Sr. Security Control Assessor - Information Assurance Analyst (Onsite) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Motus Recruiting and Staffing, Inc. · 18 hours ago

Sr. Security Control Assessor - Information Assurance Analyst (Onsite)

positionVancouver, WA
timeContract
remoteOnsite
senioritySenior Level
date6+ years exp

Motus Recruiting and Staffing, Inc. is seeking a Sr. Security Control Assessor – Information Assurance Analyst for their client, a leading Pacific Northwest utility provider. This role involves ensuring the agency’s information systems comply with federal security requirements through assessments and the implementation of security controls.

Human ResourcesInformation Technology

Responsibilities

Review and interpret cyber security and privacy policies & procedures, providing recommendations and action plans to the Manager and team leads
Analyze and report organizational and system security posture trends
Review and develop privacy impact assessments for information systems
Develop organizational level implementation details of NIST security and privacy controls for information systems
Coordinate and communicate with cyber security and privacy organizations on the organizational level implementation details of NIST security and privacy controls for information systems to achieve consensus
Communicate verbally and in writing organizational cyber security policies, procedures and implementation details of NIST security and privacy controls for information system owners
Liaison with information system owners, system security managers, information system security officers and others on the implementation details for the NIST cyber security and privacy controls
Review and develop role-based access control baselines for information systems in accordance with cyber security policies
Verify and update security documentation reflecting the application/system security design features
Review information system implementation details for NIST cyber security and privacy controls
Monitor and report on the implementation of approved Plan of Action and Milestones (POAMs) as they relate to individual information system security plan and risk assessment deficiencies
Document information system security implementation details in the cyber security assessment and remediation tracking system
Review and evaluate the infrastructure protection program, including policies, guidelines, tools, methods, and technologies
Review and provide recommendations to information system owners, system security managers, information system security officers on information system designs to align with applicable cyber security and privacy policies and principles
Coordinate with and support information system operational teams on the implementation of information system designs, configurations, role-based access control, monitoring and auditing to align and comply with applicable cyber security and privacy policies

Qualification

Cybersecurity principlesNIST control standardsSecurity Assessment processesNetwork security architectureTechnical writingConsensus buildingCommunication skills

Required

6 years of experience is required with an applicable bachelor's degree
8 years of experience is required with an applicable associate's degree
10 years of experience is required without a degree or an applicable degree
Experience must include direct work experience conducting assessments of compliance and operational and technical security controls employed within or inherited by an Information System to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system)
Knowledge of cyber security and privacy principles and organizational requirements relevant to FISMA and information system confidentiality, availability, and integrity
Knowledge of Security Assessment and Authority to Operate (ATO) processes
Demonstrated skill in the application of cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
Extensive Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption)
Advanced Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)
Demonstrated skill in developing and documenting information system designs
Demonstrated technical writing and communication skills
Demonstrated ability to build consensus across a wide group of stakeholders

Preferred

Bachelor's degree in computer science, information technology, cyber security, or a related technical field is highly preferred

Benefits

Employee benefits

Company

Motus Recruiting and Staffing, Inc.

twittertwitter
company-logo
Founded in 2006, Motus Recruiting is an award-winning firm in the Pacific Northwest specializing in accounting and finance, professional services, technology solutions, and executive search.
dateFounded in 2006
location
Tigard, Oregon, USA
people-size51-200 employees
web-link
http://motusrecruiting.com

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
Orlando Williams
Chief Executive Officer
linkedin

Recent News

LinkedIn
John Paschal Jr. on LinkedIn: Motus Recruiting and Staffing is proud to partner with Oregon State Bar in…
2024-04-07
Company data provided by crunchbase