Senior Control Assessment Analyst at Edgewater Federal Solutions, Inc.
, District of Columbia, United States -
Full Time


Start Date

Immediate

Expiry Date

24 Mar, 26

Salary

0.0

Posted On

24 Dec, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Security Assessments, Vulnerability Identification, Remediation Strategies, Risk Management Framework, Compliance Programs, Risk Assessments, Cybersecurity, Data Privacy, Authorization to Operate, Training and Awareness, Metrics Development, Regulatory Communication, Inventory Management, Analytical Skills, Project Management

Industry

Information Technology & Services

Description
Overview Edgewater is seeking the services of a Sr. Controls Assessment Analyst to conduct security assessments, identify vulnerabilities, document findings, and propose remediation strategies to address any identified security gaps. Knowledge of working with system owners, support teams, developers, vendors, and other stakeholders as necessary to conduct control assessments. The work will be performed onsite in Washington, DC. Responsibilities Senior experience ensuring that plans of action and milestones (POAMs) are properly tracked, managed, and remediated as well as in assisting with inventory management for security and privacy assets. Skilled in supporting training and awareness activities by developing metrics and producing reports on program effectiveness. The successful candidate is self-motivated, has strong analytical skills, possesses the ability to learn quickly and can handle multiple projects simultaneously. Qualifications All candidates must be US citizens. At least five years of experience performing the functions associated with this labor category. Understanding of relevant laws and regulations, such as NIST guidance and OMB memoranda. This includes knowledge of the NIST Risk Management Framework and familiarity with key publications like NIST SP 800-37, 800-53, and 800-171. Experience conducting security assessments on federal systems. Experience assessing and mitigating risks associated with cybersecurity and data privacy. Experience developing and implementing compliance programs, conducting risk assessments, and advising on compliance-related issues. Experience with the system Authorization to Operate process, including understanding the documentation required, the levels of approval needed, and the most effective ways to manage this process within a federal environment. Basic understanding of procurement processes and contract language requirements for federal mandates. Experience communicating complex regulatory and compliance information in a clear and concise manner. Experience tracking and reporting on training and awareness program performance, including calculating metrics to help measure the effectiveness of security, privacy, and social engineering training. Additional benefits include: Paid Time Off & Holiday Pay Medical Insurance Dental Insurance Vision Insurance Disability, Life Insurance, and AD&D Flexible Spending Accounts Pre-Tax 401K and/or After-Tax Roth IRA (with employer matching contribution) Tuition and Technical Training Reimbursement Exercise Reimbursement Employee Assistance Program About Us: Edgewater Federal Solutions is a privately held government contracting firm located in Frederick, MD. The company was founded in 2002 with the vision of being highly recognized and admired for supporting customer missions through employee empowerment, exceptional services and timely delivery. Edgewater Federal Solutions is ISO 9001, 20000-1, 270001 certified, appraised at CMMI Level 3 Maturity for Development and Services, and has been named in the Top Workplaces in the Greater Washington Area Small Companies for 2018 through 2025. It has been and continues to be the policy of Edgewater Federal Solutions to provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, marital status, veteran status, and/or other statuses protected by applicable law. #LI-SW1
Responsibilities
The Senior Control Assessment Analyst will conduct security assessments, identify vulnerabilities, document findings, and propose remediation strategies. They will also ensure that plans of action and milestones are tracked and managed effectively.
Loading...