SRA International, Inc., A CSRA Company IT Security Compliance Manager / Security Analyst for the National Library of Medicine in Bethesda, Maryland

Clearance Level Must Currently Possess:

No Active Clearance Required

Clearance Level Must Be Able to Obtain:

No Active Clearance Required

Suitability:

Public Trust

Job Family:

Information Technology

Job Description:

We are seeking an Information Technology Security Compliance Manager to join our program in support of the National Library of Medicine (NLM). This individual will assist NLM Information Systems Security Officer (ISSO). You will be part of a larger program in support of the IT infrastructure for NLM to include help desk, systems, network, and security services. Position is for full time employment and will be based at our client's office in Bethesda, MD.

Responsibilities

  • Understand NIH Continuous Monitoring (CM) requirements

  • Assists in tracking and remediation of systems, networks, applications and source code vulnerabilities by reviewing scan reports and working with the relevant parties to get the vulnerabilities fixed

  • Drives implementation of security projects that require compliance to relevant government policies or standards

  • Responds to data calls from NIH, HHS or OMB related to IT security

  • Prepares FISMA and FedRAMP related Security Assessment and Authorization (SA&A) documentation for NLM IT programs

  • Assist NLM in coordination, implementation, communication, and enforcement of the NIH IT security policies

Required Qualifications and Skills:

  • Bachelor’s degree and 5 years’ related experience or a Master's and 3 years related experience (or equivalent combination of education and experience).

  • Excellent working experience in applying FISMA, and FedRAMP processes and policies to information systems

  • Experience developing and maintaining Security Assessment and Authorization (SA&A) documentation for large IT systems for the Federal Government

  • Strong understanding of Linux and Active Directory.

  • Expert knowledge of IT security vulnerabilities and risk assessments with the ability to explain the risks associated with them to executives, program & technology staff

  • Ability to work with program staff, executives, and technology staff to achieve IT security goals and objectives

  • Certifications: - CISSP (or ability to obtain within 6 months).

Desired Qualifications and Skills:

  • Understanding of the Secure Software Development Life Cycle

  • Ability to run scans (NESSUS) and validate remediation when the primary resource responsible for this activity is not available.

  • Experience with major components and architecture of Tenable such as Security Center, Nessus Manager, Scanners, agents

  • Experience with Secure Information Systems processes on AWS

# of Openings:

1

Scheduled Weekly Hours:

40

T elecommuting Options:

Some Telecommuting Allowed

Work Location:

USA MD Bethesda - 9000 Rockville Pike (MDC039)

Additional Work Locations:

CSRA is committed to creating a diverse environment and is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

THINK NEXT. NOW.

CSRA is tomorrow’s thinking, today. To “Think Next. Now.” is to imagine a better future and to deliver it, today. For our customers, our partners, and ultimately, all the people our mission touches, CSRA is realizing the promise of technology to change the world through next-generation thinking and meaningful results.

We understand that our customers' missions require new methods and imaginative thinking. We bring together government IT professionals, emerging technologies, and the brightest, cutting-edge advisors in the industry to deliver a broad range of innovative, next-generation IT solutions and professional services to help our customers modernize their legacy systems, protect their networks and assets, and improve the effectiveness and efficiency of mission-critical functions for our warfighters and our citizens.

Everywhere you look, CSRA is there. We’re in our nation’s infrastructure, in training and education, in cyber security, in serving veterans who served us—and, so much more. Take some time to learn more about CSRA. You might be surprised to learn how we touch your life.

We are a company of 18,000+ smart, talented individuals, yet we enjoy a start-up culture that inspires us to make a difference while delivering results in this rapidly evolving world. Join our team and use your skills and expertise to support the safety, security, health and well-being of the nation.