activities. -Manage POA&M activities related to ATO Asset where possible in completing POA&M activities. -Ensuring the implementation of DOE and NNSA cybersecurity policies and procedures for designated information systems Conducting the Assessment and Authorization (A&A) activities for designated systems -Documenting the implementation of protection measures within the security plan for the systems -Ensuring the appropriate … is provisioned for users of designated systems. -Work to establish and maintain Configuration Management of documentation Identifying, assessing, and documenting threats and risks to designated systems. Capturing and maintaining information system security artifacts. -Work to establish and maintain Configuration Management of documentation. -Conducting cybersecurity tests and assessments and providing results of these activities to the ISSM. -Evaluating the … security impact and recommending implementation strategies for security significant changes to the assigned info Identifying cyber security training needs in terms of job responsibilities or roles. -Conducting information system risk assessments. -Responding to and reporting of incidents related to their assigned information systems. -Development of security processes and procedures to support the ISSM's More ❯
measures, and Ensuring that these mitigation measures are properly implemented, and validating them for any project involving critical assets Monitor the performance of cybersecurity suppliers and services, ensure Cyber Security Insurance is appropriate to meet UK requirements Participate in the management of major Cyber incidents and crisis concerning technology assets, monitor and implement associated action plans Raise awareness of … Cyber risks, particularly among Division/UK top management and Technology contacts (development security, application security Deploy a Cyber Essentials Plus program to address all in scope services across the UK, Participate in the European NIS2 program as appropriate Create training material and other resources to influence user behaviour for adoption of security policy and process What … are the requirements? Extensive experience in leading IT Security activities in complex, multi-site environments that have operational technology elements. CISSP (Certified Information Systems Security Professional) Microsoft certifications and/or network qualifications ITIL Foundation Must have a sound knowledge of risk management, compliance frameworks, integrating security into projects, developing and monitoring indicators and executing action More ❯
BCT is seeking an ISSO to serve as a principal advisor to the Government on all matters, technical and otherwise, involving the security of an Information System (IS) A career at BCT-LLC says you want to contribute and make a difference to something larger than yourself where success results from the dedication our team members have in … culture that thrives on teamwork, we invite you to explore this career opportunity to join us. Role Description: o Provide the detailed knowledge and expertise required to manage the security aspects of an IS. Maintain responsibility for the day-to-day security operations of the system. Responsibilities may also include: o Security Control Validation Visits o Secure … Configuration and Change management o Event Management o Account Management o Vulnerability Management o Security Incident Management o POA&M Management o Reauthorization o Decommissioning o Collaborate with the System Owner to maintain Approval to Operate (ATO), including the resolution of any Plans of Action & Milestones (POA&M) documents issued by the DAO. o Maintain and validate account and More ❯
jij de luchthaven van vandaag en morgen helpen vormgeven? Stop met dromen en kom ons team versterken! Om ons departement Operations te versterken, zijn we op zoek naar een SecurityInformation Officer. More ❯
Job Type Full-time Description A SECURITY CLEARANCE AND POLYGRAPH ARE REQUIRED This opportunity supports an Enterprise IT contract with a team of 60+ engineers responsible for the architecture, engineering, integration, operations, maintenance and sustainment of a world-wide multi-level/multiple classification Enterprise IT environment enabling collaboration between the US and Foreign parties. This Enterprise architecture serves … as a gateway for the deployment of new network, enterprise software, and SIGINT applications into a custom global collaboration environment. Cross domain security, user access controls and continuous monitoring are critical to the success of the program. Requirements Bachelor's degree in Computer Science or related discipline from an accredited college or university is required. Four (4) years of … an ISSO on programs and contracts of similar scope, type and complexity is required. Experience is to include at least three (3) of the following areas: knowledge of current security tools, hardware/software security implementation, communication protocols; and encryption techniques/tools. One (1) year experience in Enterprise IT systems and projects. Managing and performing integration operations More ❯
LatteArt, ScanBoy, Biscotti, Sear,Exacta Provide System Security Plan life cycle support. Institute Zero Trust framework. Familiarization with LatteArt, Biscotti and other security related apps and RMF processes Security Clearance Required: TS/SCI with Poly About Avid Technology Professionals Avid Technology Professionals, LLC (ATP) is a premiere provider of software and systems engineering, and acquisition program More ❯
