Information Security Compliance and Assessment Specialist

$75,000 - $120,000/Yr

Criterion Systems - Albuquerque, NM

posted 4 days ago

Full-time - Mid Level
Albuquerque, NM
Professional, Scientific, and Technical Services

About the position

The Information Security Compliance and Assessment Specialist at Criterion Systems plays a crucial role in ensuring the security of internal information systems for a U.S. Department of Energy contract. This position involves serving as a Quality and Compliance Advisor, providing management with the necessary tools and information to ensure adherence to security requirements and improve information assurance quality processes. The specialist will conduct ongoing monitoring and assessments to identify areas of non-conformance and recommend improvements.

Responsibilities

  • Ensuring the implementation of DOE and NNSA cyber security policies and procedures for information systems.
  • Performing process and system evaluations (assessments) to ensure compliance with established policies, processes, procedures, and applicable standards.
  • Validating security control assessments results.
  • Performing a variety of technical and administrative activities related to QA (auditing), including scheduling, checklist development, report writing, and facilitating root cause/lessons learned analysis.
  • Compiling, analyzing, and reporting on findings of non-compliance and providing recommendations for improvement.
  • Capturing and maintaining plans of action and milestones on findings of non-compliance.
  • Tracking and escalating unresolved non-compliance issues and corrective and preventative action plans to closure.
  • Validating cyber security tests and assessments are conducted in accordance with established policies and procedures.
  • Formally and informally presenting information in group and individual settings.

Requirements

  • U.S. Citizenship (NO dual-citizenship).
  • Bachelor's Degree in a related field with knowledge of current industry technologies/standards for enterprise networks.
  • Five (5) years of related work experience.
  • Experience in information security/information assurance roles may substitute for education requirements.
  • Applicable certification or the ability to obtain it within 6 months; the role maps to the NICE Cybersecurity Workforce Framework role of Mission Assessment Specialist.
  • Experience with NIST SP 800-53, Risk Management Framework (RMF), and security assessment tools.
  • Demonstrated knowledge and/or experience with Operating System, Virtualization, and Networking technologies.
  • Proficiency with Microsoft Office products (Word, Outlook, Excel, PowerPoint, and SharePoint).
  • Strong attention to detail and effective verbal and written communication skills.
  • Strong planning, organizational, and time management skills.

Nice-to-haves

  • Experience with FISMA, FedRAMP, DoDI 8500.2, HIPAA, or PCI requirements.
  • Demonstrated initiative and ability to work independently.
  • Strong interpersonal skills that foster effective teamwork.

Benefits

  • 401(k) matching
  • Dental insurance
  • Disability insurance
  • Health insurance
  • Life insurance
  • Opportunities for advancement
  • Paid holidays
  • Tuition/Training Assistance
  • Parental Leave
  • Paid Time Off

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service