HQ Assessments Lead
Description The mission of the DHS Chief Information Security Officer Directorate (DHS CISOD) is to support the Department's implementation of all applicable regulatory requirements including the Federal Information Security Modernization Act of 2014 (FISMA), relevant Office of Management and Budget (OMB) Circulars, Executive Orders, Federal laws, directives, policies, and regulations.
The DHS CISOD's mission is to also provide the Department of Homeland Security (DHS) a secure and trusted computing environment.
The DHS CISOD assists in ensuring Department compliance with information security requirements.
Information security is an essential business function, critical to enabling DHS to conduct its operations and deliver service to the public.
Duties include assisting with program planning and execution of RMF/Accreditation and Authorization (A&A) , POA&M remediation activities, and performing compliance reviews of IT systems.
Knowledge of NIST 800 series, RMF and CSAM are needed to be successful in this role.
Primary
Responsibilities:
o Assist in ensuring the full compliance of all DHS HQ and Enterprise Systems with all applicable security accreditation or authorization requirements and best practices in accordance with NIST Risk Management Framework and the Committee on National Security Systems (CNSS) policy, guidance, and standards, while providing validation and analysis of DHS NSS (to also include designated systems, appliances or applications).
.
o Communicate with DHS leadership and other agencies (both internal and external) regarding matters that could significantly impact any DHS HQ and Enterprise Systems and their accreditation.
o Certify that the identified specialized IT systems in DHS HQ comply with all appropriate Information Technology security Assessment and Authorization (A&A) requirements and best practices in accordance with NIST Risk Management Framework and the Committee on National Security Systems (CNSS) policy, guidance, and standards, while providing validation and analysis of DHS NSS o Assist in preparing all necessary security documentation for all DHS HQ and Enterprise Systems to ensure the successful completion of Collateral or SCI-level security testing & evaluation (ST&E) and accreditation and ensure full Accreditations and issuance of Authority to Operate (ATOs) are established and maintained continuously for all DHS HQ and Enterprise Systems.
o Participate in meetings and technical exchanges with DHS HQ leadership, assessors, and authorizing officials to; remain abreast of current RMF Tools.
o Techniques and procedures; collaborate on current DHS HQ ATO projects and statuses, and; confirm understanding of new STIGS and their intent.
o Conduct and report results of security-related analyses, evaluations, risk assessments, and other activities supporting requirements to update or establish new Mission Systems or Mission Applications requested by DHS Functional Lead(s).
Attend Cybersecurity policy implementation meetings and briefings, and develop, provide, and deliver technical, operator, and customer training and briefings as required by the approving authority or as requested by Government Functional Lead(s).
o Prepare, collate, track, and manage all documentation comprising a Risk Management Framework (RMF) project Body of Evidence (BOE) and Security Assessment Package (SAP) through the RMF process in XACTA and EMASS (as applicable) to establish and maintain continuous ATO; documentation for each system will be managed in accordance with policy of the DHS HQ Configuration Management Team.
Primary
Qualifications:
o Must be able to obtain a DHS Security Clearance.
o Bachelor's degree with 10 or more years' experience in Certification and Accreditation (C&A) with DIACAP, DCID 6/3, ICD 503, and/or NIST Framework; additional years of related work experience may be considered in lieu of degree o Three (3) or more years' experience in Project Management o Experience with DHS, DoDIIS, and IC tools, systems, and reporting mechanisms/requirements for A&A.
.
o Practical knowledge of IC, DoD, and DHS Cybersecurity initiatives, and secure information/networking technologies.
o Demonstrated experience as an ISSO, ISSE, Package Submission Officer (PSO), Validators, and /or Security Controls Assessor (SCA) o Experience shepherding projects through the RMF process in XACTA and EMASS o Ensure compliance with DHS Standards and procedures.
o Good familiarity with and understanding of all relevant government and agency policies and procedures to ensure system documentation is compliance with relevant guidelines, e.
g.
, FedRAMP, RMF, FISMA, FIPS-II, NIST, etc.
o U.
S.
Citizenship is required.
Pay Range:
Pay Range $118,300.
00 - $182,000.
00 - $245,700.
