Senior Authorization and Assessment Specialist #636455

SUITLAND, MD

Full-time, day job.  All work on site in Suitland, MD

Must currently possess active Top Secret/SCI clearance

 

Description:

Leidos is interviewing for a Senior Authorization and Assessment Specialist to work in the government’s Office of Naval Intelligence (ONI) in Suitland, MD. This position requires an active TS/SCI clearance.

 

 

Primary Responsibilities

Ensure identified specialized IT systems comply with all appropriate Information Technology security Assessment and Authorization (A&A) requirements and best practices as prescribed by Office of the Director of National Intelligence (ODNI), Defense Intelligence Agency (DIA), DoD, Defense Information Systems Agency (DISA), and local authorities.

 

Support the preparation of A&A packages based on inputs from the Government, Information Systems Security Officer (ISSO), System Administrators, Developers and Database Administrators. The A&A documentation shall be in compliance with the requirements stated in the Intelligence Community Directive (ICD) 503 for SCI Information Systems (IS) or the Risk Management Framework (RMF) for SECRET and below IS, and following the direction and guidance provided in the Navy Authorizing Official (NAO) approved A&A process.

 

Coordinate and support the security components of the DoDIIS certification process for all products undergoing DoDIIS certification.

 

Perform automated security scans, using Security Content Automation Protocol (SCAP) compliant current or emerging automated tools such as DISA Assured Compliance Assessment Solution (ACAS); Windows Automated Security Scanning Program (WASSP); Security Scanner (SECSCN); and the CIS Benchmark. Scan results and findings are to be documented according to Hopper Security and ICD 503 Risk Management Framework (RMF) processes.

 

Document results of security requirements analysis, evaluations, alternatives analyses, risk assessments, and other security-related activities performed in support of project orders and as tasked for approved project requirements.

 

Conduct research and testing to ensure existing and evolving products/services meet current ODNI, DIA, DoD, DISA, RMF, and local authorities security requirements as appropriate.

 

Carry out and monitor all NAIL systems C&A Security activities, in accordance with ICD 503 Risk Management Framework (RMF) process including but not limited to:

*Performing security testing, documentation, and reporting activities

*Collaborating with external organizations to complete product certification tests, site certifications and temporary certifications for testing and exercise.

*Performing security "pre-look" scans and testing of prospective new products and reporting findings.

*Staying current on NSA and DISA system configuration and testing guidelines and updating practices and procedures as appropriate to incorporate changes.

*Processing Interim Authority to Operate (IATO) and Interim Authority to Test (IATT) requests from customers.

*Documenting and reporting security test results and findings Basic Minimum

 

 

Basic Minimum Qualifications:

 

MS,MA or PhD and 10+ years tactical A&A experience with ICD-503, and/or RMF

 

Active TS/SCI clearance

 

3 years of project management experience

 

Experience with DISA, NNWC, DoDISS and/or IC tools, systems and reporting mechanisms and requirements for A&A.

 

Extensive experience and education in Information Assurance, eg, accreditation, security testing and evaluation.

 

One or more of the following certifications - CISM, CISSP, CASP ce, GSLC, CAP and/or GIAC

 

Knowledge of the DoD, IC, and national level system security initiatives and secure Information/Local Area Network (LAN)/WAN technologies

 

Experience establishing and managing high performing A&A teams, including adapting industry, DOD , and IC standards to create HISC best practices.

 

http://jobs.leidos.com/ShowJob/Id/1169628/Senior-Authorization-and-Assessment-Specialist/

 

http://jobs.leidos.com/ShowJob/Id/1169628/Senior-Authorization-and-Assessment-Specialist/

 

Senior Authorization and Assessment Specialist #636455

SUITLAND, MD

Full-time, day job.  All work on site in Suitland, MD

Must currently possess active Top Secret/SCI clearance

 

Description:

Leidos is interviewing for a Senior Authorization and Assessment Specialist to work in the government’s Office of Naval Intelligence (ONI) in Suitland, MD. This position requires an active TS/SCI clearance.

 

 

Primary Responsibilities

Ensure identified specialized IT systems comply with all appropriate Information Technology security Assessment and Authorization (A&A) requirements and best practices as prescribed by Office of the Director of National Intelligence (ODNI), Defense Intelligence Agency (DIA), DoD, Defense Information Systems Agency (DISA), and local authorities.

 

Support the preparation of A&A packages based on inputs from the Government, Information Systems Security Officer (ISSO), System Administrators, Developers and Database Administrators. The A&A documentation shall be in compliance with the requirements stated in the Intelligence Community Directive (ICD) 503 for SCI Information Systems (IS) or the Risk Management Framework (RMF) for SECRET and below IS, and following the direction and guidance provided in the Navy Authorizing Official (NAO) approved A&A process.

 

Coordinate and support the security components of the DoDIIS certification process for all products undergoing DoDIIS certification.

 

Perform automated security scans, using Security Content Automation Protocol (SCAP) compliant current or emerging automated tools such as DISA Assured Compliance Assessment Solution (ACAS); Windows Automated Security Scanning Program (WASSP); Security Scanner (SECSCN); and the CIS Benchmark. Scan results and findings are to be documented according to Hopper Security and ICD 503 Risk Management Framework (RMF) processes.

 

Document results of security requirements analysis, evaluations, alternatives analyses, risk assessments, and other security-related activities performed in support of project orders and as tasked for approved project requirements.

 

Conduct research and testing to ensure existing and evolving products/services meet current ODNI, DIA, DoD, DISA, RMF, and local authorities security requirements as appropriate.

 

Carry out and monitor all NAIL systems C&A Security activities, in accordance with ICD 503 Risk Management Framework (RMF) process including but not limited to:

*Performing security testing, documentation, and reporting activities

*Collaborating with external organizations to complete product certification tests, site certifications and temporary certifications for testing and exercise.

*Performing security "pre-look" scans and testing of prospective new products and reporting findings.

*Staying current on NSA and DISA system configuration and testing guidelines and updating practices and procedures as appropriate to incorporate changes.

*Processing Interim Authority to Operate (IATO) and Interim Authority to Test (IATT) requests from customers.

*Documenting and reporting security test results and findings Basic Minimum

 

 

Basic Minimum Qualifications:

 

MS,MA or PhD and 10+ years tactical A&A experience with ICD-503, and/or RMF

 

Active TS/SCI clearance

 

3 years of project management experience

 

Experience with DISA, NNWC, DoDISS and/or IC tools, systems and reporting mechanisms and requirements for A&A.

 

Extensive experience and education in Information Assurance, eg, accreditation, security testing and evaluation.

 

One or more of the following certifications - CISM, CISSP, CASP ce, GSLC, CAP and/or GIAC

 

Knowledge of the DoD, IC, and national level system security initiatives and secure Information/Local Area Network (LAN)/WAN technologies

 

Experience establishing and managing high performing A&A teams, including adapting industry, DOD , and IC standards to create HISC best practices.