Tech Stack

Description

You will apply information security controls, review security authorization documentation, develop test plans, analyze vulnerability scans, and track Plan of Actions and Milestones. You'll support DoD Oracle Cloud Infrastructure migration efforts and work independently on project tasks.

Requirements

• 3+ years of working knowledge and experience with Federal security frameworks (FedRAMP, FISMA, Zero Trust Maturity Model, RMF, NIST SP 800 series and NIST SP 800-53)
• GRC tools experience (e.g. XACTA, ArchAngel, eMASS, CSAM)
• Experience with ACAS scans and mitigation and management of vulnerabilities
• Ability to identify potential threats and create action plans using best practice
• Experience with NIST RMF and security controls
• Interim or Active Secret clearance required
• Bachelor’s Degree or equivalent experience

Responsibilities

• Apply appropriate information security controls in accordance with system categorization
• Review and update security authorization documentation/artifacts in accordance with federal mandates and client policies
• Develop test plans and assessment reports in support of system authorization assessments
• Analyze vulnerability compliance scan results to interpret risks to the client technology landscape
• Track Plan of Actions and Milestones to closure
• Support DoD Oracle Cloud Infrastructure (OCI) migration effort
• Work independently on projects tasks