Information Security Risk Specialist

About The Position

Requirements

• 3+ years of experience working in cybersecurity
• Experience with the Risk Management Framework and developing policies, procedures, and standard operating procedures
• Knowledge of Microsoft
• Ability to identify security requirements for connected and nonconnected systems and unclassified and classified systems
• Secret clearance
• Bachelor’s degree
• Security+ Certification
• DoD 8570 IAT or IAM Level II Certification

Nice To Haves

• Experience as an operating system administrator, systems engineer, requirements analyst, ISSO, or ISSE
• Experience with Microsoft Office products, including Word, Excel, PowerPoint, or Visio
• Experience with Enterprise Mission Assurance Support Service (eMASS), Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP), Assured Compliance Assessment Solution (ACAS), Ports, Protocols and Services Matrix, Vulnerability Remediation Asset Manager (VRAM), and Host Based Security System (HBSS)
• Ability to create tactics, techniques, procedures, white papers, standard operating procedures, work flows, system data flows and architectural diagrams, and RMF policies
• Master’s degree
• CISSP, CISM, or CCSP Certification

Responsibilities

• Work with the DoD to discover their cyber risks, understand applicable policies, and develop a mitigation plan.
• Review technical, environmental, and personnel details from SMEs, engineers, and program managers to assess the entire threat landscape.
• Guide your client through a plan of action with presentations, white papers, and milestones.
• Work with your client to translate security concepts so they can make the best decisions to secure their mission-critical systems or critical infrastructure.

Benefits

• health, life, disability, financial, and retirement benefits
• paid leave
• professional development
• tuition assistance
• work-life programs
• dependent care
• recognition awards program