Position Description

A&A SME
Location Remote
Req # 14039
# of openings 1
Apply Now

ECS is seeking an A&A SME to work Remote.

 

Job Description:

  • Provide recommendations, guidance, planning, and implementation support for agency risk management activities and tools. 
  • Provide support as needed to enhance agency information security program related to governance, optimizations, automation, and supporting tools. 
  • Support operational responsibilities in complying with Federal, Department, and Agency mandates and policies that include agency policies, the Federal Information Security Modernization Act (FISMA), OMB Circular A-130, OMB Circular A-123, OMB Circular A-11, and any additional OMB guidance relevant to the scope of this task.  
  • Support agency privacy, security and FISMA risk management and compliance reporting requirements.
  • Develop/maintain a dashboard for agency leadership to provide constant view of risks to the agency ecosystem.
  • Provide risk management guidance to the agency components for A&A activities as required, ensuring continuous risk monitoring of information security control implementation effectiveness and required information security compliance requirements.
  • Review Authorization and Assessment Packages.
  • Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
  • Ensure that plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc.
  • Assure successful implementation and functionality of security requirements and appropriate information technology (IT) policies and procedures that are consistent with the organization's mission and goals.
  • Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs).

Salary Range: $100,000 - $115,000

 

Required Skills:

  • 4-year college degree (or equivalent exp).
  • 7 years of RMF, Security Assessment or relevant experience required.
  • Must have: CAP (or able to get it within 3 months).
  • Strong written and verbal communication skills.
  • Demonstrated ability to interact effectively with senior management and leadership.
  • Ability to guide the development of enterprise-specific implementation guidance for agency management. 
  • Familiarity with NIST Risk Management Framework at the subject matter expert level, particularly including SP 800-30, 37, 39, 53, and 53-A.
  • Knowledge of FedRAMP DHS and OMB compliance standards.

 

Desired Skills:

  • Certifications preferred: Security + (Plus) Continuing Education (CE) Certification, Certified Information Security Manger (CISM) or CISSP or Global Information Assurance Certification (GIAC) Security Leadership (GSLC).
  • Ability to analyze and interpret Federal legislation, directives, Office of Management and Budget (OMB) mandates, and guidance provided by the National Institute of Standards and Technology (NIST) against existing information security and privacy policy to identify required updates.
  • Ability to conduct research on new and emerging information technologies and develop comprehensive information security and privacy policy, standards/guidelines, and procedures to facilitate the implementation of information security and privacy controls.
  • Working knowledge of the Privacy Act of 1974 (as amended), the Federal Information Security Modernization Act (FISMA).

 

ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.

 

ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3800+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.

Back Apply Now

Accommodations

The ECS Career Center is accessible to any and all users. If you would like to contact us regarding the accessibility of this portal or you need assistance completing the application process, please contact Kristina Daniel, Recruiting Support and Analysis Lead, at 703-712-0701 or kristina.daniel@ecstech.com. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications.