Defense Point Security
  • Greenbelt, MD, USA
  • Full Time

Benefits: See Below


Do you want to work for a company that is passionate about security and has a fun, start-up culture with large company perks? Do you want to be in an environment where you will continuously learn new skills, grow and take on new opportunities due to the abundance of new projects on the horizon?

If you answered yes to these questions, this opportunity could be for you! 

Defense Point Security is seeking a Risk Management Framework (RMF) Analyst in Greenbelt, MD.

RMF Job Responsibilities:

  • Oversee and manage relationships for assigned systems that may be contractor owned and contractor operated, ensuring vendors comply with agency security and privacy requirements
  • Coordinate with the infrastructure teams to plan, develop, implement and test security controls that meet Federal regulations, program objectives, operational needs and user experience required for the SoS, particularly data collection components. Support the integration of security across the SoS lifecycle
  • Lead the development and maintenance of security documentation such as the System Security Plan, Privacy Impact Assessment, Configuration Management Plan, Contingency Plan, Contingency Plan Test Report, POA&M, annual FISMA assessment, and incident reports
  • Assess vulnerabilities to ascertain if additional safeguards are needed and ensure systems are patched and security hardened at all levels of the "stack," and monitor to ensure vulnerabilities are remediated as appropriate
  • Manage vulnerabilities mitigation commitments from the integration team
  • Assist in establishing rules for program/project vulnerability scans, risk analyses and security assessments which includes addressing controls defined by OMB A130 Appendix III, FIPS 199, NIST SP800-37, NIST SP800-53, NIST SP500-299 for both business operations and technical implementation throughout the eSDLC for the SoS
  • Analyze and define security requirements for information protection. Analyze change requests for security impacts and provide recommendations to the GPMO
  • Analyze change requests for security risk, monitor and track security-related defects and resolutions, and make recommendations to the GPMO
  • Execute with limited direction or conceptual direction, anticipating customer needs and proactively supporting those needs
  • Assist in establishing and implementing a Continuous Diagnostics and Mitigation (CDM) capability with integrated security controls for the SoS
  • Assist in establishing a continuous monitoring strategy to proactively survey, monitor, and track security-related defects and the status of their resolutions to report to the GPMO
  • Review program/project vulnerability scan results and report findings to the GPMO and monitor and track their assessment and subsequent resolution using automated scripts where necessary
  • Monitor for security breaches and participate in incident response activities and investigation of security breaches. Specifically, traditional ISSO audit responsibilities
  • Capture ATO artifacts that support independent assessment activities. Consolidate ATO artifacts for input into the USCB Risk Management Processing System
  • Present status of RMF efforts to Government customer and program meetings as required
 
RMF Job Qualifications:
  • This position requires US Citizenship due to our Federal contractual obligation
  • Bachelor's Degree
  • 10 years experience
  • In-depth technical experience and security exposure with core technologies, including Cloud, Digital, Data Protection, User Management, Digital Mobility, Compliance, Application Security, Event Management, CDM
  • Knowledge of FedRAMP and FISMA regulatory compliance requirements
  • Working knowledge of NIST SP800-53 Rev 4 controls, and implementation methodology with the ability to oversee traceability to the controls
  • Experience working throughout a complete IT Security life-cycle supporting a complex System of Systems
  • Experience working as a compliance and security control planner and implementer
  • Adept at managing change control and technical working group
  • Thorough understanding of the security concepts and intricacies associated with Cloud Computing, Infrastructure, Data Protection, Digital Mobility, Application Security, and Regulatory Compliance
  • Ability to define and manage reporting and measurement systems for IT Security
  • Tools/Technology Experience: Functional knowledge of security tools for both Cloud environments and Data Center, including commercial and open source

 

Job Location: Greenbelt, MD

Position Type: FullTime/ Regular

Security Requirement: Public Trust

All candidates must be clearable.

To see other locations please see the Information Security  Career Menu on defpoint.com

 

Defense Point Security is an IT Security Consulting firm specializing in government-focused security solutions.  Our goal is to provide expert IT security services to our clients while cultivating information security knowledge among all employees for the advancement of cyber security.  Defense Point Security offers a competitive employment package including medical, vision, and dental insurance (among others).

Defense Point Security offers a competitive benefits package to include:

  • Medical, Dental, Vision Insurance Premiums are 100% paid by DPS for employee and eligible dependents
  • Personal Accident Insurance paid by DPS
  • Life Insurance paid by DPS
  • Short and Long Term Disability Insurance paid by DPS
  • 401k Contribution Matching and 100% vested after 90 days
  • Flexible Spending Accounts 
  • Commuter Assistance
  • Paid Time Off starting at 3 weeks a year (15 days)
  • 10 paid Federal Holidays
  • Up to $100 per month reimbursed for cell phone
  • Up to $50 per month reimbursed for home internet
  • Up to $200 every 2 years for a cell phone upgrade
  • Capital BikeShare Membership for DC Metro Area
  • Reimbursement for qualifying training expenses
  • Flexible / Alternative Work Schedules

Defense Point Security is an Equal Opportunity / Affirmative Action Employer. We are committed to hiring and retaining a diverse Community workforce. DPS gives equal consideration to all qualified candidates without regard to race, color, religion, creed, gender identity, national origin, sex, pregnancy, marital status, age, sexual orientation, disability, veteran status, or any other protected class. 

Defense Point Security
  • Apply Now

    with our quick 3 minute Application!

  • * Fields Are Required

    What is your full name?

    How can we contact you?

    I agree to ApplicantPro's Applicant Information Use Policy.*
  • Sign Up For Job Alerts!

  • Share this Page
  • Facebook Twitter LinkedIn Email
.
Logo Home Corporate Info Services R&D DPS News Careers Search