IT Security Specialist/Assessor

About The Position

Requirements

• Strong knowledge of NIST standards and RMF, including application within federal environments
• Experience with DOC, NOAA, NWS, or similar federal agency security policies and standards
• 5+ years of recent experience (within the last 6 years) in: IT security concepts, methodologies, and tools Enterprise architecture principles and security integration Contingency planning and disaster recovery aligned with NIST guidance Security assessment and authorization (RMF) Use of security tools (e.g., Tenable, ArcSight, BigFix)
• Must hold at least one of the following certifications: CISSP CISA GSNA CEH CGRC (ISC2) SCNP or SCNA
• Ability to pass a NOAA background investigation
• Ability to work onsite one day per week

Nice To Haves

• Self-starter, highly motivated individual who adapts to a dynamic work environment
• Strong attention to detail with an ability to operate effectively across multiple priorities
• Proficiency in interview skills
• Proficiency in project and time management
• Ability to adjust to changing priorities
• Ability to work in a cohesive team-oriented environment

Responsibilities

• Analyze information security systems and applications
• Develop and recommend security controls to protect against unauthorized access, modification, or data loss
• Perform security assessments using the Risk Management Framework (RMF)
• Apply NIST guidance (Special Publications, FIPS) to system security and compliance efforts
• Support contingency planning, backup, and recovery processes
• Utilize industry-standard security tools (e.g., Tenable Security Center, ArcSight, IBM BigFix)
• Plan and execute complex security tasks with minimal oversight