IT Security Compliance Specialist -Mid Level

A3 Technology, Inc. is seeking IT Security Compliance Specialists to join our Cybersecurity group. The IT Security Compliance Specialists will support the architecture, design and solutions team for the IT enterprise with change management and security controls.

This position is 100% onsite.

Responsibilities:

• Establish/maintain procedures with system Program Offices (PO) to ensure awareness of all system changes being proposed.
• Participate in the system configuration management process, including applicable Configuration Control Boards (CCB).
• Assess system configuration changes for impact on security posture.
• Identify enterprise security services that may be applicable to system changes.
• Integrate system changes into the security Authorization process.
• Review system security acquisition documentation, including security documents required by the Acquisition Management System (AMS) process.
• Ensure appropriate security requirements are incorporated into applicable system contractual documents.
• Identify and support integration of applicable enterprise security services for system acquisitions.
• Coordinate system initial security Authorization activities and Information Security Continuous Monitoring (ISCM) activities as required to maintain Ongoing Authorization.
• Review system security authorization documentation to ensure completeness, accuracy and compliance.
• Maintain system security Authorization information in the Security Management Assessment and Reporting Tool (SMART).
• Create, track, update, validate and close system vulnerability remediation of Plan of Actions & Milestones (POA&M).
• Coordinate risk acceptance requests, to include rationale and identification of compensating controls.
• Maintain system security POA&M information in SMART.
• Support the establishment and maintenance of AMS Cybersecurity processes and documentation.

Skills Required:

• Experience supporting cybersecurity solutions for a large enterprise (over 35,000 users).
• Experience with federal IT security rulesets such as NIST.
• Experience tracking, updating and validating POA&Ms.
• Experience with risk acceptance requests.
• Experience with change management procedures.
• Experience managing cybersecurity and system security documentation in accordance with policies.
• Experience managing data from organizational data calls.
• Experience writing reports and presentations for audiences at variable technical levels.
• Excellent written and communication skills.
• Self-motivated to take ownership of projects.

Skills Preferred:

• Certificate in an IT security area (e.g. CISSP, CISM).
• Experience working with a large organization (>35,000 customers).
• Experience collaborating with peer and client teams.

Education:

• Bachelor's degree in IT/Computer Science or related field and 6-10 years of IT experience.

Additionally, US Citizenship or documented proof of eligibility to work in the US is a must. Upon receiving a conditional offer of employment, candidates will undergo a Government investigation and must meet eligibility requirements for Government clearance. Verification of past employment, education and references is also required. It is imperative that candidates be either a US citizen or a current green card holder with the last 3 consecutive years as a resident of the US.

At A3 Technology, Inc., we take pride in being an Equal Opportunity Employer (EEO) and Affirmative Action (AA) employer. We're committed to considering all qualified candidates for employment without regard to race, religion, color, sex, sexual orientation, gender identity, age, protected veteran status, disability, national origin, genetic information or any other protected status.