Listing Description
Location: Washington, D.C/Hybrid
Category: Technology
Schedule (FT/PT): Full Time
Shift: Standard business hours, main working hours are on EST
Potential for Telework: Yes
Citizenship: US Citizen (non-dual citizenship)
The Third Party Information Security Assessor will support the contract by providing information security risk management duties including, but not limited to, vulnerability assessments, risk assessments, penetration testing, policy and program development, etc. This position will also assess and audit all cloud service offerings.
RESPONSIBILITIES
· Perform information security risk management to include, but not limited to, vulnerability assessments, risk assessments, penetration testing, policy and program development, training aids, etc.
· Provide dedicated, on-site support as required
· Conduct network scans to find vulnerability risks and assessments
· Monitor networks and systems for security breaches or intrusions
· Assess and audit cloud service offerings
· Engineer and analyze solutions for vulnerability and risk assessment to ensure solutions follow security standards and measures
· Review, analyze, and documenting the security requirements of CDS across their life cycles
· Periodically publish reports documenting this information.
· Other duties as related to the business functions of FWG Solutions, as assigned
REQUIREMENTS & QUALIFICATIONS
Education:
· Bachelor’s degree in Computer or Systems Science discipline
Licenses & Certifications:
· Ability to obtain/maintain a clearance
· ISC2 Certified Cloud Security Professional or comparable Cloud Security Certification, required
· ISC2 Certified Information Systems Security Professional (CISSP) and/pr ISC2 Certified Information Security Manager (CISM), preferred
· ISACA Certified Information Systems Auditor (CISA), preferred
· AWS Cloud Practitioner Certification, preferred
· AWS Certified Security-Specialty Certification, preferred
Experience:
· Required minimum of five + (5+) years of relevant progressive experience in cybersecurity
· Experience supporting federal IT organizations in accomplishing assessments and accreditations
· Experience with the Federal Assessment & Authorization Process
· Working knowledge and experience using Cybersecurity Asset Management (CSAM) or similar vulnerability management system, preferred
· Experience with Fed RAMP compliance and certification, required
· Knowledge and experience with zero trust architecture, preferred
Skills & Abilities:
· Excellent communications skill (written and oral) and interpersonal skills
· Superior organizational skills, attention to detail, and ability to prioritize and manage multiple tasks
· Must have the ability to interact with senior leaders within the organization
· Use of Microsoft Office software applications to include Word, Excel, and PowerPoint
Listing Details
- Citizenship: Not Provided
- Incentives: Not Provided
- Education: Not Provided
- Travel: Not Provided
- Telework: Not Provided