Information System Security Officer - Auditor
Washington, DC, United States
Applications have closed
Peraton
Peraton drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted and highly...Responsibilities
Key Responsibilities:
- Conduct monitoring, inspection, investigation, and audits to safeguard against threats and hazards to the integrity, availability and confidentiality of USAID data or information systems.
- Perform custom and predetermined audits and monitor usage trends to prevent unauthorized usage, suspected fraudulent usage, or excessive usage.
- Assist in the resolution of POA&Ms as measured by cyber hygiene, cyberscope, CDM program, SA&A, Penetration Testing and various audits to meet OMB/GAO/DHS compliance.
- Support OIG, FISMA, and other audits such as M/CFO Federal Managers Financial Integrity Act (FMFIA), Government Management Reform Act (GMRA), and Department of Homeland Security (DHS) Audits.
- Develop and grow existing and new team members to foster collaboration, career development, and a culture of ownership and accountability.
- Conduct security audits on USAID tools (such as Firewall rules).
- Conduct monthly audits consistent with SLAs.
- Collaborate with the government to conduct compliance reviews for audits and forensic analysis.
- Provide monthly audits as outlined in the SLAs.
- Provide ISSO support for USAID Business Service systems across all SDLC stages following NIST 800-37 RMF guidelines.
- Perform or support activities defined in the NIST RMF to obtain and maintain FISMA compliance; work with the Inspector General (IG) auditing team in support of FISMA audit and RMF assessment teams in support of the SA&A process.
- Identify continuous monitoring capabilities, security controls and/or documents that have not yet been developed or do not meet the specified (specification) security requirement, and work toward maturing these objectives within a timeframe agreed to with the SO and the CISO.
- Participate in Disaster Recovery testing per Contingency Plans maintained by ISSO and in the annual COOP exercise as required.
- Ensure that individual system auditing support enterprise cyber security monitoring and vulnerability solutions with a common operational picture.
*Contingent on Contract Award*
Qualifications
Basic Qualification:
- U.S. Citizen; eligible for U.S. Security Clearance.
- Bachelor’s degree with 5 to 11 years, or master’s degree with 2 to 9 years, or PhD with 1 to 6 years’ experience is required; four (4) years of direct experience can be substituted in lieu of a bachelor's degree
- Must hold a Certified Information Systems Security Professional (CISSP).
Preferred Qualification:
- Active Secret Security Clearance.
- Experience with effective policy, instruction, and development for Federal or DoD Information Security Programs
- Experience performing Security Control Assessment in compliance with NIST 800 guide series.
Peraton Overview
Peraton drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted and highly differentiated national security solutions and technologies that keep people safe and secure. Peraton serves as a valued partner to essential government agencies across the intelligence, space, cyber, defense, civilian, health, and state and local markets. Every day, our employees do the can’t be done, solving the most daunting challenges facing our customers.
Target Salary Range
$86,000 - $138,000. This represents the typical salary range for this position based on experience and other factors.Tags: Audits CISO CISSP Clearance Compliance DoD Firewalls FISMA Monitoring NIST Pentesting PhD RMF SDLC Security Clearance SLAs
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open PowerShell-related jobs
- Open SQL-related jobs