Previous Job
Previous
Security Compliance Specialist
Ref No.: 18-06298
Location: Woodlawn, Maryland
Start Date: 07/06/2018
Job Description: The Security Compliance Specialist shall be responsible for completing and maintaining documentation such as the system security plan, security risk assessment, security control assessment activities, and continuous monitoring in a Cloud environment. Security documentation will be required to achieve and maintain system Authorization-to-Operate (ATO).

Required Skills
  • Security compliance experience (NIST 800-53 and applicable special publications, FISMA, FedRAMP)
  • AWS Cloud Security Compliance
  • Risk management framework experience (e.g. NIST 800-30)
  • Federal ATO package development for Cloud-based systems

Job Description:
  • The security compliance specialist will work with the Clients Office of Information Security team and stakeholders to identify, document, and evaluate the status system security controls.
  • Addition responsibilities will include using our security configuration management tools and reports to identify risks and track findings against Federal security policies and guidelines for mitigation planning and remediation.
  • Security responsibilities include developing and maintaining system SSP, ISCP, IR Plan, CM Plans, Audit Plans, and ATO package documentation requirements.
  • The security compliance specialist will support the security assessment process from planning and coordinating meetings with Client and assessors to remediation and corrective action planning.
  • Additional responsibilities may include performing annual control reviews as part of continuous monitoring to identify new risks, track findings against Federal security policies and guidelines, managing Plan-of-Action and Milestone (POAM) to closure and mitigation planning and remediation of controls in the Cloud environment. Candidates are encouraged to have a technical background to support the role.