Information Assurance/Security Audit Specialist

Employer
Digital Global Connectors
Location
Rockville, MD
Posted
Apr 20, 2017
Closes
Apr 21, 2017
Industry
Security
Hours
Full Time
General Info: Citizenship Required: US Citizenship Clearance: Public Trust Type of Business: Awarded & Funded (5 Year Support IDIQ Contract) Site: Washington DC Metro Area (Rockville, MD) Travel: 5% or Less Responsibilities: . Assist in responding to requests for information from OMB A-123, FISMA, GAO, and external auditors. Follow Agency procedures to gather and track information . Provide support for Agency's audit related weaknesses to include reporting, tracking and oversight that is aligned with Federal, Department, and Agency policy. Track and report remedial actions (POA&Ms) on a quarterly basis . Provide a monthly status update of all current audits . Schedule/attend meetings with Agency subject matter experts (SMEs) and auditors . Monitor 72 hour timeline (3 business days) for data calls and escalate issues as necessary . Provide responses to data calls and all audit requests by due dates . Send final responses to data calls and audit requests to Agency R&C Lead for review and approval . Maintain tracking reports and central repository of data call artifacts . Prepare the Quarterly FISMA Report and ensure reports are accurate and submitted by due dates (includes sending and monitoring data calls) . Manage the Security Audit email account . Provide recommendations and strategies to reduce or resolve existing audit findings . Support records management activities for the ISSS Program . Develop NIST / FISMA SA&A documentation for systems and networks undergoing certification and validate the quality of deliverables produced by the team . Assess risks, identify mitigation requirements and develop accreditation recommendations; be responsible for tracking SA&A requirements for assigned systems within the agency and validate that tasks are on schedule, and ensure the delivery of quality documentation . Demonstrated ability to review and edit draft security artifacts as assigned to ensure compliance with SA&A, and FISMA . Determines enterprise information assurance and security standards . Coordinates, develops, and evaluates security programs for an organization. Recommends information assurance/security solutions to support customers' requirements . Identifies, reports, and resolves security violations . Establishes and satisfies information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands Education and Experience Required: . Knowledge and experience with NIST Risk Management Framework required . Excellent organizational skills and strong attention to detail . Ability to prioritize duties based on shifting demands . Strong analytical and problem-solving skills . Excellent verbal and written communication skills . 5+ years of working experience in security related field . Security +, SANS, ISC2, or other relevant certification . Experience and Competency with: o Trusted Agent FISMA (TAF) o Tenable Security Center o Strong understanding and demonstrated experience applying a risk-based approach to information security and IT assessments . Ability to work in a fast-paced, demanding environment Desirable: . College degree in Information Security or relevant field. . CISA certification Company Description: Digital Global Connectors is a global provider of cyber security services and technologies that are focused on identifying and mitigating cyber security threats and targeted attacks. Cyber security consulting, engineering, and technology solutions company. Comprehensive experience with Federal Government and Commercial clients A Veteran-owned small business founded in 2012 Security cleared personnel