DHS Security Control Assessor III

OneZero Solutions•Washington, DC

13d•Onsite

About The Position

OneZero Solutions is on contract to provide division-wide support for Federal Information Security Modernization Act (FISMA) compliance, execution of the Risk Management Framework (RMF) process to achieve and maintain Authority to Operate (ATO) security authorizations, and deliver cyber security compliance for DHS operational mission systems. We are looking for personnel to support our DHS customer in achieving its mission of providing division-wide cyber security support for operational mission systems and assisting programs as they navigate the ATO process. The result of these efforts will be that the systems meet all the requirements for ATO approval before they are officially submitted to the Office of Chief Information Officer (OCIO).

Requirements

10+ years of direct experience serving as a Security Control Assessor (SCA) within the DoD/Federal Government.
Demonstrated expertise in various security control frameworks and methodologies, including NIST SP 800-53, FISMA, RMF, DISA STIGs, and DHS supplemental IA controls.
Proficiency in conducting security assessments, utilizing tools and techniques for vulnerability scanning, penetration testing, and configuration review.
Strong understanding of information security principles and best practices, including network security, system security, encryption, and incident response.
Excellent analytical and problem-solving skills.
Exceptional written and verbal communication skills.
Ability to work independently and as part of a team.

Nice To Haves

Experience within the Intelligence Community and Law Enforcement is a strong plus.
Experience with OpenRMF is a strong plus.

Responsibilities

Conduct independent assessments of the management, operational, and technical security controls employed within various DHS systems and networks.
Evaluate the effectiveness of implemented controls in mitigating identified risks and protecting sensitive data and systems.
Identify and document control deficiencies, vulnerabilities, and non-compliance with security policies, regulations, and prescribed hardening guidelines.
Develop and present clear and concise findings and recommendations to stakeholders and decision-makers.
Support the implementation of corrective actions to address identified deficiencies and improve overall security posture.
Stay current with emerging security threats, vulnerabilities, and federal and industry best practices, standards, and policies for employed IT and its continued compliance within DHS.
Contribute to the development and continual refinement of internal security assessment methodologies and procedures.

Benefits

health/dental/vision/life insurance plans
401K with company matching
PTO & paid holidays
employee referral program
educational assistance
Qualified Parking Allowance: Employer may provide a monthly stipend or cover the cost of parking for employees who commute to government site by car.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume