Remote Security Control Accessor bei Zen Strategics LLC

About Zen: 

Own your opportunity to work with a client-focused growing agile small business. Make an impact by advancing our government organizations charged with keeping our country safe, prosperous, and secure. Zen Strategics LLC is a cleared, niche consulting firm, offering innovative Cybersecurity, Cloud/DevSecOps, Information Data Management and Modernization solutions. We are a leading organization committed to delivering innovative solutions and ensuring the highest standards of security for our customers' infrastructure assets. We are dedicated to staying ahead of evolving cyber threats and protecting our clients' data leveraging cutting-edge technologies (to include AI/ML) and proactive security measures. 

Position Description:

Zen Strategics is searching for a IT Security Specialist to support Security Assessment and Authorization initiatives for our Government client. Job duties include:

• Analyzes information security systems and applications.
• Recommends and develops security measures to protect information against unauthorized modification      or loss.
• Familiar with a variety of the field's concepts, practices, and procedures. 
• Relies on experience and judgment to plan and accomplish goals. 
• Performs a variety of complicated tasks. 

Qualifications and Education Requirements:
Education / Experience: 5+ years of relevant experienceSkills: Cyber Security, Information Security
Basic Qualifications:

• Knowledge of DOC, NOAA, and NWS IT security policies and implementation standards or those of similar sized organizations AND comprehensive understanding of NIST guidance, to include, but not limited to, NIST Special Publications and Federal      Information Processing Standards.
• At least 5 years of recent experience (within the last 6 years) in applying IT security concepts, methodologies, principles, procedures and using industry-standard IT security tools
• At least 5 years of recent experience (within the last 6 years) with enterprise architecture methodologies, concepts, procedures, principles, and tools
• At least 5 years of recent experience (within the last 6 years) in contingency planning and backup and recovery best practices and application of NIST guidance in this area
• At least 5 years of recent experience (within the last 6 years) in using technical testing tools (Tenable Security Center, ArcSight, IBM Big Fix, etc.)
• At least 5 years of performing assessments of Federal Information Systems using the Risk Management Framework
• Possess at least one of the following professional Certifications required by DOC Enterprise Cybersecurity Policy (ECP) Annex C-1:

            * Information System Security Training for Significant Roles for a Certification Agent/Security Controls Assessor:          

            * Certified Information Systems Security Professional (CISSP)          

            * Certified Information Systems Auditor (CISA)           

            * GIAC Systems and Network Auditor (GSNA)         

            * Electronic Commerce Council Certified Ethical Hacker (CEH)          

            * ISC2 Certified in Governance, Risk and Compliance (CGRC)        

            * Security Certified Network Professional (SCNP)         

            * Security Certified Network Architect (SCNA)

• Proficiency in verbal and written communications. 
• Proficiency in interview skills
• Proficiency in interpersonal skills.
• Proficiency in handling multiple tasks concurrently. 
• Proficiency in project and time management.
• Ability to adjust to changing priorities.
• Ability to work in a cohesive team-oriented environment.

Preferred Qualifications:

• Self-starter, highly motivated individual who adapts to a dynamic work environment
• Strong attention to detail with an ability to operate effectively across multiple priorities.