Genwest Systems, Inc. is an information management and consulting firm headquartered in Edmonds, Washington. Since its inception, Genwest has been a recognized leader in the design and implementation of information systems and solutions. We depend on a diverse team of talented staff to design, develop, and deploy rapid information solutions for our clients. We believe that building a team with diverse educational, cultural and experiential backgrounds makes for a better work environment for our team members, the best products for our clients and the most robust dialogue within the company.
Genwest Systems Inc., an equal opportunity employer, is currently advertising for a position providing Information System Security Officer Support, supporting our clients in the National Oceanic and Atmospheric Administration (NOAA) Office of Response and Restoration (OR&R) at the Western Regional Center in Seattle, WA
The Information System Security Officer Support is responsible for the development, implementation, and maintenance of an information technology security program consistent with the United States Federal government-wide laws, regulations, policies, procedures, and standards. Will develop and maintain assessment and authorization (A&A) documentation; assist in the development and maintenance of system security plans, policies, procedures, and best practices. Validate implementation of all security policies, plans, and procedures; and provide system-level monitoring and compliance reporting. Assist information technology system administrators by describing weaknesses, creating the mitigation plans and vetting potential remediation. If there are no immediate solutions, then perform a risk assessment to document risk acceptance. Will monitor, evaluate, respond, and report on security threats and assist in annual testing of contingency/disaster recovery plans. Qualified candidates should have exceptional communication skills and experience organizing and preparing security documentation and plans for Federal programs.
- Four (4+) years of experience in information technology security.
- Working knowledge of Federal government, A&A practices and policies
- Knowledgeable on FISMA, Risk Management Framework, Cybersecurity Framework, and FedRAMP and government-wide laws, regulations, policies, procedures, and standards
- Working knowledge of National Institute of Standard and Technology (NIST) 800 Series and particularly NIST SP 800-37, and NIST 800-53.
- Complete, maintain and/or support the completion and updates of all FISMA required documentation to include but not limited to System Security Plans (SSPs), Risk Assessment Reports, Configuration Management Plan, Continuous Monitoring Plan, Contingency Plan and Test Plan, Information Technology Incident Response Plan, Security Education and Training Plan, Privacy Threshold and Impact Assessment, and e-Authentication Threshold and Risk Assessment.
- Support all Security Authorization Process, Security Control Assessment and Ongoing Authorization activities as directed by the Federal Government for assigned systems
- Ensure that weaknesses are identified, documented, addressed and remediated through the process of POA&Ms.
- Manage POA&Ms in the Cyber Security Assessment and Management (CSAM) or equivalent system.
- Ensure changes do not detract from the current security configuration or state of the system/environment and ensure all changes should maintain or improve overall security
- Experience performing vulnerability analysis of the Nessus scan results and working with the system administrators to resolve the vulnerabilities or to develop a System corrective action plan.
- Ensure all FISMA security controls and requirements are met at inception and throughout system development.
- Must have excellent communication skills and be able to collaborate with information technology system administrators, information technology managers, and senior mission and business managers.
- Must have excellent time management skills to manage time and changing priorities.
- Certifications relating to IT security (CISSP, CAP, Security+, GIAC, CEH, TNCP, ITILv2). PMP or equivalent preferred.
- Candidates must be able to pass a full background investigation and obtain a security badge to enter the applicable government facility.
Bachelor’s Degree in Computer Science, Software Engineering, or other related discipline preferred.
Applicants must have strong skills in understanding and communicating complex concepts, problem solving, and working effectively and patiently as part of high performing team with high expectations, and diverse views and opinions.
Compensation will be determined based on the experience and qualifications of the successful applicant in combination with contract budget. The position is eligible for the Genwest full-time benefit package that includes health insurance, paid personal and holiday leave, 401(k) program eligibility, and employee disability and life insurance.
Please email a resume and 3 references to firstname.lastname@example.org. Please include a cover letter, your resume and references in a single .pdf (Adobe Acrobat) attachment with your name included in the .pdf file name. Also, please include the words, “ISSO Support” in the subject line of your email.
Applicants selected for interviews will be contacted via email. The position will remain open until filled, with priority given to applications received by October 31, 2018.