Description
Zen Strategics, a Titan Technologies company, is seeking an IT Security Specialist/Assessor to support Security Assessment and Authorization (A&A) initiatives for a government client.
Job Duties:
Conduct full lifecycle Security Control Assessments and Authorization (A&A) activities for NWS FIPS 199 Low, Moderate, High, HVA, and hybrid systems in accordance with the NIST Risk Management Framework (RMF), NWS policy, NOAA, and DOC directives.
Validate information System Security Plans (SSPs), FIPS 200, control implementations, and supporting policies and procedures for accuracy, completeness, and NIST SP 800-53 compliance.
Execute security control test procedures through documentation review, technical validation, and interviews with system stakeholders to determine control implementation status and effectiveness.
Collect, analyze, and document evidentiary artifacts (screenshots, test logs, interview notes) to validate control implementation and effectiveness.
Utilize CSAM to retrieve POAMs, artifacts, and other pertinent documentation to assist with the A&A process and ensure accuracy of the A&A documentation uploaded in the tool.
Analyze and interpret vulnerability and configuration compliance scan results from tools like Tenable Nessus to identify control gaps, assess risk, and validate remediation actions.
Develop and maintain pre-assessment and assessment deliverables, including Security Assessment Plans (SAPs), Security Control Assessment (SCA) workbooks, and kickoff deck briefings.
Document assessment results and risk determinations in Security Assessment Reports (SARs), Vulnerability Assessment Reports (VARs), and Authorization to Operate (ATO) briefing deck.
You MUST have:
Ability to pass a Public Trust Clearance and background investigation
Must be able to work on site - Wednesdays ONLY
Strong knowledge of NIST standards and RMF, including application within federal environments
Experience with DOC, NOAA, NWS, or similar federal agency security policies and standards
5+ years of recent experience (within the last 6 years) in:
IT security concepts, methodologies, and tools
Enterprise architecture principles and security integration
Contingency planning and disaster recovery aligned with NIST guidance
Security assessment and authorization (RMF)
Use of security tools (e.g., Tenable, ArcSight, BigFix)
Must hold at least one of the following certifications:
CISSP
CISA
GSNA
CEH
CGRC (ISC2)
SCNP or SCNA
It's GREAT if you also have:
Self-starter, highly motivated individual who adapts to a dynamic work environment
Strong attention to detail with an ability to operate effectively across multiple priorities
Proficiency in interview skills
Proficiency in project and time management
Ability to adjust to changing priorities
Ability to work in a cohesive team-oriented environment
Education:
High School degree and 5 years of relevant experience, OR
AA degree and 3 years of relevant experience, OR
Bachelor's degree with 2 years experience in related field.
Company Description:
Titan Technologies, LLC and our wholly owned subsidiaries, TelaForce, LLC, Titan Facilities, Inc. and Zen Strategics, design, build, integrate, and manage innovative solutions and software applications. Our remarkable people, working collaboratively under a shared vision, have earned a reputation with our customers for delivering results with maximum impact. Sound intriguing Consider Titan Technologies for the next step in your career journey and be part of an impactful team!
Titan is proud to be a Service-Disabled Veteran Owned Business.
Equal Opportunity Employer
This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights (https://www.eeoc.gov/poster) notice from the Department of Labor.