00 The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary.
Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
#Remote Recommended Skills Configuration Management Implantable Cardioverter Defibrillator Leadership Networking Project Management Risk Analysis Estimated Salary: $20 to $28 per hour based on qualifications.
The DHS CISOD's mission is to also provide the Department of Homeland Security (DHS) a secure and trusted computing environment.
The DHS CISOD assists in ensuring Department compliance with information security requirements.
Information security is an essential business function, critical to enabling DHS to conduct its operations and deliver service to the public.
Duties include assisting with program planning and execution of RMF/Accreditation and Authorization (A&A) , POA&M remediation activities, and performing compliance reviews of IT systems.
Knowledge of NIST 800 series, RMF and CSAM are needed to be successful in this role.
Primary
Responsibilities:
o Assist in ensuring the full compliance of all DHS HQ and Enterprise Systems with all applicable security accreditation or authorization requirements and best practices in accordance with NIST Risk Management Framework and the Committee on National Security Systems (CNSS) policy, guidance, and standards, while providing validation and analysis of DHS NSS (to also include designated systems, appliances or applications).
.
o Communicate with DHS leadership and other agencies (both internal and external) regarding matters that could significantly impact any DHS HQ and Enterprise Systems and their accreditation.
o Certify that the identified specialized IT systems in DHS HQ comply with all appropriate Information Technology security Assessment and Authorization (A&A) requirements and best practices in accordance with NIST Risk Management Framework and the Committee on National Security Systems (CNSS) policy, guidance, and standards, while providing validation and analysis of DHS NSS o Assist in preparing all necessary security documentation for all DHS HQ and Enterprise Systems to ensure the successful completion of Collateral or SCI-level security testing & evaluation (ST&E) and accreditation and ensure full Accreditations and issuance of Authority to Operate (ATOs) are established and maintained continuously for all DHS HQ and Enterprise Systems.
o Participate in meetings and technical exchanges with DHS HQ leadership, assessors, and authorizing officials to; remain abreast of current RMF Tools.
o Techniques and procedures; collaborate on current DHS HQ ATO projects and statuses, and; confirm understanding of new STIGS and their intent.
o Conduct and report results of security-related analyses, evaluations, risk assessments, and other activities supporting requirements to update or establish new Mission Systems or Mission Applications requested by DHS Functional Lead(s).
Attend Cybersecurity policy implementation meetings and briefings, and develop, provide, and deliver technical, operator, and customer training and briefings as required by the approving authority or as requested by Government Functional Lead(s).
o Prepare, collate, track, and manage all documentation comprising a Risk Management Framework (RMF) project Body of Evidence (BOE) and Security Assessment Package (SAP) through the RMF process in XACTA and EMASS (as applicable) to establish and maintain continuous ATO; documentation for each system will be managed in accordance with policy of the DHS HQ Configuration Management Team.
Primary
Qualifications:
o Must be able to obtain a DHS Security Clearance.
o Bachelor's degree with 10 or more years' experience in Certification and Accreditation (C&A) with DIACAP, DCID 6/3, ICD 503, and/or NIST Framework; additional years of related work experience may be considered in lieu of degree o Three (3) or more years' experience in Project Management o Experience with DHS, DoDIIS, and IC tools, systems, and reporting mechanisms/requirements for A&A.
.
o Practical knowledge of IC, DoD, and DHS Cybersecurity initiatives, and secure information/networking technologies.
o Demonstrated experience as an ISSO, ISSE, Package Submission Officer (PSO), Validators, and /or Security Controls Assessor (SCA) o Experience shepherding projects through the RMF process in XACTA and EMASS o Ensure compliance with DHS Standards and procedures.
o Good familiarity with and understanding of all relevant government and agency policies and procedures to ensure system documentation is compliance with relevant guidelines, e.
g.
, FedRAMP, RMF, FISMA, FIPS-II, NIST, etc.
o U.
S.
Citizenship is required.
Pay Range:
Pay Range $118,300.
00 - $182,000.
00 - $245,700.
00 The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary.
Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
#Remote Recommended Skills Configuration Management Implantable Cardioverter Defibrillator Leadership Networking Project Management Risk Analysis Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
