Career Opportunities with Whitney, Bradley and Brown

A great place to work.

Open Positions
Share with friends or Subscribe!

Cybersecurity Risk Assessment Engineer

Office: Colorado Springs, CO
Location: Colorado Springs, CO
Job ID: S20-0393

JOB TITLE: Cybersecurity Risk Assessment Engineer

PROJECT OVERVIEW:

Decisive Analytics a WBB Company has a Cybersecurity Risk Assessment Engineer opening in Colorado Springs, CO.

Engineers support the MDA Security Control Assessors (SCA) within the Independent Verification and Validation (IV&V) team by performing comprehensive and thorough risk assessments for the MDA. The Risk Assessment process evaluates data from many sources to provide a holistic assessment that enables the Authorizing Official (AO) to make an authorization decision. This process takes vulnerabilities associated with noncompliant RMF controls and evaluates their risk to the mission and the agency to arrive at a residual risk.

JOB DESCRIPTION AND RESPONSIBILITIES:

  • Performing risk assessments on packages submitted from the Information System Security Manager (ISSM) in Enterprise Mission Assurance Support Service (eMASS)
  • Performing risk assessment activities for evaluating System Security Plans (SSP), Interim Authorization To Test (IATTs), Authorization to Operate (ATO), and Authorization to Connect (ATC)
  • Executes and documents risk assessments, including interacting directly with the SCAs and the ISSMs and their Cybersecurity support staff, and supporting ATO signing sessions

REQUIRED SKILLS AND QUALIFICATIONS:

Security Clearance: Secret

  • Secret security clearance eligible for Top Secret/SCI
  • Bachelor Degree in a technical discipline
  • 15 years of IT experience, with at least 10 years of advanced technical cybersecurity experience
  • Understanding of the Risk Management Framework (RMF) and the NIST 800-53 RMF Security Control Catalog
  • Experience assessing compliance and performing risk assessments
  • Strong technical writing skills are required for producing Risk Assessment Reports and writing assessments that will be presented to the SCA and the AO for decision
  • Certified Information Systems Security Professional (CISSP) or other qualified IASAE Level II cybersecurity certification

DESIRED SKILLS AND QUALIFICATIONS:

  • Cyber Threat Analyst background
  • Experience in Cloud authorization strategies
  • Top Secret security clearance with SCI eligibility

WORK LOCATION: Colorado Springs, CO

TRAVEL: 5%

KEY WORDS: Cybersecurity, Risk Management Framework

WBB is a technical and management consulting company that provides innovative products and services that solve government and commercial customerís toughest problems. For more than 30 years, WBB has set the standard for excellence in consulting services, while providing its employees with an outstanding work environment with ample opportunities for growth and success. WBB continues to enjoy impressive growth, which is directly attributed to the companyís hiring practice of always hiring the very best professionals from government, military and industry.

We are proud of our diverse environment and are an Equal Opportunity Employer. WBB is committed to a policy of equal employment opportunity. WBB participates in E-Verify.

WBB does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of WBB and WBB will not be obligated to pay a placement fee.

Applicant Tracking System Powered by ClearCompany HRM Applicant Tracking System