Modern Technology Solutions, Inc. (MTSI)
Senior Security Controls Assessor Representative (SCAR)
Modern Technology Solutions, Inc. (MTSI), Washington, District of Columbia, us, 20022
Overview
Modern Technology Solutions, Inc. (MTSI) is seeking a
Senior Security Controls Assessor Representative
(SCAR) to join our team in support of an important Department of the Air Force (DAF) program. The candidate will be responsible for assessing and ensuring compliance with applicable security regulations for various classified non-traditional Information Systems (ISs). This position requires an active Top Secret clearance with SCI eligibility along with Special Access Program read-in/experience. A successful candidate must be a self-starter who possesses initiative, excellent communication skills, the ability to lead diverse teams, to collaborate effectively with cross-functional teams, and a proven problem solver. Responsibilities
Ensuring organizations are addressing cybersecurity during all phases of the System Development Life Cycle and conducting continuous monitoring and reporting requirements. Performing oversight of the development, implementation and evaluation of system security program policy with special emphasis placed upon integration of existing Special Access Program (SAP) and Secure Containm ent
Information (SCI) network infrastructures. Performing assessments of non-traditional ISs services (e.g., Command and Control – C2, Platform) based upon the RMF methodology in accordance with the JSIG and ICD. Reviewing and analyzing Assessment & Authorization (A&A) packages for completeness, accuracy, and documenting the effectiveness of controls, plans, and procedures implementation. Evaluating Authorization packages and making recommendations to and discussing with the SAO, DAO, and/or AO. Ensuring corrective actions were taken for identified findings and vulnerabilities. Documenting and preparing complete Security Assessment Reports (SARs) and providing POA&M recommendations/guidance for the authorization boundary. Assessing proposed changes to authorization boundaries, the operating environment, and mission needs to determine the continuation to operate. Assisting the government in compliance inspections and representing the customer on inspection teams. Differentiating between the various types of Cross-Domain Solutions (CDS) and assisting with joint assessments in coordination with other DoD agencies. Reviewing and assessing procedures for clearing, sanitizing, and destroying various types of hardware and media. Ensuring organizations are addressing cybersecurity principles used to manage risks related to the use, processing, storage, and transmission of information or data. Preparing and delivering briefings on program and/or assessment status to the relevant leadership. Qualifications
Required Qualifications: 8 years or more as a Security Controls Assessor (SCA)/Representative (SCAR) or related experience. Of which 3 years or more of experience in the role of Information Systems Security Manager (ISSM), Information Systems Security Officer (ISSO), or Information Systems Security Engineer (ISSE). Experience with non-traditional ISs, C2 environment, or Tactical Systems is desired. Experience assessing SAP and SCI ISs. Experience with authoring A&A documentation and system authorization artifacts for SAP and SCI systems. Knowledge of federal security requirements and mandates (e.g., RMF, FIPS, NIST, CNSSI, ICD, and JSIG). Ability to work well independently or as a team member. Excellent oral and written communication skills, and ability to clearly translate client technical needs into technical specifications. Demonstrated ability to complete tasks, drive projects to closure, assimilate and correlate project information in a fast-paced environment. Demonstrated ability to assess and articulate risk, including to non-technical audiences. Education Requirements
Bachelor of Science degree in Computer Science, Cyber, Software Engineering, Data Science, Software Development or STEM-related specialty. Certification Requirements
Certified Information Systems Security Professional CISSP or (CISSP-ISSEP/CISSP-ISSAP) or IAT Level III - CEH, CySA+, or SCCP. DoD 8140.3 Certified. Assessor background/experience is greatly preferred. Clearance Requirements
Security Clearance Level Required: Must possess an active Top Secret security clearance, current within five (5) years, based upon a T5 or T5R investigation (formerly SSBI or SBPR). Please Note: U.S. Citizenship is required. Perks & Benefits
Vacation: New Hires Accrue 20 days of PTO and 10 Holidays per Year Health Insurance: Zero Deductible Health Plans Flexible Schedules: Flex Schedules Professional Development: Up to $10,000 Annual Education/Training Reimbursement ESOP: Funded Stock Ownership Plan 401k Match: 6% 401k Match + Immediate Vesting Bonus Program: Semi-Annual Bonus Opportunity Mentorship: Career Mentorship Programs EEO Statement
MTSI embraces nine core values including our first core value of Employees come first. Consistent with our Core Values, we are committed to Equal Opportunity, making decisions without regard to race, color, religion, sex, national origin, age, military/veteran status, disability, or any other characteristics protected by applicable law. MTSI is committed to Equal Employment Opportunity and providing reasonable accommodations to applicants and employees with physical and/or mental disabilities.
