Apply on Employer Site

First Tek, Inc. · 21 hours ago

Security Control Assessor 3

Vancouver, WA

Full-time

Onsite

Senior Level

6+ years exp

First Tek, Inc. is a company specializing in cyber security and privacy solutions. They are seeking a Security Control Assessor 3 to review and interpret cyber security and privacy policies, develop implementation details of NIST security controls, and coordinate with various teams to ensure compliance and effective security measures.

Information TechnologyStaffing Agency

No H1B

U.S. Citizen Only

Responsibilities

Review and interpret cyber security and privacy policies & procedures, providing recommendations and action plans to the BPA Manager and team leads

Analyze and report organizational and system security posture trends

Alert the BPA Manager to any discovered or potential security posture trends

Review and develop privacy impact assessments for information systems

Develop organizational level implementation details of NIST security and privacy controls for information systems

Coordinate and communicate with cyber security and privacy organizations on the organizational level implementation details of NIST security and privacy controls for information systems to achieve consensus

Communicate verbally and in writing organizational cyber security policies, procedures and implementation details of NIST security and privacy controls for information system owners

Liaison with information system owners, system security managers, information system security officers and others on the implementation details for the NIST cyber security and privacy controls

Review and develop role-based access control baselines for information systems in accordance with cyber security policies

Verify and update security documentation reflecting the application/system security design features

Verify minimum security requirements are in place for all applications

Review information system implementation details for NIST cyber security and privacy controls

Provide recommendations and corrective actions to remediate deficiencies

Monitor and report on the implementation of approved Plan of Action and Milestones (POAMs) as they relate to individual information system security plan and risk assessment deficiencies

Document information system security implementation details in the cyber security assessment and remediation tracking system

Review and evaluate the BPA infrastructure protection program, including policies, guidelines, tools, methods, and technologies

Identify current and potential problem areas for individual information systems

Provide recommendations to remediate deficiencies and prevent future vulnerabilities

Review and provide recommendations to information system owners, system security managers, information system security officers on information system designs to align with applicable cyber security and privacy policies and principles

Coordinate with and support information system operational teams on the implementation of information system designs, configurations, role-based access control, monitoring and auditing to align and comply with applicable cyber security and privacy policies

Qualification

Cyber security principlesSecurity Assessment processesInformation system complianceNetwork security architectureTechnical writingConsensus buildingInformation Assurance experienceRS Archer experienceCommunication skills

Required

Bachelor's degree in computer science, information technology, cyber security, or a related technical field is highly preferred

6 years of experience is required with an applicable bachelor's degree

8 years of experience is required with an applicable associate's degree

10 years of experience is required without a degree or an applicable degree

Experience must include direct work experience conducting assessments of compliance and operational and technical security controls employed within or inherited by an Information System to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system)

Knowledge of cyber security and privacy principles and organizational requirements relevant to FISMA and information system confidentiality, availability, and integrity

Knowledge of Security Assessment and Authority to Operate (ATO) processes

Demonstrated skill in the application of cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)

Extensive Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption)

Advanced Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)

Demonstrated skill in developing and documenting information system designs

Demonstrated technical writing and communication skills

Demonstrated ability to build consensus across a wide group of stakeholders

Valid U.S. Driver's License is required

Preferred

Experience in the Information Assurance (IA) of information systems in the federal government

Experience with RS Archer

Company

First Tek, Inc.

To succeed in the complex world of technology, you need exceptional connections – to the right experts, the right opportunities and the right answers.

Founded in 2001

Piscataway, New Jersey, USA

1001-5000 employees

https://www.first-tek.com/

Funding

Current Stage

Late Stage

Leadership Team

Kumar Bhavanasi

Founder, President and CEO

Recent News

Reuters

US equities, tech growing in market dominance, Goldman strategists say

2024-05-04

PR Newswire

First Tech Reinforces Philanthropic Commitment, Contributing $3.6M to Nonprofits in 2023

2024-05-04

PRNewswire

Madison Street Capital Advised Cenergy International Services, Inc. on Its Sale to First Tek, Inc.

2024-04-23

Company data provided by crunchbase