Security and Privacy Control Assessor Lead - Federal IT Cybersecurity

Published date Posted on Indeed on Oct 10, 2021 (10 d ago)

Company Overview
TestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide range of Commercial and U.S. Federal, State, and Local Government customers. Our capabilities include Program Management, Program Oversight, Process Audit, Cybersecurity, Zero Trust, Resiliency, CMMC and NIST SP 800-171 Assessment and Compliance, Computer Forensics, Software Assurance, Governance Risk Management and Compliance (GRC), Privacy, Software Testing, Test Automation, Customer Experience (CX), Section 508 and WCAG Accessibility Assessment, Usability, Localization Testing, Independent Verification and Validation (IV&V), Quality Assurance (QA), Intelligence Analysis, and Research and Development (R&D) services.
TestPros delivers innovative independent IT assessment solutions to critical challenges facing the nation and the world. We support the U.S. Federal Government and Commercial clients within the continental USA. TestPros is dedicated to making lives better, safer and more secure.
Job Summary
TestPros is seeking Information Technology (IT) Cybersecurity professionals with an analytical and customer-focused mindset, and an established understanding of U.S. Federal Cybersecurity guidelines, processes and tools. We are looking for full-time employees to fill these roles.
Work Location: Hybrid, work onsite in SW Washington, DC 2-3 days per week and work from home 2-3 days per week - with occasional travel/work other locations in the Washington DC metro area.
Responsibilities and Duties

  • Perform independent security and privacy control assessments on behalf of the CSO in support

of Security Assessment & Authorization (SA&A).

  • Create and maintain test cases for security assessment testing and perform security testing at

the control-requirement level for each unique component of each system.

  • Develop and document findings and recommendations that are concise, system-specific, and

actionable.

  • Document customer and system-specific risk analysis for each finding identified during each assessment in accordance with NIST SP 800-30, as amended, the customer Enterprise Risk Appetite, and customer security policies. Document the results of this risk analysis in the Security Assessment Report (SAR) for each assessed FISMA system and a summary of the assessment results and risk in the respective Assessment/Authorization Briefing.
  • Develop an assessment schedule, and include it with the Integrated Master Project Schedule.
  • Adhere to controls identified in the customer-approved QMAP to ensure separation and independence from other individuals performing and supporting other functions and task areas.

Required Qualifications and Skills

  • Three (3) years of experience managing security assessment teams.
  • Six (6) years of experience performing detailed, full-scope technical security control testing, including development of security and privacy assessment plans.
  • Eight (8) years of Information Security experience.
  • Two (2) years of experience with the use of eGRC tools. Experience with ServiceNow is preferred.
  • Experience working with Qualys Enterprise, Archer, Nessus, HCL AppScan, and technical outputs of the Kali Linux suite.
  • Advanced knowledge of security configurations for various component types.
  • Professional certification such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Certified Risk and Information Systems Control (CRISC), Certified Information Security Auditor (CISA), or equivalent is required.
  • Excellent written communication skills for heavy documentation.
  • Excellent verbal communication skills for developing and delivering presentations and training.
  • Experience working effectively with several clients or project teams simultaneously in a fast-paced environment.
  • Familiarity with the Section 508 accessibility guidelines.

Preferred Qualifications and Skills

  • Experience providing advisory services to the federal government.
  • Familiarity with Federal Government's Zero Trust initiative.
  • Familiarity with the NICE Framework.
  • Ability to successfully obtain a government issued clearance.

Benefits
TestPros offers a competitive salary, medical/dental/vision insurance, life insurance, disability insurance, paid time off, paid holidays, 401(k) retirement plan with company match, opportunities for professional growth, cell phone discounts, and much more! All benefits are per TestPros current policies and are subject to change without notice. Benefits are available to full-time employees.
TestPros, Inc. is an Equal Opportunity Employer.**
EEO Statement
All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, marital status, age, national origin, protected veteran status, or disability. VEVRAA Federal Contractor.

AP5fBwUTW7

Job Type: Full-time

Work Location: Multiple Locations


Let us know

Help us maintain the quality of jobs posted on RemoteTechJobs and let us know if:

Loading...
Success
Error on reporting

Related jobs

Imagine yourself here!OpenGov is a mission driven fast-growth, Series D, venture backed startup (includes Andreessen Horowitz, Formation 8, and Emerson Collective). Our Board of Directors includes iconic Silicon Valley executives John Chambers (former Cisco Chairman and CEO) and.

JOB DESCRIPTIONAccounting Application Specialist - Customer ServiceWHO WE AREGreenSlate is the fastest-growing provider of technology and business solutions for media productions. We provide the most advanced technology for production accounting and entertainment payroll. Our inn

Vroom is an innovative end-to-end ecommerce company that is revolutionizing the car buying experience. Our scalable, data-driven technology brings all phases of the vehicle buying and selling process to consumers wherever they are and offers an extensive selection of vehicles, tr

The Team Lead, Clinical Chart Review will be primarily responsible for providing daily administrative support to the Clinical Chart Review Director and Supervisor as well as the Operations team and the Nurse Auditors as listed in the responsibilities for essential function. The T

Job DescriptionBlack Knight is the premier provider of integrated technology, services, data and analytics that lenders and servicers look to first to help successfully manage the entire loan life cycle. Our deep understanding of regulatory and compliance issues complements the k

Sr. Software Engineer/Computer SciencePosition: Software Assurance/Software Safety ProfessionalPosition No: 9911Location: RemoteAnticipated Start: Oct 2021Type: Full TimeExperience Level: ExperiencedQUALIFICATIONS:BS in a Computer Science discipline5+ years’ experience perf

More jobs by this company

Company OverviewTestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide range of Commercial and U.S. Federal, State, and Local Government customers. Our capabilities include Program Management,

Company OverviewTestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide range of Commercial and U.S. Federal, State, and Local Government customers. Our capabilities include Program Management,

Company OverviewTestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide range of Commercial and U.S. Federal, State, and Local Government customers. Our capabilities include Program Management,

Company OverviewTestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide range of Commercial and U.S. Federal, State, and Local Government customers. Our capabilities include Program Management,

Company OverviewTestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide range of Commercial and U.S. Federal, State, and Local Government customers. Our capabilities include Program Management,