Senior Cybersecurity Internal Controls Administrator (Information Assurance Engineer - Senior)
About The Position
CGI Federal is looking for a Senior Cybersecurity Internal Controls Administrator (Information Assurance Engineer - Senior) to help support a program we are working on for the Army's PL ALTESS contract. PL ALTESS, or Product Lead for Acquisition, Logistics, and Technology Enterprise Systems and Services, is a key U.S. Army organization providing IT services and support to the Army and Department of Defense. As a managed service provider, ALTESS delivers infrastructure, platform, and application services across data centers and commercial clouds. It plays a crucial role in modernizing IT systems by migrating them to the cloud and managing mission-critical applications to ensure Army readiness. ALTESS oversees IT service delivery across various hosting locations, aligning with Department of Defense digital transformation strategies as part of PEO Enterprise. This position is located in USA VA Radford -- USAVARAD1.
Requirements
- Cybersecurity Certification (such as CISSP/etc.)
- Active DoD Secret Security Clearance.
- 10 or more years' experience with Cybersecurity and RMF related areas
- Extensive experience with Enterprise eMASS and RMF services.
- Proficiency in developing RMF packages and maintaining asset lists and categorizations.
- Ability to schedule and coordinate system validation reviews.
- Experience generating artifacts to support control compliance.
- Knowledge of ACAS and STIG reports and coordinating remediation efforts.
- Experience creating, tracking, and maintaining Plan of Action Milestones (POA&M).
- Ability to perform annual security reviews.
- Participation in Continuity of Operations (COOP) and Incident Response testing.
- Ability to maintain Army PPSM and Circuit Registry records.
- Participation in SW Assurance reviews and documenting items via eMASS POA&M.
- Experience with security compliance and control documentation.
Nice To Haves
- Bachelor's degree in Computer Science or equivalent years of experience.
- Familiarity with DoDI 8500.01, DoDI 8510.01, and AR 25-2.
- Strong analytical and problem-solving skills.
- Excellent communication and coordination skills.
- Experience with Army enterprise monitoring tools and practices.
- Knowledge of security regulations and best industry practices.
- Ability to work effectively in a team environment and collaborate with various stakeholders.
- Experience with incident response activities.
- Understanding of Continuity of Operations Plans and Communication Plans
Responsibilities
- Provide comprehensive support in accordance with DoDI 8500.01, DoDI 8510.01, and AR 25-2.
- Provide Enterprise eMASS and RMF services, including developing RMF packages, maintaining asset lists and categorizations, and scheduling and coordinating system validation reviews.
- Generate artifacts to support control compliance, review ACAS and STIG reports, and coordinate remediation efforts.
- Create, track, and maintain Plan of Action Milestones (POA&M), performing annual security reviews, participating in Continuity of Operations (COOP) and Incident Response testing, and maintaining Army PPSM and Circuit Registry records.
- Participate in SW Assurance reviews to ensure ongoing items are appropriately documented via eMASS POA&M.
Benefits
- Competitive compensation
- Comprehensive insurance options
- Matching contributions through the 401(k) plan and the share purchase plan
- Paid time off for vacation, holidays, and sick time
- Paid parental leave
- Learning opportunities and tuition assistance
- Wellness and Well-being programs
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Industry
Professional, Scientific, and Technical Services
Number of Employees
5,001-10,000 employees
