Security Control Assessor I
Modern Technology Solutions, Inc. (MTSI) · Los Angeles, CA · 3 days ago
Information Technology$150k–$170k/yrFull-time
Responsibilities
- Perform oversight of the development, implementation and evaluation of IS security program policy; special emphasis placed upon integration of existing SAP network infrastructure
- Assess ISs, based upon the Risk Management Framework (RMF) methodology in accordance with the Joint Special Access Program (SAP) Implementation Guide (JSIG)
- Advise the Information System Owner (ISO), Information Data Owner (IDO), Program Security Officer (PSO), and the Delegated and/or Authorizing Official (DAO/AO) on any assessment and authorization issues
- Evaluate Authorization packages and make recommendation to the AO and/or DAO for authorization
- Evaluate IS threats and vulnerabilities to determine whether additional safeguards are required
- Advise the Government concerning the impact levels for Confidentiality, Integrity, and Availability for the information on a system
- Ensure security assessments are completed and results documented and prepare the Security Assessment Report (SAR) for the Authorization boundary
- Initiate a Plan of Action and Milestones (POA&M) with identified weaknesses for each Authorization Boundaries assessed, based on findings and recommendations from the SARE
- Evaluate security assessment documentation and provide written recommendations for security authorization to the Government
- Discuss recommendation for authorization and submit the security authorization package to the AO/DAO
- Assess proposed changes to Authorization boundaries operating environment and mission needs to determine the continuation to operate
- Review and concur with all sanitization and clearing procedures in accordance with Government guidance and/or policy
- Absorb the Government compliance inspections
- Absorb security incidents that relate to cybersecurity and ensure that the proper and corrective measures have been taken
- Evaluate Hardware and Software to determine security impact that it might have on Authorization boundaries
- Evaluate the effectiveness and implementation of Continuous Monitoring Plans
- Represent the customer on inspection teams
- 5-7 years related experience
- Prior performance in roles such as System, Network Administrator or ISSO
- SAP Experience desired (3 years)
- Minimum of three (3) years’ experience in SAP, SCI or Collateral Information Systems (IS) Security and the implementation of regulations identified in the description of duties
- Prior performance in the role of ISSO and ISSM
- Education: Bachelor’s degree or equivalent experience (4 years)
- Certifications: Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level III or Information Assurance Manager Level I
- Security Clearance: Current Top Secret Clearance with SCI eligibility
- Eligibility: Willingness to submit to a Counterintelligence polygraph
- Experience in the field of Information Systems Security
- Knowledge of RMF methodology and JSIG
- Ability to advise and evaluate Authorization packages
- Experience in assessing IS threats and vulnerabilities
- Experience in preparing and reviewing Security Assessment Reports (SAR)
- Experience in evaluating and implementing Continuous Monitoring Plans
- Ability to represent the customer on inspection teams
- Full range of medical, financial, and other benefits
- Pay range for this position in California is $150,000/year to $170,000/year