Security Control Assessor - Life Cycle Engineering
St. Louis, MO 63118
About the Job
Security Control Assessor (Authorizing Official)
Position Summary:
As Security Control Assessor (Authorizing Official/AO) you will provide cybersecurity support to the National Geospatial-Intelligence Agency (NGA) in St. Louis, MO. You will award authorization to operate (ATO) for systems and/or networks based on the determination of acceptable risk.
Clearance Requirement:
LIFE CYCLE ENGINEERING
Life Cycle Engineering (LCE) is a privately held, employee-owned company with an emphasis on "doing the right thing the right way”, which applies to the way we treat our customers and employees. We are proud to have been recognized as a "Best Place to Work” for 14 years running! Learn more below and at www.lce.com.
Mission
Our mission is to enable people and organizations to achieve their full potential.
As a professional services organization, our mission is focused on our clients' people and organizations. It is our company's cornerstone belief that we will not lead the industry in assisting our clients unless we excel at helping our own people and teams reach their full potential.
Culture
Our corporate culture encourages personal and professional growth because LCE's success depends on the talent, innovation, professionalism, and commitment of its employees. LCE is a strengths-based organization focused on turning individual talents into strengths and then turning individual strengths into organizational performance that supports our clients' success.
Benefits
Life Cycle Engineering (LCE) shall abide by the requirements of 41 CFR §§ 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, or national origin. Moreover, these regulations require that LCE take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, because of or on the basis of pregnancy, childbirth, or related medical conditions, including, but not limited to, lactation, and any other status protected by applicable state law. In addition, LCE will not discharge or in any other manner discriminate against any employee or applicant for employment because such employee or applicant has inquired about, discussed, or disclosed the compensation of the employee or applicant or another employee or applicant. LCE shall also abide by the requirements of 29 CFR Part 471, Appendix A.
Position Summary:
As Security Control Assessor (Authorizing Official/AO) you will provide cybersecurity support to the National Geospatial-Intelligence Agency (NGA) in St. Louis, MO. You will award authorization to operate (ATO) for systems and/or networks based on the determination of acceptable risk.
Clearance Requirement:
- Must have an active DoD Top Secret/SCI security clearance
- Manage and approve accreditation packages (e.g., ISO/IEC 15026- 2).
- Establish acceptable limits for the software application, network, or system.
- Review authorization and assurance documents to confirm that the level of risk is within acceptable limits for each software application, system, and network.
- Manage accreditation packages (e.g., ISO/IEC 15026-2)
- Bachelor's degree in technical discipline from an accredited college or university
- Certification Requirements:
- Jr: Must be IAT Level II (Security+) compliant
- Mid: Must have IAM Level II (CAP, CASP, CISM, CISSP, GSLC, CCISO, or HCISPP certification)
- Sr.: Must be IAM Level III compliant (CISM, CISSP etc.) for Sr. role
- Three (3) year of full-time professional experience in establishing, implementing, and tracking project plans (more experience required for sr. level openings).
- Knowledge of computer networking concepts and protocols, and network security methodologies.
- Knowledge of risk management processes (e.g., methods for assessing and mitigating risk)
- Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
- Knowledge of cybersecurity and privacy principles and tools.
- Knowledge of Security the Risk Management Framework (RMF) and Assessment and Authorization process.
- Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).
- Skill in discerning the protection needs (i.e., security controls) of information systems and networks.
- Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
- Ability to coordinate cyber operations with other organization functions or support activities.
- Regular physical activity to include walking, climbing stairs, bending, stooping, reaching, lifting (up to 15 pounds), and standing; occasional prolonged sitting
- Ability to speak, read, hear and write, with or without assistance
- Ability to use phone and computer systems, copier, fax and other office equipment
LIFE CYCLE ENGINEERING
Life Cycle Engineering (LCE) is a privately held, employee-owned company with an emphasis on "doing the right thing the right way”, which applies to the way we treat our customers and employees. We are proud to have been recognized as a "Best Place to Work” for 14 years running! Learn more below and at www.lce.com.
Our mission is to enable people and organizations to achieve their full potential.
As a professional services organization, our mission is focused on our clients' people and organizations. It is our company's cornerstone belief that we will not lead the industry in assisting our clients unless we excel at helping our own people and teams reach their full potential.
Culture
Our corporate culture encourages personal and professional growth because LCE's success depends on the talent, innovation, professionalism, and commitment of its employees. LCE is a strengths-based organization focused on turning individual talents into strengths and then turning individual strengths into organizational performance that supports our clients' success.
Benefits
- Affordable Medical/Dental/Vision Plans for employees and their families
- Free Employee Life and Disability Insurance, with supplemental coverage options available
- Health Savings Account and Flexible Savings Account options
- Company matched 401(k) & company-funded Employee Stock Ownership Program (ESOP)
- Paid Vacation, Holiday, Sick Leave
- Dynamic employee innovation/entrepreneurship program which includes education, empowerment, and monetary rewards
- Continuing Education and Professional Development programs at all levels
- Flexible Schedules and Relaxed Dress Code
- Employer-sponsored events, social collaboration, and open communication
- Free access to an extensive online training library, including certification prep
- Bonus Program for outstanding contributions, Employee Referral Program, numerous Recognition Opportunities, and more…
Life Cycle Engineering (LCE) shall abide by the requirements of 41 CFR §§ 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, or national origin. Moreover, these regulations require that LCE take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, because of or on the basis of pregnancy, childbirth, or related medical conditions, including, but not limited to, lactation, and any other status protected by applicable state law. In addition, LCE will not discharge or in any other manner discriminate against any employee or applicant for employment because such employee or applicant has inquired about, discussed, or disclosed the compensation of the employee or applicant or another employee or applicant. LCE shall also abide by the requirements of 29 CFR Part 471, Appendix A.
Source : Life Cycle Engineering