Information Security Compliance Specialist
Tactibit Technologies · Suitland, MD · 19 mo ago
Information TechnologyFull-time
About the role
Tactibit Technologies supports critical government projects including satellite operations, critical infrastructure, and search and rescue. This position is located at a government facility in Suitland, MD, and is eligible for a flexible work arrangement.
Responsibilities
- Provide overall cybersecurity program support to the Information System Security Officer (ISSO) and System Owner (SO)
- Provide security documentation support including documenting the implementation details of security controls in System Security Plans
- Identify and recommend technical or policy changes to improve security
- Plan, coordinate, and review technical artifacts to demonstrate the effectiveness of security controls
- Support security control assessments, penetration tests, and similar testing efforts by coordinating with stakeholders, communicating project plans, and providing guidance to technical and non-technical staff
- Write and maintain core security documentation including System Security Plans and Contingency Plans
- Plan, manage, and oversee Plans of Actions and Milestones (POA&Ms)
- Cookordinate security efforts and improvements with stakeholders including system administrators and operations teams
- Monitor and report on vulnerability management program effectiveness including vulnerability scanning and patch management
- Cookordinate responses to data calls, audits, and other external requests
- Cookordinate security assessment efforts including Security Controls Assessments (SCAs), penetration testing, and risk assessments
- Plan, manage, and coordinate annual system assessment and authorization activities, to include continuous monitoring
Requirements
- 3+ years of cybersecurity experience
- Experience with Federal government environments and concepts including NIST Risk Management Framework, NIST SP 800-53 security controls, and DISA Security Technical Implementation Guides (STIGs)
- Strong problem solving skills and ability to work under pressure
- Strong written and verbal communication skills
- Ability to understand and explain complex security concepts and requirements to a variety of technical and non-technical personnel
- BS degree in Computer Science, Cybersecurity, or other related area
- Must be a US Citizen and eligible to obtain a security clearance
- Experience with government security assessment and management tools such as CSAM
- Experience with the NIST Risk Management Framework
- Experience with issue tracking and configuration management systems and processes
- Industry certifications such as CISSP, GIAC certifications, Security+, and others
- Experience with vulnerability management tools including Tenable Nessus
- Experience with continuous monitoring and log management tools including ArcSight, BigFix, ePolicy Orchestrator, and similar tools
Qualifications
- Active Secret security clearance
Skills
- Knowledge of cybersecurity principles and practices
- Experience with security compliance and documentation
- Technical writing and editing skills
- Collaborative and teamwork skills
- Attention to detail and strong organizational skills
Benefits
- Flexible work arrangements
Pay
- Competitive salary commensurate with experience
Schedule
- Full-time