Information Security Compliance and Assessment Specialist

$100,000 - $120,000/Yr

Unclassified - Tallahassee, FL

posted 5 months ago

Full-time - Mid Level
Tallahassee, FL

About the position

The Information Security Compliance and Assessment Specialist position is a critical role within the U.S. Department of Energy's National Nuclear Security Administration contract. This position requires a U.S. Citizen with an active Top Secret clearance or the ability to obtain one, and candidates cannot hold dual citizenship. The specialist will act as a Quality and Compliance Advisor, focusing on the security of internal information systems. The role demands a comprehensive understanding of security policies and procedures, as well as the ability to assess and ensure compliance with these standards. In this capacity, the specialist will be responsible for identifying areas of non-conformance to security requirements and policies through continuous monitoring and assessments. This involves performing evaluations of processes and systems to ensure they align with established policies and standards. The specialist will also validate the results of security control assessments and engage in various technical and administrative activities related to quality assurance, including auditing, report writing, and facilitating lessons learned analyses. The position requires the compilation and analysis of findings related to non-compliance, along with providing actionable recommendations for improvement. The specialist will maintain plans of action for addressing non-compliance issues and will track unresolved issues until they are resolved. Additionally, the role includes validating that cybersecurity tests and assessments are conducted according to established guidelines and presenting findings in both group and individual settings. Other job-related duties may be assigned as necessary.

Responsibilities

  • Ensuring the implementation of DOE and NNSA cyber security policies and procedures for information systems
  • Performing process and system evaluations (assessments) to ensure compliance with established policies, processes, procedures, and applicable standards
  • Validating security control assessments results
  • Performing a variety of technical and administrative activities related to the function of QA (auditing), including scheduling, checklist development, report writing, facilitating root cause/lessons learned analysis, and internal/external presentations
  • Compiling, analyzing, and reporting on findings of non-compliance and providing recommendations for improvement
  • Capturing and maintaining plans of action and milestones on findings of non-compliance
  • Tracking and escalating unresolved non-compliance issues and corrective and preventative action plans to closure
  • Validating cyber security tests and assessments are conducted in accordance with established policies and procedures
  • Formally and informally presents information in group and individual settings
  • Performs other job-related duties as assigned

Requirements

  • Must be a U.S. Citizen with an active Top Secret clearance or the ability to obtain one
  • Detailed knowledge and expertise in information security compliance and assessment
  • Experience in evaluating processes and systems for compliance with security policies and standards
  • Ability to compile, analyze, and report findings related to non-compliance
  • Strong communication skills for presenting information in various settings
  • Experience in quality assurance and auditing processes

Nice-to-haves

  • Experience with the Department of Energy (DOE) and National Nuclear Security Administration (NNSA) policies
  • Familiarity with cybersecurity testing and assessment methodologies
  • Ability to facilitate root cause analysis and lessons learned sessions

Benefits

  • Medical
  • Dental
  • Vision
  • 401K
  • Other possible benefits as provided

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service