Security Compliance Specialist

Job ID 2018-1200
Job Locations US-Remote | US-MD-Baltimore

Overview

TISTA Science and Technology Corporation, a CMMI Maturity Level 3 company, focuses on delivering information technology and professional services to Federal and State agencies. TISTA is an Inc. 500 company, a recipient of the 2010 Top 100 Service-Disabled Veteran-Owned Businesses from Diversity Business, recognized in Washington Technology's FAST 50 list of the fastest growing small businesses in government contracting in 2012 & 2013, recognized as the Top 25 Fastest Growing Small Technology companies by the Washington Business Journal in 2014 & 2015, and selected as the Veteran Owned Company of the Year in 2014 by the Montgomery County MD Dept. of Economic Development.

 

Responsibilities

The Security Compliance Specialist on this project will be responsible for ensuring system FISMA compliance for an enterprise-wide program with applications. This position has significant responsibility for the quality of all deliverables, prepares and performs final reviews on selected, critical written communications documents; and regularly makes presentations on program progress. Expected to work independently as needed.

  • Review configuration change requests for information systems security relevance and FISMA compliance.
  • Support System Owner in planning and execution contingency planning, training, and annual exercises, execute, and document annual Contingency Plan training/test/exercise for the customer
  • Manage compliance reporting within the ARS 3.0 compliance framework
  • Work with a security architect to provide a compliance narrative for solutions that use novel architectures not accounted for within the compliance framework to provide functionally-equivalent controls
  • Demonstrated security-literacy and experience working from novel abstractions and adapting them to ecosystem modeling methodologies
  • Represent the company in meetings with key stakeholders and customers and align project deliverables with stakeholder organizational goals
  • Perform Reviews and evaluates programs and operations to determine adherence to policies and procedures Keeps management fully informed concerning security issues
  • Participate in security audits, risk analysis, vulnerability testing and security reviews Identify security issues and risks, and develop mitigation plans Leads the development and interpretation of security policies and procedures Contributes to the development of enterprise-wide security strategy
  • Work with development teams to identify functional requirements that drive security
  • Document all work appropriately in coordination with customer requirements and contractual deliverables Draft weekly status reports
  • Support system owner and ISSO within CMS as necessary to maintain FISMA compliance
  • Serve as the point of contact for all security incidents with in their area of responsibility and reports as appropriate to the CMS Incident Response Team.
  • Handles and investigates incidents in cooperation with and under direction of the system ISSO and ISPG

Qualifications

  • 5+ years of relevant (cyber/FISMA compliance) experience
  • 1-3 years’ experience with CMS Applications Security Compliance work
  • Knowledge and understanding of AWS infrastructure in relation to Security

 

Education:

  • Bachelor's Degree
  • Must possess a CISSP certification

 

Location: 

 

  • Remote (Occassional on-site meetings in Baltimore)

 

Here at TISTA Science and Technology we value our Veterans and encourage all to apply!

 


TISTA is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or protected veteran status.

 

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed