Intermediate ISSO/Control Evaluator
About The Position
Intermediate ISSO/Control Evaluator Washington, D.C. Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you looking for a career where professional development is embedded in your employer’s core culture? If so, Chenega Military, Intelligence & Operations Support (MIOS) could be the place for you! Join our team of professionals who support large-scale government operations by leveraging cutting-edge technology and take your career to the next level! Chenega Systems (CS) provides federal agencies empowered solutions in Cybersecurity and Data Visualization. Our Subject Matter Experts offer decades of experience working in the federal marketplace and the data visualization environment. The Intermediate ISSO/Control Evaluator serves as the principal advisor to the information systems owners, business process owners, and Information System Security Manager (ISSM) on all matters, technical and otherwise, involving the security of an information system.
Requirements
- Bachelor’s in Computer Science, Information Technology, Cybersecurity, or a related discipline
- 5+ years of experience developing the required documents for the A&A, 5+ years of experience implementing NIST 800-53A security controls; 1 year of experience in data structures, data mining, business intelligence
- Must be a US citizen.
- Must be able to pass a Criminal and Financial Background Check prior to starting.
Nice To Haves
- ISC(2) CGRC, CompTIA CASP+ or similar level certification preferred
- 5+ years of experience in the public sector, preferably for a federal agency
- Knowledge, Skills, and Abilities:
- Experience in applying risk management techniques to develop and complete risk assessments based on NIST standards to ensure system design and implementation sufficiently addresses or mitigates IA risk.
- Experience in data structures, data mining, and business intelligence, with the ability to correlate data across multiple disparate sources, linking common data elements, and constructing informative visualizations.
- Knowledge of FISMA reporting requirements
Responsibilities
- Create, update, revise, and maintain cybersecurity and privacy documentation for each assigned system
- Provide security and privacy controls assessment and continuous monitoring assessment support for all systems
- Develop and sustain in-depth technical, operational, and working-level expertise about the systems and applications assigned
- Actively participate in change control processes
- Ensure systems are onboarded into the enterprise tools and reporting mechanisms
- Design, construct, automate, and maintain visualizations (dashboards) and the underlying data structures that reflect the status or effectiveness of controls, monitoring status, capabilities, or metrics
- Collect, compile, validate, and submit FISMA reporting metrics representing all systems, services, applications, and programs
- Support and facilitate internal and external audits of assigned FISMA systems
- Provide cybersecurity- and privacy-related awareness training content and development support
- Provide support for the integration of cybersecurity and privacy risks into the Enterprise Risk Management (ERM) function, to support FISMA requirements
- Other duties as assigned
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
101-250 employees
