This job board retrieves part of its jobs from: Toronto Jobs | Emplois Montréal | IT Jobs Canada

The exclusive website bringing you daily job offers!

To post a job, login or create an account |  Post a Job

Cyber Security Risk Assessor with Security Clearance

Apex Systems

This is a Contract position in Fort Bragg, NC posted October 23, 2021.

What You’ll Get to Do: Manages, maintains and reviews Certifications and Accreditation documents for supported Automated Information Systems to ensure compliance with DoD and Intelligence Community Risk Management Framework (RMF) standards. Maintains comprehensive knowledge of DoD and other associated directives that govern DoD RMF and Intelligence Directive 503. Conducts security reviews, scans, evaluations and risk assessments to identify security risks and impact of potential Cyber vulnerabilities. Evaluates security procedures to implement and ensures potential users are aware of and comply with command Cyber Security policies and procedures to generate and maintain required documentation for supported information systems to include the System Security Plan, the Risk Assessment, the Plan of Action and Milestones and the Authority to Operation (Operate) or to Connect. Ability to identify systemic security issues based on the analysis of vulnerability and configuration data
Reconcile customer requirements within acceptable risks determined by DOD policies, command policies and generally accepted practices. Make recommendations for tools and processes to improve CS initiatives.
Knowledge of Risk Management Framework (RMF) requirements
Respond to daily inquiries via email, phone, or in-person from organization members
Demonstrate appropriate discretion when handling classified/sensitive information
Skill in conducting vulnerability scans and recognizing vulnerabilities in security systems
Knowledge of new and emerging information technology (IT) and information security technologies
Knowledge of system lifecycle management principles, including software security and usability
Conduct continuous analysis to identify network and system vulnerabilities
Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code)
Prepare audit reports that identify technical and procedural findings, and provide recommended remediation strategies/solutions
Knowledge of server administration and systems engineering theories, concepts, and methods
Administer, operate, and maintain multiple vulnerability management servers/applications and RMF web database tool
Required: A DOD Top Secret Security Clearance with DCID 6/4 eligibility
Current DOD 8570 IAT Level II certification
5 years’ experience in Cybersecurity (Information Assurance) compliance and vulnerability testing
Experience with COTS/GOTS/DOD CS Tools for security analysis and network scanning
Vulnerability tool administration and execution
Proficient with MS Office products
Exceptional organizational, presentation and communication skills (verbal and written)
Excellent listening and comprehension skills. Ability to extract and clearly articulate key concepts and requirements from verbal discussions, documentation and transcripts
Familiar with handling and marking of classified information
Familiarity with Security policies governing the storage of, access to, and transmittal, of classified information
Must be self-starter, self-managed, responsive and dedicated, with a proven track record of exceptional performance, high productivity and meeting deadlines
Must have customer service and team player skills
Must maintain high levels of initiative and think outside the box
Able to develop innovative methods to solve challenging problems with available manpower and tools
Flexible, able to maintain a positive attitude in a fast-paced constantly changing environment
Ability to work cooperatively and proactively with personnel at various levels within the organization
Desired: Military background and experience with SOF
Application security
Software programming experience
Current DOD 8570 IAT III certification
B.S. or M.S. in Computer Science, Information Security, Mathematics, or IT related field