Control Validation and Security Specialist [20260612]

Phoenix Cyber is looking for a Control Validation and Security Specialist. This role will perform vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle. 

Responsibilities:

• Support development and analysis of Assessment & Authorization (A&A) and Life Cycle Management documentation of systems and/or networks.
• Assist with the development and maintenance of all necessary A&A documents
• Provide coordination, tracking, and management through all aspects of the initial and recurring A&A processes.
• Conduct independent assessments of all required security controls including interviews, examinations, and testing and prepare the assessment findings report.
• Work with system owners to resolve findings and answer questions.
• Perform cybersecurity review and validation services for cybersecurity authorization deliverables and record results.
• Support the Risk Management Framework (RMF) process using applicable tools.
• Attend and participate in required meetings or teleconferences.
• Continuous monitoring and plans of action and milestones (POA&M) management.
• Assessing systems deployed in Cloud Environments.
• Work in a multi-task in a dynamic, fast-paced environment. Provide analytical, communication and troubleshooting skills that enable proactive and effective collaboration, including the ability to clearly articulate status and present to both customers and program leadership.

Qualifications:

• DoDD 8140. 01 / 8570. 01-M IAT Level II Certification
• Security Clearance: Secret
• 5 or more years of experience with certification and accreditation (C&A) or A&ABS degree (or equivalent experience) in Cybersecurity, Information Security, IT, EE, Network Engineering, Computer Science, or related field. Additional years of experience and cyber certifications may be considered in lieu of degree.
•  Demonstrated knowledge as an Information Assurance (IA) Specialist concerning C&A/A&A activities and all associated IA policies and procedures on DoD systems.
• Experience with A&A on hardware and software operating in geographically dispersed locations. Hands-on experience with a variety of cybersecurity tools.
• Hands-on experience in working with DoD networks.
• Experience in FISMA and other information assurance assurance-related compliance reporting. Motivated self-starter with ability to work in a matrix organization and communicate effectively across all levels of the organization.
• Experience using the Risk Management Framework (RMF) support the A&A process, including analyzing the development of supporting policies, procedures, and plans, designing, and implementing security controls, testing and validating security controls, and analyzing and tracking corrective action plans.

Phoenix Cyber is a national provider of cybersecurity engineering services, operations services, sustainment services and managed security services to organizations determined to strengthen their security posture and enhance the processes and technology used by their security operations team.

Phoenix Cyber is an equal opportunity employer and complies with Executive Order 11246, Section 503 of the Rehabilitation Act of 1973, the Vietnam Era Veteran's Readjustment Assistance Act (VEVRAA), all amendments to these regulations, and applicable executive orders, federal, and state regulations. Applicants are considered without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, and/or veteran status.

Phoenix Cyber participates in E-Verify to confirm the employment eligibility of all newly-hired employees. To learn more about E-Verify, including your rights and responsibilities, go to https://www.e-verify.gov/

Powered by JazzHR