Job‎ > ‎

Certification and Accreditation Technical Engineering Analysis and Program Support Activities - (Washington, DC)

posted May 7, 2010, 1:12 PM by T. Reid Lewis
C&A Technical Engineering Analysis and Program Support Activities

Bantu, Inc. the leader in secure Enterprise Instant Messaging (EIM)  is seeking an experienced individual to perform Certification and Accreditation (C&A) Technical Engineering Analysis & Program Support activities – develop C&A Level of Effort (LOE) Determinations, which include performing technical engineering analysis of the System Characterization, System LOE Briefing, and other documents, as required to determine the appropriate C&A Determination.
           
Develop an LOE Determination that address:
  • C&A TYPE
  • FIPS-199 Security Categorization
  • Privacy Threshold Analysis (PTA) Requirements
  • NIST SP800-53 Rev 2 Security Control Requirements
  • Mandatory System Site Visits
  • Security Testing
  • C&A Due Date
  • C&A Templates

Develop & Update Site Survey Plan that provides an overview of Mission Support & Administrative Systems architecture, operations and maintenance environments
 
Remediation Management & ISS Compliance Audit Activities
Support Program in effectively evaluating technical remediation needs to mitigate system cyber security related vulnerabilities based on system risks and priorities.
Develop draft system Plan of Action and Milestone (POAM) technical remediation recommendations based on analysis of findings documented in each system
 
Risk Assessment Report.
Develop Compliance Audit Program Plan that describes the approach for conducting ISS compliance reviews of Operational, Mission Support and Administrative Systems.  The Compliance Audit Program is developed to meet Federal, Departmental, and Agency policies requiring periodic testing and evaluation of Agency information security policies, procedures, and practices.

Develop Compliance Audit Test Plan and Rest Results Reports that detail various types of compliance audit testing activities such as demonstration, inspection, or scan testing of system management, technical, and /or operational security controls.
 
ISS Policy and Guidance Development
Assist in developing ISS policy, procedures, and guidance for use within the operating environments.  Policy and guidance includes, but is not limited to : develop of Security Implementation Guidance Memoranda; development of ISS Standard Operating Procedures (SOP) Templates: participation in NIST ISS Policy working groups; and participation in working groups developing new security policies or updating existing policies.

Assist in developing a standard set of Secure Configuration Baseline Checklists for system assets.


To learn more about Bantu, visit http://www.bantu.com

To apply, send your cover letter and resume to the address listed here: http://www.bantu.com/contact_us.php
Comments