Security Control Assessor - SME with Security Clearance
Kingfisher Systems, Inc. specializes in providing a full range of Information Technology, Cybersecurity, Intelligence, and support services to the US Government. Kingfisher Systems' core competency is technology-enabled services, with a specific focus on national security. Since 2005, Kingfisher has established itself as a recognized and trusted mission partner whose mission is safeguarding sensitive information, operations, and programs for our Federal customers and warfighters. Position Description: Kingfisher seeks an exceptionally qualified SCA SME to join a very successful team supporting the DOD at our Metro Park location in Franconia, VA. A successful candidate will possess a wide array of experience with Information Assurance /Information Management and Technology to include use and securing of operating systems, network infrastructure, software applications, web servers, and databases. The successful candidate must have experience with Authorization and Assessment of systems: * As DoDIIS Certifier, the contractor must possess knowledge of Information Assurance regulations and instructions for the Department of Defense and the Intelligence Community to include the DOD 8510.01, ICD 503, AR 25-2, CNSSI 1253, NIST 800 Series, among others. * Working Knowledge of Linux, UNIX, Windows, Virtual Machine, Networking, Database, Cloud Technologies. * Audits networks and systems for vulnerabilities using Security Technical Implementation Guides (STIGs), ACAS/Nessus vulnerability scanner, and DISA SCAP to determine, analyze and mitigate findings for technologies listed above. * Executes Risk Management Framework to ascertain information systems' security posture utilizing IA control validation activities and coordinated security testing. * Reviews, analyzes, system security packages (ie, SSP, SRTM, risk assessment, hardware and software lists, network diagrams, data flows, system change proposals, Nessus scans, test reports, POA&M), configuration management and continuity plans. Develops, updates, maintains, and recommends authorization decision documentation based upon review and analysis of system packages for multiple networks at different levels of classification. * Manages the system accreditation packages for each assigned information system and provides recommendations for their authorization. Position Requirements: The successful candidate analyst joining our very successful team will have experience and requirements meeting expectations below: * Must have experience building and/or managing security authorization packages through the authorization process (DCID 6/3, DIACAP, RMF). * Shall possess a wide array of experience with Information Assurance /Information Management and Technology to include use and securing of: Operating systems, network infrastructure, software applications, databases, and web servers, both physical and virtual. Required qualifications: IAM Level III Certification (ie CCISO, GSLC, CISSP or CISM) Security Clearance: **Candidates must have an active TS/SCI Eligibility ** Kingfisher Systems, Inc. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, among other things, or status as a qualified individual with a disability.