Information Security Specialist


POSITION OVERVIEW

The candidate will have hands-on experience and extensive knowledge with NIST Special Publications (SP) documents, Federal Information Processing Standards (FIPS), and Interconnection Security Agreements (ISAs). The candidate shall have experience collaborating with a team of security professionals to prepare documents such as: System Security Plans (SSPs), Contingency Plans (CPs), Risk Assessments Reports (RAR), Security Impact Assessments (SIAs) for proposed changes, as well as having a thorough understanding of NIST publications (SP 800-53, rev3/4, 800-53A, and 800-37).

We are seeking individuals who take a consultant approach to supporting our government customers. Successful candidates will be proactive and internally motivated to succeed. Individuals must possess the communication and soft skills to work though challenges by balancing a wide array of stakeholder and stakeholder equities.

KEY DUTIES

A successful candidate will:

  • Provide consultation on information security best practices and advise on ways to enhance cybersecurity practices, techniques or procedures;
  • Work with extensive technical team and subject matter experts to collect and document system security control descriptions;
  • Manage Information systems core documents (SSP, BCP, FIPS 199/200) and relevant security documents (Diagrams);
  • Manage POA&Ms through the develop of artifacts and security documentation;
  • Assist in the maintenance of systems to protect data from unauthorized users;
  • Identify, report, and resolves security violations;
  • And perform a variety of IT security tasks.

ESSENTIAL QUALIFICATIONS

  • Detailed oriented
  • Strong verbal and written communication skills
  • Excellent attention to detail and good analytical skills
  • Ability to work well independently and in a team setting
  • Adaptability, flexibility and ability to deal with ambiguity and change
  • Must be organized, timely, and customer service oriented

REQUIRED TECHNICAL SKILLS:

· At least five (5) years of relevant experience required

  • Utilization of scanning products such as: Nessus, Retina, Core Impact
  • Knowledge of security best practices such as; defense in-depth, least privileges, access controls, encryption
  • NIST SP 800-37 Risk Management Framework experience
  • Experienced with NIST SP 800-53 REV 4 preferred
  • Experienced with FISMA A&A continuous monitoring
  • Experienced with providing Vulnerability and Compliance Scanning
  • Experience of A&A Core Documentation development (i.e. SSP, CP/BIA)
  • Experienced with Security Repository Tools such as Cyber Security Assessment and Management (CSAM)
  • Experienced with System and Network administration

DESIRED CERTIFICATIONS (at least one)

  • Experience in Systems Engineering or satellite experience is preferred
  • CISM, CISSP, CISA, CAP, CRISC, PMP

EXPERIENCE AND EDUCATION

  • Bachelor’s Degree in Computer Science or related field (i.e., EE, CPE, MIS, IT)
  • Proficiency in Microsoft Office suite (Word, Excel, PowerPoint, Visio and Project)
  • Strong verbal and written communication skills
  • Must be organized, timely, and customer service oriented
  • Ability to work well independently and in a team setting
  • Adaptability, flexibility and ability to deal with ambiguity and change
  • Excellent oral and written communication and customer service skills
  • Excellent attention to detail and good analytical skills
  • ITIL v3 Foundation Certification, or ability to obtain certification within 6 month
  • US Citizenship
  • Ability to obtain and maintain a government security clearance

Apply Now


GAMA-1 is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind

Job Details

Location: Silver Spring, MD

Full Time



Ways to Apply 
Submit your resume through 
Join Our Team or apply through ZipRecruiter.

Contact Us for additional information or questions.