Information Assurance Network Specialist

Provide support to customer on security testing methodologies and processes as well as conduct security assessment and authorization (SA&A) activities. The IA Specialist will provide the client with expertise and solutions to facilitate assessments and security related matters at the FDA. This person must have experience working with virtual teams and could work virtually on a schedule determined by the prime contractor Program Manager.           

Responsibilities (including but not limited to): 

• Develop and provide FISMA compliant system security authorization packages that contain documentation, reports, and test results that provide the Authorizing Official (AO) information and evidence for determining risks and decisions for system authorization
• Review System Security Plan (SSP), Business Impact Assessment (BIA), Information System Contingency Plan (ISCP)
• Advise government program managers on security testing methodologies and processes and Recommends information assurance/security solutions to support customers’ requirements
• Perform system analysis, system audits, system monitoring, security control assessment/testing (or ST&E), risk management, and incident response
• Evaluate certification documentation and provide written recommendations for accreditation to government PM’s
• Evaluate IT threats and vulnerabilities to determine whether additional safeguards are needed
• Conduct certification tests that include verification that the features and assurances required for each protection level are in place
• Conduct and coordinate IS security inspections, tests, and reviews
• Create Plan of Action and Milestones (POA&M) with identified weaknesses and suspense dates for each IS based on findings and recommendations from the SAR
• Conduct SA&A activities providing accurate, sufficient and timely information for direct hires to make risk-related decisions
• Conduct briefings to System Owner, Information System Security Officer, Authorizing Official and stakeholders
• Assist in the creation of SA&A packages with the responsibility for gathering information from system owners, applying data to the appropriate templates, and attending meetings in support of the effort
• Coordinate the quality-control activities required to ensure the accuracy and adequacy of each deliverable, including in-process and final reviews, editing for compliance with all applicable specifications and standards, validation, and change verification 

Essential Job Requirements:

• Education:
  • Bachelor’s degree
• Required Knowledge/Experience:

• Experience supporting cloud-based security authorizations (FedRamp and AWS)
• 3+ years of serving as an assessor, performing security assessments, managing tasks, and communication with key stakeholders, etc.
• Experience with NIST SP 800-53, 800-37, 800-115, and 800-30
• Experience and ability to create Security Assessment Plans, Security Assessment Reports, and Executive-level briefings
• Experience with vulnerability scanning tools (Nessus, McAfee, Client WebInspect, AppDetective, BurpSuite, Wireshark, etc)
• Computer security certification (Security +, CISSP, CCSP, CISM, GSLC, or CASP)

• Experience in preparing the final Security Assessment Report (SAR) containing the results and findings from the assessment
• Strong communication, soft and writing skills, along with technical knowledge are core to this position knowledge skills and abilities

• Must work well in team environment
• Ability to work under compressed deadlines and adapt to a client with changing requirements

Position Pay Range$100,000—$120,000 USD

About Copper River & The Native Village of Eyak:

Owned by the Native Village of Eyak (NVE), a federally recognized Alaska Native Tribe, the Copper River Family of Companies are a collection of entities that deliver a complementary set of solutions and services to support the diverse missions and requirements of our clients. Proud participants of the Small Business Administration’s (SBA) 8(a) Business Development Program since 2006, our companies consist of both current and graduation SBA 8(a) entities. It is our collective purpose to support the Tribe and diversify the NVE’s ability to facilitate economic advancement.

The income generated from our companies helps the Native Village of Eyak fund health and social services, economic development, natural resource/environmental education, jobs, job training, and other benefits to the NVE in a manner that is consistent with Alaskan Native cultural values and traditions.

Copper River’s Culture

The Copper River Family of Companies has a positive, supportive, and thriving culture. At the foundation of our culture is a focus on collaboration. No matter your role or which operating company you work for, we are ONE TEAM working toward the same goals for our customers and for our collective owner- The Native Village of Eyak. How we treat each other is just as important as the work we deliver.

Benefits

• Comprehensive medical, dental, and vision coverage
• Flexible Spending Account - healthcare and dependent care
• Health Savings Account - high deductible medical plan
• Retirement 401(k) with employer match
• Open leave policy and paid holidays
• Additional benefits including tuition reimbursement, transportation expense account, employee assistance program, and more! 

Note: These benefits are only applicable to full time, regular associates at Copper River.

 

Disclaimer:

The Copper River Family of Companies provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.