FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.
Information System Security Officer – Assessment & Authorization
Dragonfli GroupCybersecurity role managing security assessments and compliance for a federal agency's IT systems. Lead initiatives in NIST RMF, ISO standards, and GRC tools.
Tech Stack
Tools & technologiesCloud
About the role
Key responsibilities & impact- Manage security assessments for a variety of applications and domains, including cloud computing environments
- Lead multiple large, complex, high-risk security assessment initiatives concurrently
- Implement security controls and verify control effectiveness in alignment with NIST RMF and ISO standards
- Conduct risk assessments and document compliance measures to meet organizational and regulatory requirements
- Evaluate, validate, and support documentation required for A&A and accreditation activities for new and existing IT systems
- Ensure appropriate treatment of risk, compliance, and assurance from internal and external perspectives
- Support development of actionable security blueprints, principles, models, designs, standards, and guidelines
- Apply security architecture principles and best practices to help design and maintain secure IT infrastructures aligned to A&A policies
- Use network and vulnerability scanning tools to interrogate systems for configuration and security status
- Utilize GRC tools to manage and track A&A workflows, artifacts, and approvals
- Serve as an A&A subject matter expert, providing guidance to stakeholders, business units, and new A&A resources
- Build and maintain schedules and step-by-step action plans; brief cross-functional teams and executives on status and risk
Requirements
What you’ll need- Experience managing security assessments across multiple applications/domains, including cloud computing
- Demonstrated proficiency implementing security controls and conducting risk assessments
- Demonstrated proficiency documenting compliance measures based on NIST RMF and ISO standards
- Demonstrated experience evaluating and supporting A&A documentation, validation, and accreditation activities for IT systems
- Demonstrated ability to ensure appropriate treatment of risk, compliance, and assurance from internal and external perspectives
- Experience supporting development of security blueprints, standards, guidelines, and architecture-aligned security designs
- Experience with network and vulnerability scanning tools/technologies to assess system configuration and status
- In-depth understanding of security architecture principles and best practices for secure IT infrastructure
- Demonstrated proficiency using GRC tools to manage A&A processes
- Strong organizational skills, including building schedules and step-by-step action plans
- Effective communication and collaboration skills, including ability to brief executives
- U.S. Citizenship or Permanent Residency required; all work must be performed within the continental U.S.
Benefits
Comp & perks- Insurance – health, dental, and vision
- Paid Time Off (PTO) and 11 Federal Holidays
- 401(k) employer match
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
security assessmentssecurity controlsrisk assessmentsNIST RMFISO standardsA&A documentationaccreditation activitiessecurity architecture principlesnetwork scanning toolsvulnerability scanning tools
Soft Skills
organizational skillseffective communicationcollaboration skillsguidance to stakeholdersbriefing executives