Cloud Security Control Assessor Liaison (SCA-L)
Falconwood Inc.

Job Info

---

Overview

Falconwood is a woman-owned / veteran-owned company providing consultation and programmatic support to Department of Defense (DoD) Information Technology (IT) initiatives and programs. We provide expert advice and consultation on a diverse range of IT subjects, focusing on acquisition, cybersecurity, engineering, logistics, and process development.

Provide Risk Management Framework (RMF) support for PEO Digital Cloud authorizations. The SCA-L is a key role in the RMF process and is responsible for assessing the security controls using appropriate assessment procedures to determine the extent to which the controls are: implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system.
Responsibilities

• Assess approved technical and non-technical security features of a system or network to address known threats and vulnerabilities in accordance with the approved Security Assessment Plan (SAP)
• Independently recommend aggregate cybersecurity risk certification to the SCA
• Participate when PSO or programs opt to have Checkpoint meetings, and provide RMF Subject Matter Expert (SME) guidance and initial approval on behalf of the SCA.
• Provide initial concurrence on the SAP, ensuring all appropriate security controls will be assessed for compliance.
• Provide quality assurance of an RMF SAP related to cybersecurity risk
• Provide approval recommendation of the SAR to the SCA
• Review and concur/non-concur with the Validator's residual risk assessment
• Review and assess individual vulnerabilities in the POA&M, ensuring the factors taken into consideration arrived at appropriate risk.

Qualifications

• Minimum SECRET Clearance
• Bachelor's degree in Computer Science, software engineering, systems engineering, information systems, or related fields. (or relevant experience
• IT security certification such as Security+ or CISSP
• 5-10 years of experience
• Familiar with Cloud technologies, Risk Management Framework, vulnerability scanning, Security Technical Implementation Guides, Unix/Windows, monitoring, and securities systems infrastructure, Microsoft Office suite, network operating systems, databases, encryption, knowledge of audit functions, and security compliance
• Up to 10 days travel per year to support RMF Summits

Pay Range

$110-140K annually.

This job has expired.