Scientific Research Corporation Job - 34491061 | CareerArc
  Search for More Jobs
Get alerts for jobs like this Get jobs like this tweeted to you
Company: Scientific Research Corporation
Location: Arlington, VA
Career Level: Associate
Industries: Manufacturing, Engineering, Aerospace

Description



PRIMARY DUTIES & RESPONSIBILITIES:

  • Assist with assembly and maintenance of all RMF/Cybersecurity related documentation/artifacts
  • Perform assigned tasking related to all RMF steps throughout the Assessment & Authorization process (Step 1: Categorize Information System, Step 2: Select Security Controls, Step 3: Implement Security Controls, Step 4: Assess Security Controls, Step 5: Authorize Information System, Step 6: Monitor Security Controls)
  • Perform security reviews and controls testing per requirements and coordinating scans as appropriate (ACAS, SCAP, etc.)
  • Assist with assembly and maintenance of the Security Authorization Package including eMASS entry and updates
  • Lead the implementation of policies, processes, and procedures that address security requirements
  • Investigate and analyze implemented security processes to identify shortfalls
  • Perform formal security assessments to determine whether security controls are in-place, operating as intended, and producing desired results. Security assessments shall be supported through pre-assessment preparations, participation in the assessment, analysis of the results, and drafting the Security Assessment Report (SAR)
  • Assess risk to determine the appropriate risk response. Recommended responses may include risk reduction or risk transferal
  • Performing vulnerability assessments, analyzing networks, intrusion detection, and implementing counter measures
  • Execute continuous monitoring of systems to include analyzing vulnerability scan results, Information Assurance Vulnerability Alerts (IAVA), and reporting results
  • Monitor Plan of Action and Milestones (POA&M), tracking corrective actions until all actions are closed
  • Make recommendations to address security vulnerabilities and residual risk


 Apply on company website