Shuvel Digital

Location: Arlington, VA

Clearance: DoD Secret

Certification: CompTIA Sec+ is required.


Job Description:

  • The Security Design Assessment analyst will provide support to the Security Design Architecture Team.
  • Ensure design solution complies with security requirements at a solution, system, or network level and enforces implementation of common security services and security zones.
  • Ensure design reviews are IAW with all applicable government directives, approved frameworks, and industry standards.
  • Participate in Design Reviews, Go-Live Reviews, as well as Transition Reviews of all projects.
  • Provide technical expertise, diagram reviews, and recommendations on all JSP Information Systems (re-authorization and new systems).
  • Assist in the creation of a Security Design Assessment Portfolio that encompasses all security engineering or architecture projects to be maintained on the JSP Risk Management Division Portal or as directed by the government.
  • Provide a formal Risk Assessment Report (RAR), along with a formal Acceptance of Risk (AOR) memorandum, for the Authorizing Official to sign, when there is an acceptance of risk requirement stemming from any project review, part of the RMF process, identified risk or vulnerabilities of an Information System, or organization evaluation/inspection.
  • Provide operational risk management support for JSP-managed systems, whether networked or standalone.
  • Provide support for integrating existing Cyber products with new hardware and software introduced to JSP-managed systems.
  • Provide Security Engineering management and technical support services focused on the implementation and execution of DoD, DISA, JSP security policies, procedures and other JSP information systems security procedures and policies.


Basic Qualifications:

  • Active Secret clearance or higher (program can support up to TS/SCI)
  • Bachelor's degree in IT-related field and 8-12 years' experience of relevant experience.
  • Additional years of applicable experience may Secret security clearance required prior to start.
  • DoD 8570 IAM/IAT Level II certification prior to start.
  • Experience in IA technology or related field..
  • Experience with Risk Management Framework experience.
  • Project management work experience.
  • Knowledge of NIST SP 800-37, CNSSI 1253, FIPS 199 and NIST SP 800-53
  • Knowledge of the DoD Risk Assessment Methodology (DRAM) and POAM tracking.
  • Familiarity in CIRT processes and data spill cleanup procedures
  • Experience with the Data-Write and Cross Domain Data Transfer processes
  • Expertise in auditing security controls
  • Knowledge of Continuous Monitoring
  • Experience in STIGs and SRGs
  • Knowledge of Common Control Processes
  • Project Management skills
  • Technical Writing Skills
  • Customer service skills both verbally and written

%FOOTER_POWERED_BY%breezy