IT Security Control Assessor
About The Position
At Accenture Federal Services, our purpose is to help the US federal government make the nation stronger and safer, and improve people's lives. Our 13,000+ employees are dedicated to leveraging technology and ingenuity for clients across defense, national security, public safety, civilian, and military health organizations. Join Accenture Federal Services, a technology company within the global Accenture network. We are recognized as a Glassdoor Top 100 Best Place to Work, offering a supportive community where you can grow, learn, and thrive through hands-on experience, certifications, and industry training. We drive positive, lasting change to advance missions and the government forward. As a Risk Management Framework (RMF) Information Systems Security Engineer (ISSE)/ Information Systems Security Officer (ISSO), you will be responsible for overseeing the security posture of complex information systems and ensuring compliance with the Risk Management Framework (RMF).
Requirements
- Hands-on experience with host and network access controls
- Hands-on experience with incident response and handling methodologies
- Deep understanding of network protocols and the latest system and application security threats
- Familiarity with tools and processes related to system monitoring, vulnerability management, and security auditing
- Strong communication skills to articulate security risks and recommendations to technical and non-technical stakeholders
- Experience with risk assessment and conducting security testing
- Hands-on experience applying the Risk Management Framework (RMF)
- Familiarity with incident response and handling methodologies
- Awareness of system and application security threats and vulnerabilities
- Experience developing and maintaining security documentation, including any of these: System Security Plans (SSP), Plan of Actions and Milestones (POA&M), Security Control Traceability Matrix (SCTM), Risk Assessment Reports, Concept of Operations (CONOPS), Security Control Assessment Plans
- Requires one of the following 8140 Advanced certifications: Certified Chief Information Security Officer (CCISO), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), CompTIA Cybersecurity Analyst (CySA+), GIAC Security Leadership Certification (GSLC), GIAC Systems and Network Auditor (GSNA), Information Systems Security Engineering Professional (ISSEP)
- An active TS/SCI is required
Nice To Haves
- Knowledge of network protocols
- Knowledge of secure system architecture and system monitoring
- Strong security control analysis skills
- Experience conducting system audits
- Understanding of host and network access controls
Responsibilities
- Conducting thorough risk assessments
- Performing security testing
- Analyzing security controls to identify and mitigate vulnerabilities
- Developing and maintaining critical documentation such as System Security Plans (SSP), Plans of Action and Milestones (POA&M), Security Control Traceability Matrices (SCTM), Risk Assessment Reports, Concepts of Operations (CONOPS), and Security Control Assessment Plans
- Monitoring systems for security events
- Conducting regular audits
- Providing recommendations for secure system architecture
Benefits
- Accenture Federal Services offers a wide variety of benefits.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
