Anticipated Start Date:
January, 2010
Location of Work:
Requires Travel
Salary:
Salary commensurate with experience
Clearance Requirements:
National Agency Check and Inquires Credit Check (NACIC) or higher
Minimum Required Qualifications:
8+ years of Information Security related experience, CISSP preferred (not required) or equivalent certifications
Position Description:
MPG is seeking a candidate that has experience and knowledge of the Federal Information Security Management Act 2002 (FISMA) and the Certification and Accreditation Process in support of federal government systems. Strong written and communication skills are required. Candidate must be able to perform the following activities:
* Able to perform Independent 3rd Party Assessment in using NIST 800-53A guidance;
* Create Security Assessment Test Plan using guidance from NIST 800-37, NIST 800-53 and NIST 800-53A;
* Conduct formal Risk Analysis and provide recommended mitigation strategy for vulnerabilities identified during Security Control Assessments using NIST 800-30 and NIST 800-39
guidance;
* Perform Physical and Environmental Site inspections and document results;
* Conduct Independent scans of the application, network and database (where required);
* Prepare Security Assessment Report once assessments are complete;
* Create Plans of Action and Milestones (POAM); and
* Conduct manual and automated vulnerability assessments utilizing:
o The Security assessment based on NIST800-53/53A revision 3
o Web Inspect
o App Detective
o Nessus
o Open Web Application Security Project (OWASP) Top Ten Most Critical Web; Application Security Vulnerabilities)
- Location: Northern VA based, Requires Travel
- Compensation: Salary commensurate with experience
- Principals only. Recruiters, please don't contact this job poster.
- Please, no phone calls about this job!
- Please do not contact job poster about other services, products or commercial interests.