Social & Scientific Systems (S-3)

Senior Information Assurance Specialist

Location US-MD-Silver Spring
Job ID
2018-1724
Category
Information Technology/Programming
Type
Regular Full-Time

Overview

Social & Scientific Systems (SSS) works to improve public health worldwide by providing technical, research, and program management services to government, nonprofit, and commercial clients. The SSS team offers a synergy of expertise in clinical research services, epidemiology and public health studies, health data management and analysis, and program evaluation and policy analysis. Please join our dedicated staff of employee-owners in an environment that values diversity and supports health, well-being, and professional growth.

 

Information Assurance Specialist creates and manages documents associated with Certification & Accreditation packages; identify, report, and follow up on the resolution of security incidents to completion; maintain ITS policies pertaining to Information Security and monitor compliance with them; performs internal IT audits to ensure group compliance; and facilitates the resolution of security audit findings and POA&M items.

 

This position can be based in either Silver Spring, MD or Durham, NC.

Responsibilities

  • Work as team member on complex IT projects, focusing on information security and ensuring compliance with corporate policy and designated FISMA/NIST security levels.
  • Interacting with internal Information Technology Services, Information Security, and Application Development Staff to perform security duties, create and maintain documents for SC&A packages, monitoring and enforcing security SOPs/Policies and other duties, as required.
  • Act as Point Person for audits from internal and external customers. Coordinate actions with IT personnel to develop documentation artifacts and content for auditor as needed.
  • Coordinate and document resolution to security audit findings and POA&M items.
  • Develop Information Security SOPs/Processes and Working Procedures/Manuals.
  • Perform periodic audits on IT practices to confirm SOP/Policy compliance in the area of information security.
  • Ensure SOPs/policies are adhered to, and security incidents are properly reported, acted on, and documented.
  • Create Cyber Compliance Reporting for Executive-level consumption
  • Maintain currency with FISMA/NIST and other applicable regulations and security standards. Modify processes, procedures, templates, and associated documentation as needed.

Qualifications

  • Bachelor’s degree and five years of relevant work experience in information security of FISMA/NIST environments.
  • Expertise in the creation and maintenance of SC&A packages (Systems Security Plans, FIPS 199, Information Systems Contingency Plans)
  • Ability to work effectively on teams and with all levels of personnel.
  • Excellent oral and written communication skills.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Connect With Us!

Not ready to apply? Connect with us for general consideration.