Data Automation - Concierge Information Security Risk Specialist

Washington, DC
Jan 28, 2022
Jan 30, 2022
IT, Security Engineer
Full Time
About Us:VetCentric is focused on delivering outstanding services to the federal government. We have extensive experience in the fields of cyber security, supply chain & logistics management, strategy, business analytics, and IT services such as system design, continuous improvement, virtualization, and data center management. VetCentric is an SBA certified HUBZone company and VA CVE certified Service-Disabled Veteran Owned Small Business (SDVOSB). We operate in 15 states with offices in Washington DC and Northern Virginia.Perks Working with Us:Competitive compensationComprehensive health, vision, dental benefits15 days leave and 10 days of paid Federal Holidays401(k) with matching planAnnual training budgetFantastic company cultureLocation(s): Anywhere, US. Candidates from HUBZones (preferred.Employment Eligibility: Eligible to work for any employer in the United States without requiring sponsorship. Sponsorship is not available currently.Position Title: Concierge Information Security Risk Specialist (TA/SA)As an information security risk specialist on our team, you'll use your experience to work with VA to discover their cyber risks, understand applicable policies, and develop a mitigation plan. You'll review technical, environmental, and personnel details to assess the entire threat landscape. Then, you'll guide your client through a plan of action with presentations, white papers, and milestones. You'll work with your client to translate security concepts, so they can make the best decisions to secure their mission critical systems, critical infrastructure, etc. This is your opportunity to act as an information security subject matter expert while broadening your skills in Risk Management Framework and NIST Security and Privacy controls. Join us as we protect the VA systems and data and provide a safer cyber environment for veteran's healthcare. This position is open to remote delivery anywhere within the US, to include the District of Columbia.You Have:Experience with NIST special publications, specifically RMF and NIST security controls and their requirements.Experienced in information security and assurance principles, and in reviewing security requirements and recommending a mitigation strategy for deficiencies.Experience with GRC (Governance risk compliance) tools such as: eMASS or RiskVision with system documentation and reporting and performing risk analysis and vulnerability assessmentsExperience with performing annual security reviews in accordance with FISMA reportingExperience working directly with clients to provide solutions and educationAbility to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirementsNice If You Have:Experience utilizing data analytical tools like MS ExcelExperience with VAAbility to provide excellent customer service and organization skillsAbility to provide excellent verbal and written communication skillsAbility to work flexibly in a very fast-paced environmentPreferred certifications: CAP, CISSP, CISM, PMP, CCSKPublic Trust clearance