#J-18808-Ljbffr
Modern Technology Solutions, Inc. (MTSI) is seeking a
Senior Security Controls Assessor Representative
(SCAR) to join our team in support of an important Department of the Air Force (DAF) program. The candidate will be responsible for assessing and ensuring compliance with applicable security regulations for various classified non-traditional Information Systems (ISs). This position requires an active Top Secret clearance with SCI eligibility along with Special Access Program read-in/experience. A successful candidate must be a self-starter who possesses initiative, excellent communication skills, the ability to lead diverse teams, to collaborate effectively with cross-functional teams, and a proven problem solver. Responsibilities
Ensuring organizations are addressing cybersecurity during all phases of the System Development Life Cycle and conducting continuous monitoring and reporting requirements. Performing oversight of the development, implementation and evaluation of system security program policy with special emphasis placed upon integration of existing Special Access Program (SAP) and Secure Containm ent
Information (SCI) network infrastructures. Performing assessments of non-traditional ISs services (e.g., Command and Control – C2, Platform) based upon the RMF methodology in accordance with the JSIG and ICD. Reviewing and analyzing Assessment & Authorization (A&A) packages for completeness, accuracy, and documenting the effectiveness of controls, plans, and procedures implementation. Evaluating Authorization packages and making recommendations to and discussing with the SAO, DAO, and/or AO. Ensuring corrective actions were taken for identified findings and vulnerabilities. Documenting and preparing complete Security Assessment Reports (SARs) and providing POA&M recommendations/guidance for the authorization boundary. Assessing proposed changes to authorization boundaries, the operating environment, and mission needs to determine the continuation to operate. Assisting the government in compliance inspections and representing the customer on inspection teams. Differentiating between the various types of Cross-Domain Solutions (CDS) and assisting with joint assessments in coordination with other DoD agencies. Reviewing and assessing procedures for clearing, sanitizing, and destroying various types of hardware and media. Ensuring organizations are addressing cybersecurity principles used to manage risks related to the use, processing, storage, and transmission of information or data. Preparing and delivering briefings on program and/or assessment status to the relevant leadership. Qualifications
Required Qualifications: 8 years or more as a Security Controls Assessor (SCA)/Representative (SCAR) or related experience. Of which 3 years or more of experience in the role of Information Systems Security Manager (ISSM), Information Systems Security Officer (ISSO), or Information Systems Security Engineer (ISSE). Experience with non-traditional ISs, C2 environment, or Tactical Systems is desired. Experience assessing SAP and SCI ISs. Experience with authoring A&A documentation and system authorization artifacts for SAP and SCI systems. Knowledge of federal security requirements and mandates (e.g., RMF, FIPS, NIST, CNSSI, ICD, and JSIG). Ability to work well independently or as a team member. Excellent oral and written communication skills, and ability to clearly translate client technical needs into technical specifications. Demonstrated ability to complete tasks, drive projects to closure, assimilate and correlate project information in a fast-paced environment. Demonstrated ability to assess and articulate risk, including to non-technical audiences. Education Requirements
Bachelor of Science degree in Computer Science, Cyber, Software Engineering, Data Science, Software Development or STEM-related specialty. Certification Requirements
Certified Information Systems Security Professional CISSP or (CISSP-ISSEP/CISSP-ISSAP) or IAT Level III - CEH, CySA+, or SCCP. DoD 8140.3 Certified. Assessor background/experience is greatly preferred. Clearance Requirements
Security Clearance Level Required: Must possess an active Top Secret security clearance, current within five (5) years, based upon a T5 or T5R investigation (formerly SSBI or SBPR). Please Note: U.S. Citizenship is required. Perks & Benefits
Vacation: New Hires Accrue 20 days of PTO and 10 Holidays per Year Health Insurance: Zero Deductible Health Plans Flexible Schedules: Flex Schedules Professional Development: Up to $10,000 Annual Education/Training Reimbursement ESOP: Funded Stock Ownership Plan 401k Match: 6% 401k Match + Immediate Vesting Bonus Program: Semi-Annual Bonus Opportunity Mentorship: Career Mentorship Programs EEO Statement
MTSI embraces nine core values including our first core value of Employees come first. Consistent with our Core Values, we are committed to Equal Opportunity, making decisions without regard to race, color, religion, sex, national origin, age, military/veteran status, disability, or any other characteristics protected by applicable law. MTSI is committed to Equal Employment Opportunity and providing reasonable accommodations to applicants and employees with physical and/or mental disabilities.
#J-18808-Ljbffr