Emagine IT has an immediate need for a Security Assessor to join our team in support of our CMS contract located in North Bethesda, MD or Baltimore, MD.
Responsibilities include:
The Risk Assessor or Security Assessor is responsible for the overall success of the Assessment, and therefore will spend the Assessment Phase monitoring and supporting the other Assessors and performing administrative tasks while the Assessors focus on technical assessment. Security Assessors and/or Risk Assessors are those personnel that:
*Lead an individual system Security Assessment or Risk Assessment, including assessment scope, schedule, and resources.
*Assemble and manage the assessment team and their performance.
*Manage the production and delivery of all Assessment Team communications, artifacts, and deliverables to meet all CMS requirements for clarity, accuracy, legibility, content, and quality.
*Are responsible for delivering successful assessment outcomes.
Minimum Requirements:
*Must possess current minimum of one (1) of the following certifications: CISSP, CISA, CISM, and/or SANS GSNA.
*Must be qualified to perform security assessment activities in the assessment role(s) to which they are assigned.
*Must have or be able to obtain Security/Suitability Clearance of Level 6 (PT6).
*Must have at least five (5) years relevant professional experience in the Information Security / Cyber Security field.
*Must have experience successfully conducting security tests and assessments under the traditional SCA framework and/or the ACT framework at or for a federal agency or organization.
*Must possess demonstrable and deep knowledge of and working experience with applicable CMS and federal security standards, policies, procedures, and methodologies.
*Must possess a technical background in a wide array of technologies, network devices, hardware, and software, so that they understand and can discuss Application and Infrastructure vulnerabilities if discovered during an ACT assessment.
*Must have demonstrable ability to communicate complex technical and procedural topics clearly and succinctly in both verbal and written communications, and must be able to ensure that all communications, artifacts, and deliverables they produce meet all CMS requirements for clarity, accuracy, legibility, content, quality, etc.
*Must possess at least general knowledge about how security risk is calculated.
*Must be acceptably proficient in various common "soft skills" such as reading, writing, and oral communication in English.
AAP/EEO Statement
Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.
Other Duties
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.
Emagine IT is an information technology consulting services company that specializes in delivering technology solutions. Our reputation reflects the high quality of the talented Emagine IT team and the consultants working in partnership with our customers. Our mission is to understand and meet the needs of both our customers and consultants by delivering quality, value-added solutions. Our solutions are designed and managed to not only reduce costs, but to improve business processes, accelerate response time, improve services to end users, and give our customers a competitive edge, now and into the future.