis on current security infrastructure
- Ensure consistent application of information security standards across all agency information systems
- Meet NIST and agency documented standards and guidance
- Integrate these regulations and standards into a fully implementable security program
- Ensure preparation for internal and external audits through management of all infrastructure artifacts required to pass audits
- Ensure all new information technology (IT) projects meet or integrate security standards into their development.
- Develop a culture of security-mindful professionals across the community
- Strive to be more flexible and responsive to new regulatory directives
- Serve as the central authority for all IT security-related activities across the agency
- Ensure information system survivability and integrity
- Optimize processes to meet IT security-related goals and strategies
- Conduct an Assessment and Authorization (A&A) review of the Information System to ensure compliance with Federal Information Modernization Act (FISMA) requirements
- Review all A&A supporting documentation to ensure correctness and consistency
- Provide security expertise and guidance to ensure the consistent application of A&A processes
- Maintain and provide reports on the status of all A&A materials and supporting documentation
- Provide A&A expertise in the application of best practices to standardize and enhance A&A processes ensuring compliance with NIST 800-53A Federal IT system requirements.
Skills
- 6 years experience
- strong NIST, gap analysis, infrastructure, FISMA, A&A experience
Contact the recruiter working on this position:
The recruiter working on this position is Rajendra Reddy
His/her contact number is +(1) (202) 4706751
His/her contact email is rajr@msysinc.com
Our recruiters will be more than happy to help you to get this contract.