|Requirements||• Bachelor's Degree and at least seven years of IT security experience.|
• At least five years of experience performing NIST-based Security Assessment and Authorization (formerly called Certification and Accreditation) activities in direct support of Federal information systems. At least three years of experience of successfully managing NIST-based Security Assessment and Authorization efforts in direct support of Federal information systems.
• At least one year of experience performing NIST-based Security Assessment and Authorization (formerly called Certification and Accreditation) activities in direct support of Federal information systems.
• At least five years of experience providing direct support to Federal IT compliance initiatives including the preparation/development of annual FISMA reports, compiling responses to Federal information requests, and implementing provisions set forth by the OMB, DHS, and other Federal guidance entities. Relevant professional certifications from recognized industry consortiums including ISC2, ISACA, CompTIA, and GIAC.
• Familiarity with tools such as firewalls, Nessus, Splunk, Palo Alto IDS/IPS, SCOM, SCCM, etc.
|Work Authorization Status||US Citizen|
|Telecommute an option?||No|
|Job Description||We are looking for Senior IT Security Specialists to provide Information Technology Support Services in support of FHFA-OIG’s Information Security Program. Work shall be performed onsite at FHFA OIG offices located in Washington, D.C. and only very minimal non-local travel is expected. |
The candidate must have sufficient knowledge from experience or training:
• Information system components and their interactions to include LAN/WAN, VoIP, Active Directory, TCP/IP, IDS/IPS, workstation operating systems, cloud-based service/support
• Testing and assessment tools
• Information technology security concepts, principles, analysis methods, and practices
• System Development Lifecycle (SDLC) phases and the security considerations in each phase
• Information security roles and responsibilities
• Overarching Federal information security legislation, standards, and guidance including FISMA, applicable OMB circulars, memoranda, and other directives, and NIST special publications.
Knowledge can be demonstrated through acquiring of general information system security related academic degrees, and/or professional certifications. Personnel must have prior or current experience in providing information security related services to Federal agencies.