Yesterday
Secret
Early Career (2+ yrs experience)
$90,000
No Traveling
IT - Security
Remote/Hybrid•Norfolk, VA (Off-Site/Hybrid)
Position – Information Security Risk Specialist
Location – HYBRID - Norfolk, VA 2-3 days and the other days will be offsite.
Pay Rate – $82,000 - $89,000
Contract – 3 ½ Years
**Must have at least a Secret Clearance
Mindbank Consulting Group has an immediate need for an Information Security Risk Specialist to work with the United States Navy to discover their cyber risks, understand applicable policies, and develop a mitigation plan. The Information Security Risk Specialist will get technical, environmental, and personnel details from system and application SMEs to assess the entire threat landscape. The Information Security Risk Specialist will then help the team guide the client through a plan of action with presentations, whitepapers, and milestones. This is your opportunity to take an active role in information security while growing your skills in Risk Management Framework (RMF), Information Assurance, and Assessment and Authorization.
Work with us as we protect our military's training and education infrastructure.
Information Security Risk Specialist Responsibilities:
• Work on translating security concepts for the client so they can make the best decisions to secure their mission critical systems, infrastructure, and applications. Provide on-site CS/IA technical expertise in areas including Account Management, CS and Information Systems security policy, Incidents and Spillages, and IS Assessment and Authorization (A&A) utilizing the Risk Management Framework (RMF).
• Perform reviews on Security Plan artifacts to include System Contingency Plans, Incident Response Plans, Disaster Recovery Plans, Vulnerability and Patch Management Plans, and Privacy Impact Assessments.
• Participate in weekly communications with Navy Authorization Official (NAO) to discuss status of current NETC RMF Packages in review, upcoming packages, and implementation of any upcoming Navy RMF Practices.
• Conduct risk analysis from ACAS/Nessus vulnerability scans, compliance scans, DISA STIG Checklists, and other audit activities.
• Perform security testing and evaluation of applications against applicable security criteria using tools including ACAS, SCAP Compliance Checker, and DISA STIGs.
• Produce security testing reports, including Security Risk Assessment Reports detailing the findings noted during testing.
• Assist programs with completing security documentation to meet assessment and authorization requirements.
• Utilize eMASS to develop Security Plan, Security Control Documentation, upload Security Plan artifacts.
Information Security Risk Specialist Qualifications:
• 2+ years of experience with DoD Cybersecurity, Information Assurance, and Risk Management Framework (RMF)
• Experience with system and network vulnerability analysis, risk assessment and risk mitigation analyses, contingency planning, and firewall policy, ports, and protocols
• IAT or IAM Level II Certification such as Security+ CE, CISM, CISSP, or CASP Certification
• Secret Clearance
• High School diploma or GED
• Experience with Xacta, eMASS, ACAS, VRAM, HBSS, and Altiris is a plus
• Navy experience is a plus
Why should you work for Mindbank?
Since 1986, Mindbank has helped hundreds of clients solve some of the most complex IT problems through the strategic implementation of solutions and resources. Our clients include US Federal agencies, State & Local Governments, Tribal Organizations, Fortune 1000 companies, as well as Small Businesses.
Mindbank believes that our employees deserve the best care that our company can provide. We offer our employees a comprehensive and competitive benefits package including:
• Medical Insurance
• Dental Insurance
• Vision Insurance
• Life Insurance
• Long Term Disability
• Short Term Disability
• 401 (k) Plan
• Paid Time Off
• Training and Education Reimbursement
• Referral Bonuses
As an Equal Opportunity Employer, Mindbank is committed to a diverse workforce and we seek the most qualified candidate for each opening without regard to race, color, religion, age, gender, gender identity, marital status, sexual orientation, national origin, protected veteran status, or disability status.
Location – HYBRID - Norfolk, VA 2-3 days and the other days will be offsite.
Pay Rate – $82,000 - $89,000
Contract – 3 ½ Years
**Must have at least a Secret Clearance
Mindbank Consulting Group has an immediate need for an Information Security Risk Specialist to work with the United States Navy to discover their cyber risks, understand applicable policies, and develop a mitigation plan. The Information Security Risk Specialist will get technical, environmental, and personnel details from system and application SMEs to assess the entire threat landscape. The Information Security Risk Specialist will then help the team guide the client through a plan of action with presentations, whitepapers, and milestones. This is your opportunity to take an active role in information security while growing your skills in Risk Management Framework (RMF), Information Assurance, and Assessment and Authorization.
Work with us as we protect our military's training and education infrastructure.
Information Security Risk Specialist Responsibilities:
• Work on translating security concepts for the client so they can make the best decisions to secure their mission critical systems, infrastructure, and applications. Provide on-site CS/IA technical expertise in areas including Account Management, CS and Information Systems security policy, Incidents and Spillages, and IS Assessment and Authorization (A&A) utilizing the Risk Management Framework (RMF).
• Perform reviews on Security Plan artifacts to include System Contingency Plans, Incident Response Plans, Disaster Recovery Plans, Vulnerability and Patch Management Plans, and Privacy Impact Assessments.
• Participate in weekly communications with Navy Authorization Official (NAO) to discuss status of current NETC RMF Packages in review, upcoming packages, and implementation of any upcoming Navy RMF Practices.
• Conduct risk analysis from ACAS/Nessus vulnerability scans, compliance scans, DISA STIG Checklists, and other audit activities.
• Perform security testing and evaluation of applications against applicable security criteria using tools including ACAS, SCAP Compliance Checker, and DISA STIGs.
• Produce security testing reports, including Security Risk Assessment Reports detailing the findings noted during testing.
• Assist programs with completing security documentation to meet assessment and authorization requirements.
• Utilize eMASS to develop Security Plan, Security Control Documentation, upload Security Plan artifacts.
Information Security Risk Specialist Qualifications:
• 2+ years of experience with DoD Cybersecurity, Information Assurance, and Risk Management Framework (RMF)
• Experience with system and network vulnerability analysis, risk assessment and risk mitigation analyses, contingency planning, and firewall policy, ports, and protocols
• IAT or IAM Level II Certification such as Security+ CE, CISM, CISSP, or CASP Certification
• Secret Clearance
• High School diploma or GED
• Experience with Xacta, eMASS, ACAS, VRAM, HBSS, and Altiris is a plus
• Navy experience is a plus
Why should you work for Mindbank?
Since 1986, Mindbank has helped hundreds of clients solve some of the most complex IT problems through the strategic implementation of solutions and resources. Our clients include US Federal agencies, State & Local Governments, Tribal Organizations, Fortune 1000 companies, as well as Small Businesses.
Mindbank believes that our employees deserve the best care that our company can provide. We offer our employees a comprehensive and competitive benefits package including:
• Medical Insurance
• Dental Insurance
• Vision Insurance
• Life Insurance
• Long Term Disability
• Short Term Disability
• 401 (k) Plan
• Paid Time Off
• Training and Education Reimbursement
• Referral Bonuses
As an Equal Opportunity Employer, Mindbank is committed to a diverse workforce and we seek the most qualified candidate for each opening without regard to race, color, religion, age, gender, gender identity, marital status, sexual orientation, national origin, protected veteran status, or disability status.
group id: mbank
