Compliance Specialist

Company Description

Ashburn Consulting, LLC, a small business based in the Washington, DC metropolitan area, specializes in providing network and network security solutions in complex environments to a select set of government and business clients. The company, an established leader in its field, is composed of an elite team of engineers and business consultants, each of whom is recognized, and highly regarded, within the network and security communities.

Job Description

·Review all current policies, update/draft, and submit FCC testing policies for Government review.

· Review, update, and submit, for Government approval, the FCC IT Security Testing Standard Operating Procedure (SOP).

· Provide independent ST&E support to the Federal Audit and Compliance Manager (FACM) or designee for the approximate fifty (50) moderate and low baseline systems consisting of data center hosted systems, FEDRAMP and non- FEDRAMP cloud applications, and FCC hosted applications.

· Develop Security Controls Assessment Plans.

· Provide security controls assessment support.

· Provide assessor support analyzing findings and quantifying results as per FCC policy and procedures.

· Provide validation test support.

· Provide testing documentation support. In coordination with the Configuration Management (CM) team, all testing documentation will be uploaded, updated, and maintained in the FCC approved repository. Continuous Monitoring Support

· Perform testing of FCC applications in the FCC’s system portfolio adhering to the IT Security Testing SOP, conforming to NIST SP 800-18 (Guide for Developing Security Plans for IT Systems), and in accordance with the RMF schedule working with FCC’s CISO, FACM, and with the developers and system owners of FCC applications. · Provide internal/external audit support

· Perform and/or assist in internal/external self-assessments and audits of IT systems to ensure compliance with mandated: FISMA; annual A-123 reporting; and OIG and GAO requirements.

Qualifications

·Five to eight years' experience with audit and compliance and an intermediate skill level

·Main focus on the Compliance Support Services activities

·One or more of the following certifications: Certified Information Systems Security Professional (CISSP); Certified Information Systems Auditor (CISA); Certified Information Security Manager (CISM); or FITSP-Auditor (FITSP-A).

·BS and 5+ years of FISMA and auditing related experience required

·Bachelor's degree in engineering, computer science, or related field of study preferred.

·Excellent written and oral communication skills

·Must be a US Citizen

·Must be able to obtain a High-Risk Public Trust clearance or already possess one

Additional Information

All of your information will be kept confidential according to EEO guidelines. Equal Opportunity Employer/Veterans/Disabled. An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status.

Ashburn Consulting is an Equal Opportunity Affirmative Action Employer.
 In compliance with the American with Disabilities Act Amendments Act (ADAAA), if you have a disability and would like to request and accommodation in order to apply for a position with Ashburn Consulting, please e-mail hr@ashburnconsulting.com.”

Ashburn Consulting is an Equal Opportunity Affirmative Action Employer.
In compliance with the American with Disabilities Act Amendments Act (ADAAA), if you have a disability and would like to request and accommodation in order to apply for a position with Ashburn Consulting, please e-mail hr@ashburnconsulting.com.”