Free Authorizing Official Designated Representative - St. Louis

Published date: November 24, 2021
  • Location: Missouri, United States

Authorizing Official Designated Representative - St. Louis

Fort Belvoir, MD & St. Louis, Missouri

No Relocation - Local Candidates Only

Must be a US Citizen or Green Card holder.


Individual(s) in the AO Representative role must possess a working knowledge of:

System Function
Security Policies
Technical Security Safeguards

NGA experience preferred.

The client has an immediate opening for an Authorizing Official Designated Representative to provide technical and organizational support to the Authorizing Official (AO) for our client, National Geospatial-Intelligence Agency (NGA). NGA has a mission-critical need for information assurance measures that protect and defend information and information systems by assuring their availability, integrity, authentication, confidentiality, and non-repudiation, as well as providing for restoration of information systems by incorporating protection, detection, and reaction capabilities.

Individual(s) in the AO Representative role must possess a working knowledge of:

· System Function

· Security Policies

· Technical Security Safeguards

Tasks may include:

· Manage and recommend approval of authorization packages (e.g., ISO/IEC 15026- 2).

· Review authorization and assurance documents to confirm that the level of risk is within acceptable limits for each software application, system, and network.

· Establish acceptable limits for the software application, network, or system.

Required Knowledge, Skills, and Abilities:

Support senior official or executive with the authority to formally assume responsibility for operating an information system by advising on an acceptable level of risk to organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, and the Nation.

Knowledge

· Risk management processes (e.g., methods for assessing and mitigating risk).

· Laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.

· Cyber defense and vulnerability assessment tools and their capabilities.

· Cryptography and cryptographic key management concepts

· Organization's enterprise information security architecture, evaluation and validation requirements, and enterprise IT goals and objectives.

· Security Assessment and Authorization process.

· Vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).

· Risk Management Framework (RMF)

Requirements.

· Current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities.

· New and emerging IT and cybersecurity technologies.

· System and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).

· Systems diagnostic tools and fault identification techniques.

· Supply Chain Risk Management Practices (NIST SP 800-161)

· Critical infrastructure systems with information communication technology that were designed without system security considerations.

· Security architecture concepts and enterprise architecture reference models (e.g., Zachman, Federal Enterprise Architecture [FEA]).

· Security models (e.g., Bell-LaPadula model, Biba integrity model, Clark-Wilson integrity model).

· Personally Identifiable Information (PII), Payment Card Industry (PCI), and Personal Health Information (PHI) data security standards.

· Penetration testing principles, tools, and techniques.

· Application Security Risks (e.g., Open Web Application Security Project Top 10 list)

Skills

· Discerning the protection needs (i.e., security controls) of information systems and networks.

· Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

Abilities

· Develop policy, plans, and strategy in compliance with laws, regulations, policies, and standards in support of organizational cyber activities.

· Coordinate cyber operations with other organization functions or support activities.

· Interpret and apply laws, regulations, policies, and guidance relevant to organization cyber objectives.

· Work across departments and business units to implement organization’s privacy principles and programs and align privacy objectives with security objectives.

· Relate strategy, business, and technology in the context of organizational dynamics.

· Understand technology, management, and leadership issues related to organization processes and problem solving.

· Understand the basic concepts and issues related to cyber and its organizational impact.

· Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

· Identify critical infrastructure systems with information communication technology that were designed without system security considerations.

Minimum Qualifications:

· NGA experience (preferred)

· TS/SCI clearance, active certifications per job requirement

AAP/EEO Statement

Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.

Required Knowledge, Skills, and Abilities: (Submission Summary):

1. NGA experience (preferred)

2. TS/SCI clearance, active certifications per job requirement

3. Must be a US Citizen or Green Card holder?
Reference : Authorizing Official Designated Representative - St. Louis jobs

Contact seller Share

Useful information

  • Avoid scams by acting locally or paying with PayPal
  • Never pay with Western Union, Moneygram or other anonymous payment services
  • Don't buy or sell outside of your country. Don't accept cashier cheques from outside your country
  • This site is never involved in any transaction, and does not handle payments, shipping, guarantee transactions, provide escrow services, or offer "buyer protection" or "seller certification"

Related listings

  • Sr Informatica needed
    Sr Informatica needed
    Technology - (Missouri) - November 1, 2021 Free

    St Louis, MO 6+ months The Role will be involved in health care applications Sysadmin & Break-fix, Minor Enhancements. Leading the Analytics tower. Interpreting data, analyzing results using statistical techniques. Application Health check-up for all...

  • Supply Chain Management
    Supply Chain Management
    Technology - (Missouri) - October 28, 2021 Free

    Job Title: IT - Supply Chain Management | JDA Demand Work Location: Kansas City, MO Duration: 12 Months QUALIFICATION ? Understanding in configuring and customizing JDA Demand and Fulfillment Module ? Experience with Oracle databases - SQL: queries, ...

  • Salesforce Tester
    Salesforce Tester
    Technology - (Missouri) - October 4, 2021 Free

    Role : Salesforce Tester Location : St. Louis, MO (Onsite From Day 1)Duration : Long Term ContractInterview mode : Skype Exp - 8+yr (Max- $52/- hr CTC) ? USC/GC/H1 Must have Telecom Domain Billing and CRM exp Job Responsibilities:?        Background ...

Comments

    Leave your comment (spam and offensive messages will be removed)