Job ID 2020-4087 Senior Cybersecurity Compliance Specialist
Colorado Springs, CO, USA
Job ID 2020-4087
OBXtek Inc. is an established, award-winning business providing information technology and professional management services to the federal government. Our corporate growth has coincided with our investment in our employees as well as in outreach to our civilian and military community.
OBXtek is currently staffing for a Senior Cybersecurity Compliance Specialist to plan and execute a risk-based cybersecurity Assessment and Authorization (A&A) program.
They will also manage and support the Information Assurance A&A Process for all information systems, enclaves, and application systems.
In addition, prepare A&A documentation updates, conduct validation activities, track and monitor identified weaknesses within POA&Ms, and compile validation results in the A&A scorecard.
Provide integrated support to system and application owners and assist Information System Security Officers (ISSO), as well as support reporting, briefings and analysis.
Provide a recommended authorization determination based on the validation activities.
Prepare A&A final documentation for signature.
Maintain situational awareness of IA posture (including PO&AM updates), conduct reviews annually, and work with the system owner to initiate recertification if required.
Ensure that the A&A documentation and reporting is updated and maintained to reflect changes.
Support Federal Information Security Management Act (FISMA) reporting.
Provide oversight and review of customer's A&A packages to ensure adherence to requirements and assess risk.
Identify system vulnerabilities and determine security risk.
Perform vulnerability scanning of all assets and harden OS/COTS/database products for security compliance.
Scan all web applications and web services for vulnerabilities and compliance
Review network devices and certificate expiration for vulnerabilities and failed compliance
Track and follow-up on all security incidents until resolution.
Manage the Privileged Access Request (PAR) and Privileged User Processes.
Fifteen (15) years of experience providing IT security services
Experience preparing A&A documentation and packages and supporting authorization to operate (ATO) efforts
Experience providing security services in support Agile software development, DevSecOps and CI/CD integration
Knowledge of Agile methodologies and experience on a project using Agile methodology
Experience with Operating Systems (examples include Windows, Linux and Unix)
Headquartered in McLean, Virginia and founded in 2009, OBXtek is a fast-growing leader in the government contracting field. Our mission is Our People...Our Reputation. Our people are trained professionals who enhance our customers' knowledge and innovation using technology, collaboration, and education.
We offer a robust suite of benefits including comprehensive medical, dental and vision plans, Flexible Spending Accounts, matching 401K, paid time off, tuition reimbursement plans and much more.
As a prime contractor for 93% of our current work, OBXtek pairs lessons learned across disciplines with industry standard quality practices such as CMMI-Dev Level III, ITIL, 6Sigma, PMI, and ISO. Our rapid growth has been recognized by INC500, the Washington Business Journal, and Washington Technology magazine.
OBXtek is an Equal Opportunity Employer and does not discriminate based on race, color, religion, sex, age, national origin, gender identity, disability, veteran status, sexual orientation or any other classification protected by federal, state or local law.
OBXtek is a human-driven cybersecurity, logistics, intelligence, and information technology company that pledges excellence and honesty throughout our engagements. OBXtek's accomplished teams have an established reputation for consistently and efficiently achieving goals for our portfolio of federal government customers.