Assessment and Authorization Specialist

BT-254 – Assessment and Authorization Specialist
Skill Level: Subject Matter Expert
Location: Herndon, VA (fully on-site, no remote option)

 

• The Candidate shall concentrate on overall technical and operational effectiveness of capabilities in coordination with the GTM and staff management. 
• The Candidate shall be responsible for assisting and maintaining a formal Information Security Program that includes recommendations on continuous improvement of the processes and architectures:

• Run and execute the A&A process, greenlight records
• Run security scans
• Mitigate findings
• Security updates
• Patching / updates – Windows, Linux
• Configuration systems admin, configuration/deployment of laptops
• Shepherding systems through security process.

1. Bachelor’s degree in management information systems, information assurance, computer engineering, or other closely related IT and cybersecurity discipline or equivalent work experience.
2. Demonstrated experience in the Risk Management Framework (RMF) methodology.
3. Demonstrated experience managing document repositories and databases.
4. Demonstrated experience in the use of process tracking and document control software.
5. Demonstrated experience with writing, communications, and briefing skills.
6. Demonstrated experience with technical guidance and oversight both to technical and non-technical, senior level personnel.
7. Demonstrated experience organizing, planning and prioritizing multiple tasks to complete work on schedule.
8. Demonstrated experience in INFOSEC policies, regulations, and guidance’s.
9. Demonstrated experience with cyber risks such as malware, zero-day attacks, denial of service attacks, as well as associated mitigations regarding computer and network devices.
10. Demonstrated pattern of excellent customer service skills and the ability to collaborate with clients at all levels.

1. Demonstrated experience with the client's A&A process.
2. Certified Information Systems Security Professional (CISSP).
3. Demonstrated knowledge of standard project cycles.
4. Demonstrated experience with diverse information technology infrastructure, including operating systems, major application systems, and network architecture.