General Dynamics Information Technology Security Control Assessor III w/ Active TS/SCI in Aurora, Colorado
Position requires an active in-scope TS/SCI clearance and polygraph.
The Security Control Assessor (SCA) is the Information Assurance (IA) Independent Validation and Verification (IV&V) role in the Risk Management Framework (RMF) workflow. The SCA role requires an IA professional with in-depth system security knowledge and skills to provide Assessment & Authorization (A&A) support throughout a systems lifecycle. The SCA conducts full and partial assessments of security controls implemented on customer owned and sponsored Information System’s (IS), enhances IS security awareness of Directorates & Offices’ staff, ensures proper IS security resources are appropriately applied as well as acts as IS liaison between the Directorates & Offices and the Government.
Review information systems for compliance with applicable DCID, ICD, and directives and guidance
Provide IS security advice and guidance in accordance with applicable DCID, ICD, and directives and guidance to Government and industry partners for the protection of data at all classification levels including SCI
Provide IS technical guidance and support in preparing responses for USG approval to A&A questions asked by Government and industry partners;
Evaluate and recommend approval, disapproval, or waiver(s) for IS processing national security data at industry and/or Government facilities
Support development and implementation of directives and guidance for Information Assurance, Information Technology, and Information Management policies
Provide input for consideration in the promulgation of future IS security policy
Support and/or conduct site visits and assessments to inspect and verify IS reports and plans at industrial and Government locations as approved by the Government, and provide a written report for review and approval by the USG;
Prepare reports and memoranda, to include, but not limited to: Memoranda for the Record (MFR), Memoranda of Agreement (MOA), Authorization To Proceed, and status and technical briefs for review and approval by USG;
Update data and maintain Government-provided databases with current information about Government and industry IS status and representative contact information.
Prepare, review, and record notification and status messages to indicate A&A state of systems to system owner or programs in a USG approved format.
Ensure that appropriate IS security requirements including applicable DCID, ICD, and directives and guidance are addressed and applied and that appropriate documentation is prepared by the system owners or programs. The documentation will be contained in the Security Assessment Package, including, but not limited to the Concept of Operations (CONOPS) Plan, System Security Plans, System Requirements Traceability Matrix, Risk Management Matrix, Test Results, interface control documents, requests for changes, test plans, and other related program security documentation;
Track completion of the Security Assessment Package and report status;
Support the preparation of the Security Assessment Report (SAR). The SAR contents include, but is not limited to the, Summary of Assessment results and Authorization Recommendation;
Review, coordinate, and respond to IS security issues as requested by the Government;
Perform short term (less than 90 days) CONUS and OCONUS travel to conduct site security inspections when approved by the Government;
Provide A&A support to the Government for the protection of special programs and tactical operations related activities.
Participates in special projects as required.
Bachelor’s Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience
5 - 8 years of related experience in data security administration.
Must possess IAM Level II Certification: GSLC (or) CISSP (or) CAP (or) CASP (or) CISM
5 years’ relevant experience and in-depth information system security knowledge/skills to include:
Practical experience performing information systems assessment and authorization (A&A) as defined in applicable DCID and ICD directives and guidance
Practical experience performing the processes involved in developing and implementing security related directives and guidance for Information Assurance; Information Technology; and Information Management
Practical experience utilizing risk management strategies for information technology solutions
Technical understanding of emerging technologies and their implementation within Government system and network environments;
Knowledge of information technology concepts used in the evaluation of security performance and integrity of state-of-the-art applications; communications systems; hardware; software; satellite control systems; and information processing systems
Technical understanding of information technology systems; software; and networks
Ability to effectively coordinate A&A activities of industry and Government information systems to meet acquisition milestone requirements
Effective technical report and general correspondence writing ability
Ability to manage and track systems or programs involved in the A&A process.
Experience developing and implementing security related directives and guidance for Information Assurance, Information Technology, and Information Management;
Experience working with a mixed skill level team to ensure that appropriate knowledge and skill transfer occurs.
Benefits of this Position:
Opportunity for Fast Growth within the program
Onsite Gym – get your workout in before work, during your lunch break, or at the end of the day
Professional Development Assistance – Covering the Cost of Obtaining Professional & Technical Certifications (depending on program)
Educational Reimbursement – toward degree programs and individual coursework
401K Match – with 100% vesting on day one
Health, Dental and Vision Coverage to keep you healthy, starting your first day
We know work-life balance is important, GDIT offers Paid Time Off, Plus 10 Paid Holidays
Parking and transit commuter benefits
Why Work at General Dynamics IT?
Work with top talentand some of the brightest minds in your field
Support missions thatmake a differenceto our Nation
Become part of an organization that that is committed to thehighest ethical standardsin all that we do
Thrive in thestability of a large organization,with the ability to move onto new opportunities, supporting different missions, building your career within GDIT
Want to move, or find a job close to home? We have positions inseveral locationsin the United States and the world
Enjoy a culture that supportswork-life balance
General Dynamics is aand.
As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors. With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services. GDIT is an Equal Opportunity/Affirmative Action Employer - Minorities/Females/Protected Veterans/Individuals with Disabilities.
Number of Positions1
Job FunctionInformation Technology
Security Clearance LevelTop Secret/SCI
Full/Part TimeFull Time