onsite

Cybersecurity Assessment & Authorization SME - Cardinal Technology Systems

Security Engineer

Senior SME focused on A&A of information systems, applying NIST frameworks, risk management, and security architecture to meet federal compliance and safeguard government and commercial IT environments.

About the role

Cardinal Technology Systems Corp. is a government IT solutions provider servicing commercial and government initiative in various parts of the United States. We are currently seeking a Cybersecurity Assessment & Authorization - SME to work for our company.

Must possess IT-I security clearance or have a current National Agency Check with Local Agency Check and Credit Check (NACLC). (Basic Federal Clearance requirements are U.S. Citizenship, clear criminal history check, no recent or pending bankruptcies)
Serves as a cybersecurity Subject Matter Expert (SME) with regards to Assessment and Authorization (A&A) of information systems and all associated cybersecurity policies and procedures.
Performs a DOD cybersecurity process while either authorizing an information system or serving as a SME for an information system undergoing authorization.
Possess an understanding of how the security controls identified in the NIST 800-53 apply to the process of assessing and authorizing a large organization’s IT infrastructure such as DLA’s, in which there is a compilation of large and small enclaves, AIS applications and outsourced IT processes.
Determines the applicable severity value for an identified vulnerability (e.g., non-compliant security control) and determines the possible ramifications on the system’s current or future authorization.
Briefs senior management on the progress or results of an information system undergoing the Risk Management Framework (RMF) process.
Must possess IT-I security clearance or have a current National Agency Check with Local Agency Check and Credit Check (NACLC). (Basic Federal Clearance requirements are U.S. Citizenship, clear criminal history check, no recent or pending bankruptcies)
Must possess and maintain a certification compliant with DoD 8570/8140 CSSP Analyst requirements (e.g., CompTIA CySA+, CEH, GCIH, GCIA, or CISSP).
5+ years of relevant Risk Management Framework (RMF) and NIST A&A experience.
DOD cybersecurity experience.
Experience in assessing security controls and conducting authorization reviews for large, complex organizations.
Experienced in the general tenets supporting the overall DOD implementation of its authorization process, to include supporting cybersecurity policy, procedures, and processes.
Knowledgeable in the cybersecurity of emerging technology areas such as Cloud and Industrial Control Systems (ICSs), warehouse execution systems and Operational Technology (OT) infrastructures.

• Medical, Dental, Vision Benefits

• Paid Life

• Paid Vacation, Holidays, Sick Leave, Floating Holidays, Bereavement Leave

• Semi-monthly pay cycle

Cardinal Technology Systems , Corp (“CTech-Sys”), www.ctech-sys.com, is an SBA Certified 8(a) and HUBZone company located in the National Capital Region (NCR) and serves both government and commerc

About the role

Must possess IT-I security clearance or have a current National Agency Check with Local Agency Check and Credit Check (NACLC). (Basic Federal Clearance requirements are U.S. Citizenship, clear criminal history check, no recent or pending bankruptcies)
Serves as a cybersecurity Subject Matter Expert (SME) with regards to Assessment and Authorization (A&A) of information systems and all associated cybersecurity policies and procedures.
Performs a DOD cybersecurity process while either authorizing an information system or serving as a SME for an information system undergoing authorization.
Possess an understanding of how the security controls identified in the NIST 800-53 apply to the process of assessing and authorizing a large organization’s IT infrastructure such as DLA’s, in which there is a compilation of large and small enclaves, AIS applications and outsourced IT processes.
Determines the applicable severity value for an identified vulnerability (e.g., non-compliant security control) and determines the possible ramifications on the system’s current or future authorization.
Briefs senior management on the progress or results of an information system undergoing the Risk Management Framework (RMF) process.
Must possess IT-I security clearance or have a current National Agency Check with Local Agency Check and Credit Check (NACLC). (Basic Federal Clearance requirements are U.S. Citizenship, clear criminal history check, no recent or pending bankruptcies)
Must possess and maintain a certification compliant with DoD 8570/8140 CSSP Analyst requirements (e.g., CompTIA CySA+, CEH, GCIH, GCIA, or CISSP).
5+ years of relevant Risk Management Framework (RMF) and NIST A&A experience.
DOD cybersecurity experience.
Experience in assessing security controls and conducting authorization reviews for large, complex organizations.
Experienced in the general tenets supporting the overall DOD implementation of its authorization process, to include supporting cybersecurity policy, procedures, and processes.
Knowledgeable in the cybersecurity of emerging technology areas such as Cloud and Industrial Control Systems (ICSs), warehouse execution systems and Operational Technology (OT) infrastructures.

• Medical, Dental, Vision Benefits

• Paid Life

• Paid Vacation, Holidays, Sick Leave, Floating Holidays, Bereavement Leave

• Semi-monthly pay cycle

Cybersecurity Assessment & Authorization SME - Cardinal Technology Systems

About the role

Cybersecurity Assessment & Authorization SME - Cardinal Technology Systems

About the role

Skills