Назад
Company hidden
2 дня назад

Senior Security Specialist (Cybersecurity)

Формат работы
onsite
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Senior Security Specialist (Cybersecurity): Managing security accreditation and risk assessments for high-priority federal projects with an accent on multi-cloud and on-premise environments. Focus on developing SA&A packages, maintaining ATOs, and improving the security posture of Forensic and Investigative Labs.

Location: On-site in Washington, DC

Company

A US-owned leader in solving complex technical challenges for the U.S. Federal Intelligence Community through advanced software and systems engineering.

What you will do

  • Perform internal audits and build streamlined risk assessment processes for the agency.
  • Manage security accreditation boundaries across multi-cloud (Azure, AWS, OCI) and on-premise environments.
  • Develop and maintain Security Assessment & Authorization (SA&A) packages to achieve Authority to Operate (ATO).
  • Create System Security Plans (SSPs), Contingency Plans, and Incident Response Plans.
  • Analyze vulnerability scan data and provide remediation recommendations to improve the security posture of IT systems.
  • Coordinate and train personnel on Incident Response and Contingency Plans.

Requirements

  • Must be based in Washington, DC (On-site).
  • 6+ years of experience with NIST, FISMA, and Security Assessment & Authorization.
  • CISSP certification required.
  • In-depth knowledge of the Risk Management Framework (RMF) and NIST publications (e.g., SP 800-53r5).
  • Experience with FedRAMP and Cloud platforms (Azure, AWS, or Oracle).
  • Ability to obtain and maintain a customer Public Trust clearance.

Nice to have

  • Hands-on experience with GRC tools such as JCAM (CSAM) or eMASS.
  • Experience with vulnerability management tools (Nessus) and configuration tools (BigFix, SCCM, ePO).
  • Ability to provide C-Level presentation and reporting.
  • Experience conducting gap analysis on SOC Type 2 or HIPAA reports.
  • Proficiency in data analysis tools like Microsoft Excel or PowerBI.

Culture & Benefits

  • Comprehensive medical, dental, and vision insurance for employees and dependents.
  • 401k plan with generous match and 100% immediate vesting.
  • 100% company-paid long-term and short-term disability insurance.
  • Tuition and training reimbursement.
  • Generous paid leave and holiday package.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →