• FISMA Auditor & Technical Writer - Level III

    Job Location US-DC-Washington
    Posted Date 1 month ago(9/17/2018 9:34 AM)
    Job ID
    Clearance Requirement
  • Overview

    Strategic Enterprise Solutions, Inc. (SE Solutions) is a proven, results-focused management and information technology services firm committed to support federal agencies that focus on protecting and defending our nation’s homeland security, intelligence, and stability. In a rapidly changing threat landscape, we have the organizational agility, deep homeland security experience, cultural insight and multidisciplinary expertise to help our customers accomplish today’s mission and anticipate tomorrow’s demands, efficiently and cost-effectively.



    SE Solutions IT security professionals support federal agencies in the development and application of a comprehensive management approach to achieving OMB Circular A-123 and A-130, DHS, FEMA, and NIST compliance and best practice objectives to maintain an acceptable level of risk for the agency’s IT systems.

    As a senior member of one of our DHS support teams, you will play an important role performing a wide array of IT Security support activities, including:

    • Assess the organization’s existing IT security program, work products, and tools in relation to key agency mission, security goals, and objectives.
    • Develop, engineer and implement sustainable security solutions designed to address program gaps.
    • Assess and articulate risk in relation to mission/business objectives and processes.
    • Facilitate agency awareness of current IT security infrastructure and recommend programmatic and systems actions to improve the agency IT security posture.
    • Demonstrated capabilities performing the following is required:
    • Ensuring the automated monitoring of information system assets through Continuous Diagnostics and Mitigation (CDM) tools and sensors;
    • Maintaining an asset inventory of hardware and software within the program/development offices or field site facility;
    • Ensuring that security requirements for the assigned major application or general support system are being or shall be met;
    • Ensuring that requests for Security Authorization (SA, also commonly referred to as Assessment & Authorization or Certification and Accreditation) of assigned major application or general support system is completed in accordance with the published procedures;
    • Coordinating the development of a Contingency Plan and ensuring that the plan is tested and maintained;
    • Ensuring risk analyses are completed to determine cost-effective and essential safeguards in alignment with government and industry best practice (e.g. NIST 800-30, 37, 39);
    • Ensuring preparation of security plans for sensitive systems and networks;
    • Reporting IT security incidents (including computer viruses) in accordance with established procedures;
    • Reporting security incidents not involving IT resources to the appropriate security office; and
    • Representing the security team as part of change management for assigned information systems.


    Minimum Education

    • Bachelors Degree or higher; preferably in computer science, information technology, or a related field

    Minimum Years of Relevant Experience  

    • 5 or more years, preferably within the information technology domain directly supporting security of IT systems


    Required Skills  

    • Familiarity with one or more of DHS Directive 4300A, FIPS Pubs 199 & 200, and NIST Special Pubs 800-30, 800-37, 800-39, 800-53, 800-60
    • Experience as a FISMA / RMF auditor
    • Experience with POA&M reviews
    • Performing Security Authorization
    • Performing Risk Analysis and Assessment
    • Must demonstrate excellent writing proficiency


    The candidate should be able to support a minimum of the following areas listed:  

    • Security Control Review and Analysis
    • Document Review and Security Technical Writing
    • Risk Assessment and Risk Management
    • Policy and Audit Services

    Preferred Skills

    • Conduct audit remediation research, reviews, analysis, and develop findings
    • Provide programmatic advice or recommendations related to Agency business processes and the application of anyand all laws and regulations that may have an impact upon the Agency
    • Assist in identifying strategies to improve compliance with Federal and DHS requirements
    • Support creation and approval of detailed work plans as required by remediation activities
    • Conduct reviews of existing and proposed Notice of Findings and Recommendations (NFRs) to providerecommendations to the Office of Cyber Security as to appropriateness and accuracy
    • Facilitate the prompt processing and response of Provided By Client items as issued by the various auditingentities associated with Agency systems

    About SE Solutions

    Strategic Enterprise Solutions, Inc. (SE Solutions), is a small business serving federal agencies that protect our nation’s security and defend our fellow citizens’ safety. We bring homeland security experience, organizational agility, and multidisciplinary expertise to help our clients respond to a rapidly changing threat landscape, accomplish today’s mission, and anticipate tomorrow’s demands. For more information, visit http://www.sesolutions.com.

    We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed