Cyber Security Risk Assessor-Washington, DC
Apply NowCompany: Georgia IT, Inc.
Location: Washington, DC 20011
Description:
Job Title : Cyber Security Risk Assessor
Location : Washington, DC
Position Type : 1 Years
Interview mode : Phone
Rate : DOE
US Citizen, Green Card and GC EAD Preferred.
Job Description:
Subject Matter Expert (SME) in Risk Management Tools, Techniques and Methodologies and Frameworks.
SME in conducting IT RISK Evaluations, Assessments, and Reporting.
SME in Classifying and monitoring IT risks
SME in maintaining a Risk Register and Dashboard
Supplemental Duties 3.8.2.3.3. Level 3:
Expert level - Master's degree in Computer Science, Engineering or a related technical discipline, or the equivalent combination of education,
Technical training, or work/military experience 8+ years of related technical experience 3.8.2.1.1.
Serves as a lead cyber and information security consultant to the project team by conducting security risk assessments and providing guidance on securing information systems,
Applications, and networks 3.8.2.1.2.
Provides technical guidance and expertise in the areas of secure applications development, security risk management and assessment, security policies and standards, security
Architectures and implementations, and effective security risk assessment practices 3.8.2.1.3.
Performs application and technology design reviews, security risk assessments, requirements analysis, security testing oversight, risk remediation planning, and security project
Management 3.8.2.1.4. Develops, reviews, and implements security risk management policies, standards, and practices 3.8.2.1.5. Defines security and policy compliance requirements in supporting the acquisition and deployment of security software, systems, and services 3.8.2.1.6.
Provides guidance on the development and integration of a security development lifecycle (SDL) to include secure development, testing, and configuration of application and web architectures 3.8.2.1.7.
Review and assess vendors information security solutions and deliverables, including technologies and architectures, security controls and procedures, and contract documentation
Location : Washington, DC
Position Type : 1 Years
Interview mode : Phone
Rate : DOE
US Citizen, Green Card and GC EAD Preferred.
Job Description:
Subject Matter Expert (SME) in Risk Management Tools, Techniques and Methodologies and Frameworks.
SME in conducting IT RISK Evaluations, Assessments, and Reporting.
SME in Classifying and monitoring IT risks
SME in maintaining a Risk Register and Dashboard
Supplemental Duties 3.8.2.3.3. Level 3:
Expert level - Master's degree in Computer Science, Engineering or a related technical discipline, or the equivalent combination of education,
Technical training, or work/military experience 8+ years of related technical experience 3.8.2.1.1.
Serves as a lead cyber and information security consultant to the project team by conducting security risk assessments and providing guidance on securing information systems,
Applications, and networks 3.8.2.1.2.
Provides technical guidance and expertise in the areas of secure applications development, security risk management and assessment, security policies and standards, security
Architectures and implementations, and effective security risk assessment practices 3.8.2.1.3.
Performs application and technology design reviews, security risk assessments, requirements analysis, security testing oversight, risk remediation planning, and security project
Management 3.8.2.1.4. Develops, reviews, and implements security risk management policies, standards, and practices 3.8.2.1.5. Defines security and policy compliance requirements in supporting the acquisition and deployment of security software, systems, and services 3.8.2.1.6.
Provides guidance on the development and integration of a security development lifecycle (SDL) to include secure development, testing, and configuration of application and web architectures 3.8.2.1.7.
Review and assess vendors information security solutions and deliverables, including technologies and architectures, security controls and procedures, and contract documentation