System Administrator - Onsite Luray, VA

A

aFit Staffing Inc.

System Administrator - Onsite Luray, VA

Luray, VA
Full Time
Paid
  • Responsibilities

    More about aFit:

    You want to work where you know you are a perfect fit. At aFit, a woman owned (WBE) company based in Indianapolis, we are devoted to being collaborative, honorable, and accountable. Our company provides project-based staffing for government and commercial organizations. To our prospective clients, aFit offers a talented workforce in a team-based environment to produce concrete and reliable outcomes. At aFit, we focus on building strong relationships and keeping the day-to-day flexible in an in-person or remote-enabled environment.

    aFit Staffing, Inc. is an equal opportunity employer.

    Description of Duties:

    The role involves utilizing the NIST Risk Management Framework (RMF) to assess information security controls, measuring their effectiveness, and identifying control gaps. This includes ensuring compliance with standards and regulations such as NIST Special Publications, FIPS, FedRAMP, and federal policies. Responsibilities also include preparing Security Impact Assessments, Addendums, Security Authorization Packages, and related documentation such as official out-briefs, security authorization recommendations, and memorandums. The position requires identifying, assessing, and prioritizing risks, collecting evidence, and documenting findings to support conclusions. It also involves reporting on compliance, recommending remediation actions for deficiencies, tracking Plans of Action and Milestones (POAMs), and coordinating third-party risk assessments and IT audits. Additionally, the role includes managing remediation efforts, supporting global policy adherence, providing security expertise to stakeholders, and enforcing policy compliance, including managing policy exception requests. Regular updates on assessments and project status are also required.

    Desired Skills and Experience:

    • Computer Security System Specialist III expereince needed.
    • 10+ years’ experience in Information Security
    • 5+ years’ experience building and managing Windows server platforms
    • Thorough knowledge of NIST 800 Special Publications, Federal Information Processing
    • Expertise the NIST Risk Management Framework to generate and maintain SA&A documentation to include System Security Plans, Security Assessments Reports, and Risk Assessments for internal and cloud-based systems (ie., FedRAMP)
    • Experience using security scanners (e.g. Nessus, Nexpose, etc) and remediating vulnerabilities.
    • Using the NIST Risk Management Framework (RMF) to conduct assessments of Information security controls in order to measure the effectiveness of controls and identify control gaps.
    • Ensure compliance to guidance, standards and regulations such as NIST Special Publications, FIPS, FedRAMP, and other federal regulations and policies.
    • Preparing Security Impact Assessments, Addendums, Security Authorization Packages and including documentation such as Authorization
    • Official Out-briefs, Security Authorization Recommendations and Security Authorizations Memorandums.
    • Identify, assess, and prioritize identified risks.
    • Collect evidence, artifacts, and document findings to support conclusions
    • Report on compliance with internal policies, controls, and standards Provide recommendations for remediation of identified deficiencies.
    • Track and report on Plans of Action and Milestones (POAMs) (i.e., findings/deficiencies to closure).
    • Coordinate third-party risk assessments and IT audits.
    • Manage remediation efforts and report on the status of control deficiencies.
    • Support security initiatives and global policy adherence and awareness efforts.
    • Support global information security metrics and reporting program(s).
    • Provide security expertise to business units and key stakeholders.
    • Enforce policy adherence and manage formal policy exception requests.
    • Provide timely status updates/reporting on assessments and assigned projects.
    • Able to perform more varied and difficult tasks.
    • Able to work in a collaborative team environment to obtain the best results.
    • Work as a topmost trusted partner with aFit and the client.
    • Provide attention to details.
    • Approaches challenges with a positive, consultative mindset
    • Self-starter with the desire to achieve and work with integrity.
    • Willingness to grow and change through ambiguity.
    • Learning agility, or the ability to develop new skills.
    • Open and receptive to feedback to continuously grow.

    Education:

    • Bachelor’s degree in computer science or a related engineering field with training in information security.

    Additional Information:

    • Tax Type: W2 Only
    • US Citizenship Required
    • Public Trust

    _
    _

    Please note, this full-time, hourly position is in Luray, VA and we do not offer relocation assistance at this time.