Senior Security Advisor enhancing security measures to align with corporate objectives at Desjardins. Leading development of strategic initiatives and overseeing best practices in security.
About the role
- Junior Information Systems Security Engineer at AMERICAN SYSTEMS managing DoD cyber security. Collaborating on technical issues and supporting risk management framework compliance.
Responsibilities
- Create authorization package records in Marine Corps Certification and Accreditation Support Tool (MCCAST) or Enterprise Mission Assurance Support Service (eMASS) for assigned systems
- Support identification of the system type (IS, IT product, IT service) and any special considerations including multi-service/agency, joint, cross domain, data classification, tactical, space, etc., to support categorization
- Support the determination of the appropriate Defense–in–Depth Functional Implementation Architecture (DFIA) defense level (DL), CYBERSAFE grade, and security categorization in accordance with (IAW) CNSSI 1253 for assigned systems
- Support the generation of controls for assigned systems IAW the DFIA DL, CYBERSAFE grade, security categorization, and applicable overlays
- Assess and document the security control set for assigned systems to determine the applicability and compliance of the individual controls within the security control set
- Develop Cyber Security Strategy based on the security categorization for assigned systems
- Develop Security Plan (SP) and Information System Continuous Monitoring (ISCM) strategy in MCCAST or eMASS for assigned systems
- Support the Security Control Assessor (SCA) and Authorizing Official (AO) review of the security control set to address any feedback received during the review
- Collaborate with the NSWC IHD ISSO and Security Control Validator (SCV) to develop the Security Assessment Plan (SAP)
- Support the NSWC IHD ISSO in implementing and testing the security control set IAW the SAP. Documenting the pre-assessment results in a Plan of Actions and Milestones (POA&M) and Security Assessment Report (SAR).
- Support the SCA and AO review of the pre-assessment POA&M and SAR to address any feedback received during the review
- Assist the NSWC IHD ISSO in providing updates to the Security Validation POA&M to address open vulnerabilities that were verified by the SCV during the official security assessment
- Support the NSWC IHD ISSO in completing, assembling, and submitting the Security Authorization Package (SAP) for the SCA and AO review and AO authorization
- Support the SCA and AO review of the SAP to address feedback received during the review
- Support the NSWC IHD ISSO in maintaining the security posture of assigned systems as identified in the ISCM Strategy
- Support the NSWC IHD ISSO in planning and performing cyber security testing by continuously assessing the security posture of assigned systems
- Assist with any security testing required as part of A&A self-assessments
Requirements
- Bachelor’s degree from an accredited college or university in Computer Science or Information Management
- Four (4) years of systems related experience or DoD 8570 IAT Level II qualifications may be substituted for a bachelor’s degree
- Active Secret Clearance Required
- Three (3) years of professional experience
- At least two (2) years of experience in defining security programs or processes for the protection of sensitive or classified information
- Sec+, or equivalent, required
- Experience working in a team-oriented, collaborative environment.
Benefits
- AMERICAN SYSTEMS offers a comprehensive benefits package to ensure our employees receive the work-life support they need.
- Healthcare benefits
- Paid leave
- Retirement plans
- Insurance programs
- Education and training assistance
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Controls Professional assessing internal control frameworks at Barclays, improving control effectiveness and managing risks to ensure compliance with regulations.
Senior Information Security Engineer at Wells Fargo investigating insider threats and strengthening cybersecurity measures. Conducting advanced investigations and collaborating with cyber teams to mitigate risks.
Staff Product Manager overseeing enterprise security product strategy for Tenable. Collaborating with various teams to deliver customer - focused solutions and product features.
Information Systems Security Officer managing operational security posture for information systems at GDIT. Collaborating closely with ISSM and ISO, handling security aspects, and ensuring compliance with security standards.
Program Security Representative providing multi - discipline security support for Special Access Programs. Ensuring compliance, developing policies, and conducting security assessments in a military context.
Senior Cyber Security Project Manager at Airbus Protect managing medium complexity projects in Cyber Security Consulting. Focusing on project leadership and team management in diverse client settings.
Security Architect responsible for designing cloud security architectures for leading brands. Ensuring compliance and guiding incident response strategies in AWS environments.
Senior Security Consultant for ISMS Management at Bundesdruckerei GmbH in Berlin. Responsible for security analysis, management, and advisory roles on cybersecurity issues.
IT - Systemadministrator managing Video Surveillance and Alarm Systems at Mühlbauer. Supporting technical solutions for multimedia and conference systems with project involvement and ticket handling.