Hi,
We are looking for a Sr. Security Governance Consultant , Baltimore, MD (Onsite) . Kindly send me your updated profile and I am looking forward to work with you in this position.
Job Title: Sr. Security Governance Consultant
Location: Baltimore, MD (Onsite).
Duration: Long Term Position
Job Description:
Duties:
1. As a key participant within a Security Governance Team, will share responsibilities for conducting ISSO and Assessor duties in the System Assessments and Authorization (SA&A) process and maintaining continuous Approval To Operate (ATO) for various environments and applications.
2. Perform Certification & Accreditation (C&A), System Assessment & Authorization (SA&A) as part of NIST SP 800-37 Risk Management Framework (RMF) system and application accreditation.
3. Prepare vulnerability scanning test plans, coordinate testing, and conduct scans using Nessus, WebInspect and other scan applications.
4. Analyze vulnerability scan results for validation and root cause.
5. Perform security system event analysis, investigation, and validation.
6. Provide incident response to classification spills, malware infection, misconfiguration exposure, internal inappropriate behavior and technical issue .
7. Participate in Lifecycle Management (LCM) Technical Change Control Boards (TCCB) providing technical guidance for security control compliance.
Experience:
*At least seven (7) years of experience in system and application Certification &
Accreditation (C&A, System Assessment & Authorization (SA&A, and Independent
Validation and Verification (IV&V).
*At least seven (7) years of experience in security system monitoring, syslog and
traffic analysis, and incident response.
*At least five (5) years of experience in developing and maintaining standard operating
procedures and work instructions.
*At least three (3) years of experience in fulfilling the role of Information System
Security Officer (ISSO).
•AWS Cloud Certification is preferred.
Cloud Security Knowledge is a plus.