We are seeking an IA Policy and Compliance Certified Professional to join our team supporting U.S. Army Human Resources Command (HRC) team in Fort Knox, KY.
TekSynap is a fast-growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well planned information management environment. “Technology moving at the speed of thought” embodies these principles - the need to nimbly utilize the best that information technology offers to meet the business needs of our Federal Government customers.
We offer our full-time employees a competitive benefits package to include health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays.
Visit us at www.TekSynap.com.
Apply now to explore jobs with us!
The safety and health of our employees is of the utmost importance. Employees are required to comply with any vaccination requirements mandated by contract, applicable law or regulation.
By applying to a role at TekSynap you are providing consent to receive text messages regarding your interview and employment status. If at any time you would like to opt out of text messaging, respond "STOP".
RESPONSIBILITIES
- Perform Certification and Accreditation (C&A) or other IA/CND Compliance and Auditing processes and inspections for all enterprise systems and networks.
- Ensure validity and accuracy review of all associated documentation.
- Perform compliance reviews of computer security plans, perform risk assessments, and perform security test evaluations and audits.
- Analyze security requirements for information protection for enterprise systems and networks.
- Assist in the development of security policies.
- Analyze the sensitivity of information and perform vulnerability and risk assessments on the basis of defined sensitivity and information flow.
- Conduct and support Traditional Security Reviews (assessments, evaluations, audits) as required and determined by Cybersecurity.
- Identify and make on the spot corrections to deficiencies and educate the user on current security standards/requirements IAW current cyber guidelines and DoD compliance standards.
- Support assessments, evaluations, and audits for HRC-supported Information Systems (ISs).
- Review areas including IT Infrastructure, Applications, Databases, and processes that support the HRC Mission.
- Provide support, technical guidance, and expertise in the areas of Cybersecurity to support HRC, USACC, USAREC, ASB, AEMO, NGB staff, IMOs, ISSOs, IS Owners, Software Developers, Network System, and Database Administrators.
- Deliver results through reports, briefs, and other required deliverables to the appropriate Government representative.
- Coordinate the collection, validation, and upload of RMF documentation artifacts into the eMASS portal and internal tracking mechanisms for all authorization boundaries and application ATOs.
- Coordinate and manage RMDs to include Plans of Action and Milestones (POA&Ms), Risk Acceptance (RAC), Memorandum for Records (MFRs), Operational Impact Statements (OIS) and Waivers for all assigned boundaries and application ATOs for approving signature and deliver to the assigned Government representative.
- Review and validate compliance or non-compliance IAW CCI, STIGs and SRGs for each finding or vulnerability IAW RMF.
- Review and validate all supporting documentation required to meet Federal Information Security Management Act (FISMA) and National Institute of Standards and Technology (NIST) compliance, including the System Security Plan (SSP), Threat Model, System Views 1 and 2, Incident Response Plan, Business Impact Analysis, and After-Action Report.
- Ensure all supporting documentation for the maintenance of the Army Portfolio Management Solution (APMS) application records is reviewed and validated.
- Conduct security control, Security Technical Implementation Guide (STIG) and all other Army directed compliance validation inspections in accordance with RMF procedures.
- Review and update as needed all assigned Non-Secure Internet Protocol Router Network (NIPRnet) and Secure Internet Protocol Router Network (SIPRnet) TSPs and provide the updated TSPs to the assigned Government representative.
- Support the RMF Assess Only process by following documented requirements and validating risk analysis and assessments on software and hardware requests not listed in the approved product catalog.
- Utilize triage worksheets and approved tracking tools or ticket processes for Information System Security Manager (ISSM) approval or disapproval.
REQUIRED QUALIFICATIONS
- Experience:
- At least five (5) years of experience
- Education:
- Certifications:
- DoD Approved 8570 Baseline Certification: Category IAT Level II (One of the following):
- CCNA Security
- CySA+ **
- GICSP
- GSEC
- Security+ CE
- SSCP
- CND
- CASP+ CE
- CCNP Security
- CISA
- CISSP (or Associate)
- GCED
- GCIH
- CCSP
- Relevant CE cert
- Clearance:
- Must possess a Secret Clearance
WORK ENVIRONMENT AND PHYSICAL DEMANDS
The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of the job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
- Location: Remote within driving distance of Fort Knox, Kentucky
- Type of environment: Remote
- Noise level: Medium
- Work schedule: Schedule is day shift Monday - Friday. May be requested to work evenings and weekends to meet program and contract needs.
- Amount of Travel: Less than 10%
PHYSICAL DEMANDS
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to use hands to handle, feel, touch; reach with hands and arms; talk and hear. The employee is regularly required to stand; walk; sit; climb or balance; and stoop, kneel, crouch, or crawl. The employee is regularly required to lift up to 10 pounds. The employee is frequently required to lift up to 25 pounds; and up to 50 pounds. The vision requirements include close vision, distance vision, peripheral vision, depth perception, and ability to adjust focus.
WORK AUTHORIZATION/SECURITY CLEARANCE
U.S. Citizen
Secret clearance
OTHER DUTIES
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.
EQUAL EMPLOYMENT OPPORTUNITY
In order to provide equal employment and advancement opportunities to all individuals, employment decisions will be based on merit, qualifications, and abilities. TekSynap does not discriminate against any person because of race, color, creed, religion, sex, sexual orientation, gender identity, protected veteran status, national origin, disability, age, genetic information or any other characteristic protected by law (referred to as “protected status”). This nondiscrimination policy extends to all terms, conditions, and privileges of employment as well as the use of all company facilities, participation in all company-sponsored activities, and all employment actions such as promotions, compensation, benefits, and termination of employment.
TekSynap is committed to ensuring that our online application process provides an equal employment opportunity to all job seekers, including individuals with disabilities. If you believe you need a reasonable accommodation in order to search for a job opening or to submit an application, please contact hr@teksynap.com for assistance.