In this position, you are an Information Security Specialist responsible for providing security-related support services to the system owners and engineering staff in accordance with federal and organizational security policies and controls. You will monitor security events and collaborate with network/security operations center personnel to address anomalies. You will act as a liaison to communicate and provide timely/accurate responses to federal and agency security related data calls (e.g., FISMA reporting, POAMs, assets with known vulnerabilities) to include interpreting changes to policies, standards, and procedures.
Essential Functions:
Support the annual FedRAMP security authorization of our FedGovCloud DevSecOps SaaSUpdate security authorization documents (e.g., System Characterization Documents, System Security Plans, System Contingency Plans, Privacy Threshold Analysis, and others as needed) to reflect the current system security architecture and data flowsPerform security scans and work with stakeholders to track, remediate or document deviationsConfigure, monitor and review audit logs of native cloud security monitoring toolsInterpret security risk assessment, review security scan results, assess security vulnerabilities and support the development/tracking of Plan of Action and Milestones (POA&Ms) mitigation and/or risk acceptanceSupport the development and modification of implementation and design documents describing how security features are implementedResearch security enhancements, document the security architecture and data flows to comply with security policies and controlsStay up-to-date on information technology trends and security standards.Qualifications:
Education: Minimum of high school diploma (Bachelor's degree in Computer Science or similar technical discipline preferred)Experience: At least 5 years of providing security engineering and authorization support.Domain: At least 3 years' experience in one or more technology domains in cloud computing, and DevSecOps processes and tool suiteCertification: CISSP and/or Azure professional certification (Azure Administrator or Azure Solutions Architect Expert preferred)Familiarity with security scanning tools such tools Tenable's Nessus and/or Security Center, OWSAP or similarThorough knowledge of FedRAMP and NIST 800 Special Publications, Federal Information Processing Standards (FIPS) and other significant federal regulationsExcellent interpersonal skills, including the ability to work on multi-functional teamsClearance: Must be a U.S. Citizen and pass a background investigation for Public TrustMust be willing to undergo a background investigationWork Location: Remote with a preference for candidates located in or within a commutable distance from TechTrend's Fairfax, Virginia headquartersBenefits: Medical, Dental & Vision coverageLife InsuranceShort, Long Term Disability InsurancePTO & Federal Holidays Off401(k) PlanAccess to state-of-the-art gymnasium (at TechTrend HQ)Premium coffee bar (at TechTrend HQ) About TechTrend:
TechTrend, Inc. is a veteran-friendly small business providing expert solutions, products, and services to the Federal government. Founded in 2003, we continue to evolve with capabilities in cybersecurity, DevSecOps, cloud managed services, cloud migration, and application development. We are a Microsoft Gold Partner and leading provider of Azure cloud services. TechTrend is recognized as a trusted partner delivering knowledge and guidance for our client's most critical and complex support and service needs. As a liaison for positive organizational change, we form relationships and build bridges while ensuring quality across functions—gaining buy-in from both leaders and end-users and removing barriers to mission success. Our established processes ensure quality delivery of results by maximizing efficiency, productivity, and client satisfaction enterprise wide. TechTrend is a fast-growing company with a dynamic, inclusive corporate culture headquartered in a state-of-the-art facility near the well-known Fairfax Mosaic District.
