Develops and/or updates Security Assessment & Authorization (SA&A) related documents for submission
Performs risk assessments and Security Control Assessment (SCA) processes which identify system/service provider threats, vulnerabilities, likelihood of occurrence, and potential impacts.
Acts as a subject-matter expert to multiple Information Assurance tasks and/or programs.
Develops System Security Plans (SSPs) for new systems and updates SSPs when new components or functions are added to an existing system.
Prepares and maintains POA&M‘s that identify system weaknesses, vulnerabilities and proposed mitigation activities, estimated costs to implement the recommendations, mitigation schedules based on the availability of resources required, points-of contact that are responsible for mitigation activities, and status of the mitigation/remediation activities..
Performs Security Controls Assessments (SCAs) and evaluation of the security controls for an information system conducted in accordance with current versions of NIST Special Publications (SP) for assessments and risk management.
Develop a summarization of the results of SCA activities in a Security Assessment Report (SAR) that shall be provided to the Program Manager.
Serves as a technical team or task lead.
May provide expertise to multiple projects and tasks.
Maintains current knowledge of relevant technology as assigned.
Participates in special projects as required.
1. Bachelors Degree in Computer Science, Engineering or a related technical discipline, or the equivalent combination of education, technical training, or work/military experience.
2. Masters degree preferred.
10-15 years of related Cyber Security and/or Information Assurance work activities.
8-10 years of Information Assurance experience
One or more of the following certification are required: CISSP, CEH, CISM.
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.