Job Description

Centurion is looking to hire an Information System Security Officer for our federal government client in Washington DC.  This role is hybrid role open to US Citizens only. 

Required Skills:
Risk Management Framework (RMF), System Security Plan (SSP), Plan of Action and Milestones (POA&M), Authorization to Operate (ATO), Security Impact Analysis (SIA), Information Sensitivity Security Assessment, Information Technology Risk Acceptances, o Configuration Management Plan, Supply Chain Risk Management Plan, Interconnection Security Agreements, Memorandums of Understanding, Information Data Exchange Agreements, Vulnerability Reports,

Day-to-day Responsibilities:
Conduct continuous monitoring activities, to include:
o Maintenance of current ATO
o Conducting periodic system self-assessments
o Review periodic vulnerability scan reports and compliance reports
o Ensure stakeholders are performing system log reviews as defined in the SSP
o Ensure assigned IT system user accounts are periodically reviewed for accuracy and completeness
• Work with technical teams to mitigate security control deficiencies and vulnerabilities for assigned IT systems.
• Assess the cybersecurity impact of changes to assigned IT systems and document findings in a SIA report and brief stakeholders.
• Conduct self-assessments of security controls, identify weaknesses and track remediation activities in POA&M.
• Manage the POA&M process for designated IT systems to provide timely detection, identification and alerting of non-compliance issues.
• In coordination with SO staff, create POA&Ms or remediation plans for vulnerabilities identified during risk assessments, audits, inspections, etc.
• Provide the required system access, information, and documentation to security assessment and audit teams.

Expected Deliverables: Cybersecurity Staff Augmentation

Education: Bachelor's Degree, preferable in Computer Science, Information Technology, or Cybersecurity