Softtek Government Solutions is seeking a POAM Project Manager/Security Assurance Analyst to support our government client.
Overview:
The POAM Project Manager will work with the ISSOs, ITPMs, Information System Owner, Product owners, DBAs, developers, system architects and testers to ensure the assigned systems are security compliant and achieve/maintain. Authority to Operate (ATO). This includes following the RMF process for full test, partial test, CONMON and no test. Updating documentation including System Security Plans (SSPs), Security Control Traceability Matrix (SCTM), and Plan of Action and Milestones (POA&Ms). Continuous Monitoring – Plan of Action& Milestones (POAMs) – Working with engineers to resolve formal security findings from the security assessment and/or the scans and maintain the POAM. Assists with implementation of STIG checklists and mitigates scan findings. Ensure system processes and procedures are developed with security compliance built in. Supporting security assessment events and responding to all questions from System and Product Owners, and ISSOs.
Required Skills/Experience:
- Bachelor’s degree in related field of study with 8 or more years of experience.
- Additional experience may be considered in lieu of degree. At least three (3) years of direct experience with and strong working knowledge of FISMA and NIST Information Security Guides. Six (6) –eight (8) years of experience working in an Information Security capacity is required for this position with demonstrated working knowledge of Information Security and regulatory standards as applicable to common frameworks, requirements, and best practices.
- Excellent active listening and verbal communication skills
- Strong business writing ability
- Flexible and adaptable attitude
- Can conform to shifting priorities, demands, and timelines
- Ability to elicit cooperation from a wide variety of stakeholders
- Ability to discuss technical issues with non-technical, executive-level government officials
- Leading and mentoring teams
Desired Skills/Experience:
- The ability to communicate effectively with clients and team members and work efficiently to resolve time sensitive issues is a must.
- Experience with performing Security Control Assessment in compliance with NIST SP 800- 37, NISTSP 800-53, NIST SP800-53A, and other NIST 800 guide series.
- Experience with risk analysis and assessment determinations incorporating system/mission owner, and unique operational constraints.
About Softtek Government Solutions
Softtek Government Solutions is a professional services firm focused on addressing our nation’s most complex threats and challenges. As a small business we’re committed to supporting our clients’ missions with services delivered by our diverse and experienced staff. With expertise in cybersecurity, emergency preparedness, and public health, our experience base spans federal, state, and local governments, as well as private sector entities.
Softtek Government Solutions encourages collaborative communication and ongoing learning. Some of our benefits include:
- Extensive training programs
- Gym membership reimbursement
- Education reimbursement
- Technology benefits
- Commuter benefits
- Generous paid time off and much more!
Softtek Government Solutions is an Equal Opportunity Employer (EOE)