IT Security SpecialistAssessor

Zen Strategics a Titan Technologies company is seeking an IT Security Specialist/Assessor to support Security Assessment and Authorization (A&A) initiatives for a government client.

Job Duties:

• Conduct full lifecycle Security Control Assessments and Authorization (A&A) activities for NWS FIPS 199 Low Moderate High HVA and hybrid systems in accordance with the NIST Risk Management Framework (RMF) NWS policy NOAA and DOC directives.
• Validate information System Security Plans (SSPs) FIPS 200 control implementations and supporting policies and procedures for accuracy completeness and NIST SP 800-53 compliance.
• Execute security control test procedures through documentation review technical validation and interviews with system stakeholders to determine control implementation status and effectiveness.
• Collect analyze and document evidentiary artifacts (screenshots test logs interview notes) to validate control implementation and effectiveness.
• Utilize CSAM to retrieve POAMs artifacts and other pertinent documentation to assist with the A&A process and ensure accuracy of the A&A documentation uploaded in the tool.
• Analyze and interpret vulnerability and configuration compliance scan results from tools like Tenable Nessus to identify control gaps assess risk and validate remediation actions.
• Develop and maintain pre-assessment and assessment deliverables including Security Assessment Plans (SAPs) Security Control Assessment (SCA) workbooks and kickoff deck briefings.
• Document assessment results and risk determinations in Security Assessment Reports (SARs) Vulnerability Assessment Reports (VARs) and Authorization to Operate (ATO) briefing deck.

You MUST have:

• Ability to pass a Public Trust Clearance and background investigation
• Must be able to work on site - Wednesdays ONLY
• Strong knowledge of NIST standards and RMF including application within federal environments
• Experience with DOC NOAA NWS or similar federal agency security policies and standards
• 5 years of recent experience (within the last 6 years) in:
  • IT security concepts methodologies and tools
  • Enterprise architecture principles and security integration
  • Contingency planning and disaster recovery aligned with NIST guidance
  • Security assessment and authorization (RMF)
  • Use of security tools (e.g. Tenable ArcSight BigFix)
• Must hold at least one of the following certifications:
  • CISSP
  • CISA
  • GSNA
  • CEH
  • CGRC (ISC2)
  • SCNP or SCNA

Its GREAT if you also have:

• Self-starter highly motivated individual who adapts to a dynamic work environment
• Strong attention to detail with an ability to operate effectively across multiple priorities
• Proficiency in interview skills
• Proficiency in project and time management
• Ability to adjust to changing priorities
• Ability to work in a cohesive team-oriented environment

Education:

• High School degree and 5 years of relevant experience OR
• AA degree and 3 years of relevant experience OR
• Bachelors degree with 2 years experience in related field.

Company Description:

Titan Technologies LLC and our wholly owned subsidiaries TelaForce LLC Titan Facilities Inc. and Zen Strategics design build integrate and manage innovative solutions and software applications. Our remarkable people working collaboratively under a shared vision have earned a reputation with our customers for delivering results with maximum impact. Sound intriguing Consider Titan Technologies for the next step in your career journey and be part of an impactful team!

Titan is proud to be a Service-Disabled Veteran Owned Business.

Required Experience:

IC