3 security jobs hiring in herndon va Jobs in herndon, va
SORT BY
S
G
A
Onsite Work - Need Security Analyst in Herndon VA
$90k-110k (estimate)
Full Time
4 Days Ago
Steneral Consulting is Hiring an Onsite Work - Need Security Analyst in Herndon VA Near Herndon, VA
Please send me resumes for candidates who can support the tasks outlined below. Please provide only your best 2 candidates that best fits the role.Position Summary –Security Analyst (Mid-Level)This role serves as a “hands-on” mid-level security analyst who will be responsible for interfacing with the security engineering, operations, architecture and build teams, assisting with the development and/or maintenance of various System Security Plans (SSP) and associated documentation for multiple environments, gathering the security control implementations information for the security controls and documenting their implementation in the SSP, as well as updating associated security documentation as needed (i.e., plans, procedures, processes). Additionally, this role will assist with the security assessments (i.e. IRS specific security control implementation, FedRAMP, FISMA, HIPPA, SOC, PCI, ISO, etc.), to include supporting collection of evidence.
The Security Analyst will be responsible for maintenance of the security documentation for various environments; but concentrating on the SAP HANA Cloud tenants and IRS customer. This position may include development of the security documentation, use of RegScale, assisting with the IRS, FedRAMP, SOC or FISMA authorization/assessment processes to include prep of the operations team, and documentation summary and update as required. This role serves as a mid level security analyst who assists with the security documentation and can provide thoughtful recommendations on processes and procedures, as well as implementation of security controls. This role must communicate between security, architecture, engineering, development and operations teams as required, and be able to interpret and document the results of data gathering. Key deliverables for success will be participation and/or facilitation of assessments, development and maintenance of security documentation that is current and useful, ensuring processes and procedures are current and up to date, and assists with assurance that all appropriate IRS and other framework security controls are successfully implemented and associated security documentation is developed and implemented.
This position will also assist with various assessments, as a team member, or as a lead. This will include scheduling of the interviews, collection of evidence, working with third party assessors in tracking evidence, update of security documentation in preparation of the assessment, and other duties as assigned. Customer interaction is also required with clear and concise oral / written responses.
The main customer for this position with be IRS.
General Responsibilites
The Security Analyst will be responsible for maintenance of the security documentation for various environments; but concentrating on the SAP HANA Cloud tenants and IRS customer. This position may include development of the security documentation, use of RegScale, assisting with the IRS, FedRAMP, SOC or FISMA authorization/assessment processes to include prep of the operations team, and documentation summary and update as required. This role serves as a mid level security analyst who assists with the security documentation and can provide thoughtful recommendations on processes and procedures, as well as implementation of security controls. This role must communicate between security, architecture, engineering, development and operations teams as required, and be able to interpret and document the results of data gathering. Key deliverables for success will be participation and/or facilitation of assessments, development and maintenance of security documentation that is current and useful, ensuring processes and procedures are current and up to date, and assists with assurance that all appropriate IRS and other framework security controls are successfully implemented and associated security documentation is developed and implemented.
This position will also assist with various assessments, as a team member, or as a lead. This will include scheduling of the interviews, collection of evidence, working with third party assessors in tracking evidence, update of security documentation in preparation of the assessment, and other duties as assigned. Customer interaction is also required with clear and concise oral / written responses.
The main customer for this position with be IRS.
General Responsibilites
- Gather information, architecture diagrams and implementation of the security controls through interfacing with the security engineering, operations and build teams
- Develop security documentation such as, but not limited to, System Security Plans (SSP), security plans, procedures, and processes
- Maintain, via review and update, of all security documentation
- Understand the intent of the IRS and FedRAMP security controls, FISMA security controls and communicate as needed
- Assist with the FedRAMP, FISMA, PCI, ISO, SOC, etc authorization to include, but not limited to, prep of operations team through training and mock interviews, update documentation as required, and support FedRAMP PMO/ Agency / CISO requests
- Bachelor’s Degree in Computer Science / MIS / Information Technology, or equivalent experience in Information Security, Information Technology, or related technical discipline
- Minimum 7 years Information Technology experience
- Experience with Cloud technologies, especially AWS, Azure, and/or Goggle Cloud, desirable
- Experience with FedRAMP and/or other authorization processes and NIST risk management framework
- Experience in developing, evaluating, and implementing information security architectures, technologies, standards, and practices to secure applications and IT systems, desirable
- Experience in development of security documentation such as SSP, policies, procedures, etc.
- Flexible, self-motivated, and able to work independently in a fast paced environment
- Excellent communication skills and the proven ability to work effectively with all levels of IT and business management.
- Familiarity with Testing, Development, Staging, and pre-production environment requiring cyber security support.
- Knowledge of Privacy Act, GDPR, and other data privacy frameworks.
- Experience in writing or executing system security documentation, authorization to operate packages, POA&Ms, and policies.
- Experience in reviewing/editing/writing technical documents
- Skill in preparing and making written and oral presentations of complex technical nature.
- Demonstrated ability to coordinate multiple tasks
- U.S. Person
- Professional industry certifications in area of expertise.
- Knowledge of Best Practice and security guides (ex. NIST 800-53 rev 4, NIST 800-53, FedRAMP)
- Knowledge of security frameworks to include RMF, ISO, HIPAA, FedRAMP and HIPAA
- ISC CISSP or ISACA CISM or equivalent certification
Job Summary
JOB TYPE
Full Time
SALARY
$90k-110k (estimate)
POST DATE
05/24/2024
EXPIRATION DATE
08/12/2024
Show more
Similar Jobs
Network Security Analyst
View Jobs
Network Security System Analyst, Sr.
View Jobs
Network Security System Analyst
View Jobs
Network Risk and Security Assessment Analyst
View Jobs
Network Risk and Security Assessment Senior Analyst
View Jobs
Advanced Framework for Simulation, Integration and Modeling Analyst
View Jobs
Popular Articles
Top 10 Things to Avoid Putting on a Job Application
Read Article
How to Describe Your Education in a Resume
Read Article
How to Write a Memorable Cover Letter in 5 Ways
Read Article
4 Personal Finance Tips to Make During Job Transition
Read Article
4 Best Camera Setups for Interview
Read Article
Keeping a Job Search Journal: 9 Types of Journaling You Can Do
Read Article
