Specialist, Information System Security III
Philadelphia, PA, US
ORBIS Inc
Job Description:
This position support US Navy ships and ship systems. The following are the position responsibilities:
- Support cybersecurity efforts and development of Risk Management Framework (RMF) packages for shipboard and landbased systems.
- Support tasking related to this includes Information Assurance Vulnerability Management (IAVM) of Zone D, non-shipboard, Information Technology (IT) systems, providing Assured Compliance Assessment Solution (ACAS) scanning, implement Security Technical Implementation Guide (STIG) configuration recommendations, conduct Security Content Automation Protocol (SCAP) scanning and implement Security Requirement Guides (SRG) results.
- Support tasking includes development of the artifacts (policies and procedures) that support compliance of 18 NIST Security Control Families such as: Information System Continuous Monitoring Plan (ISCM); Configuration Management Plan (update IAW NIST CM Security Controls); Security Design Document (details security attributes, security architecture, risk-based processes); Memorandums of Agreement (MOAs); Technical Manuals (Update IAW applicable NIST security controls); Program Protection Plan (Update if applicable); Security Assessment Plan (SAP); Security Assessment Report (SAR); Platform IT (PIT) determination; and Standard Operating Procedures (SOPs)
- Support development, security, and operations for shipboard and land based auxiliary and fluid control systems.
- Support designing and developing organizational information systems or upgrading legacy systems, employing best practices when implementing security controls within an auxiliary and fluid control system including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques
- Review and validate RMF packages for Authority to operate or assess only approvals. Contractor shall abide by the Navy Certification Agent Qualification standards and registration guidebook when performing validation activities.
Required Skills and/or Experience:
- Target Experience: Greater than five (5)* years practical experience in a Cybersecurity, Engineering, T&E or A&A (formerly C&A) related field.
- Have worked with Information Assurance tools such as DISA Enterprise Mission Assurance Support Service (eMASS), Assured Compliance Assessment Solution (ACAS) and may be required to hold a Full Security Control Assessor qualification. [ *Without college degree, greater than seven (7) years required.]
Degree Requirements:
- Target Education: College degree in a technical or managerial related discipline
- A high school diploma or HS equivalency certificate is acceptable with additional years of experience
- Must be a US Citizen
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Tags: ACAS Automation C Compliance DISA eMASS Monitoring NIST Risk management RMF SAP SCAP Security assessment Security Assessment Report Vulnerability management
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Security Operations Engineer jobsInformation Security Specialist jobsSenior Cybersecurity Engineer jobsInformation Security Officer jobsInformation Systems Security Officer jobsSenior Cyber Security Engineer jobsInformation System Security Officer jobsSenior Network Security Engineer jobsSecurity Consultant jobsPrincipal Security Engineer jobsSenior Penetration Tester jobsCloud Security Architect jobsIT Security Engineer jobsChief Information Security Officer jobsSenior Information Security Analyst jobsCyber Security Specialist jobsStaff Security Engineer jobsSecurity Specialist jobsCybersecurity Consultant jobsCyber Security Architect jobsThreat Intelligence Analyst jobsSecurity Operations Analyst jobsInformation System Security Officer (ISSO) jobsSenior Product Security Engineer jobsIT Security Analyst jobs
Encryption jobsSaaS jobsRMF jobsSDLC jobsMalware jobsGDPR jobsIPS jobsSQL jobsEDR jobsIDS jobsForensics jobsSplunk jobsTop Secret jobsDoDD 8570 jobsITIL jobsBash jobsFinance jobsOWASP jobsCompTIA jobsUNIX jobsIntrusion detection jobsCRISC jobsTerraform jobsTCP/IP jobsDocker jobs
SANS jobsPolygraph jobsData Analytics jobsGIAC jobsThreat detection jobsActive Directory jobsBanking jobsClearance Required jobsCCSP jobsVPN jobsOSCP jobsSOAR jobsAnsible jobsDNS jobsJira jobsGCIH jobsJavaScript jobsIT infrastructure jobsSOX jobsArtificial Intelligence jobsSOC 2 jobsSecurity strategy jobsSAP jobsCISO jobsOracle jobs