CIS Accreditation Security Specialist

Systems Planning and Analysis, Inc. (SPA) delivers high-impact, technical solutions to complex national security issues. With over 50 years of business expertise and consistent growth, we are known for continuous innovation for our government customers, in both the US and abroad. Our exceptionally talented team is highly collaborative in spirit and practice, producing Results that Matter. Come work with the best! We offer opportunity, unique challenges, and clear-sighted commitment to the mission. SPA: Objective. Responsive. Trusted.

The Joint, Office of the Secretary of Defense, Interagency Division provides expert support services to a range of customers spanning across the Department of Defense, Federal Civilian, and international markets. JOID provides a diverse portfolio of analytical and programmatic capabilities to help our customers make informed decisions on their most challenging issues.

SPAs NATO Allied Command Transformation Group within JOID provides capability development, portfolio management, program management, quality management, cost estimation analysis, standardization, reporting, software solutions and information management, and capability management support. We also provide an improved capability requirements capture process, including the generation, documentation and tracing of user requirements, with appropriate technical scrutiny, over the entire lifecycle of the requirements from capability definition through capability realization and capability usage.

We have a near-term need for a CIS Accreditation Security Specialist to provide onsite support out of Allied Command Transformation, NATO in Norfolk, VA.

The candidate will maintain records of the progress of a CIS through NATO security accreditation processes and the application of NATO security regulations. Will conduct reviews of security accreditation documentation for CIS and make recommendations for Security accreditation documentation including the CIS Description, Risk Assessment Results, System-Specific Security Requirements Statement, Security Operating Procedures, Security Test & Validation Plan, Security Test & Validation Results, Incident Reports, etc. The candidate will ensure that verification activities are properly executed and confirm that the agreed security measures have been implemented. Will provide support and guidance to CIS developers and service, note that some developers and service providers are based in Europe, contribute to updates of the statement of the security risk for ACT CIS, liaise with other roles in the Security Accreditation process, and represent the ACT Security Accreditation Authority (SAA) in NATO Enterprise meetings, either in person or via VTC.

Required:

• Bachelor's degree in computer science, network security, cyber-security, or related field.
• Certification in CIS security or cyber defense disciplines provided by a recognized certification scheme, as a Certified Information Systems Security Professional (CISSP), GIAC Security Expert, or ISACA Certified Information Security Manager (CISM).
• 5+ years of demonstrated experience in CIS security, CIS development, or CIS service delivery.
• Within the 5 years of experience above, at least 3 years of demonstrated experience working in or in direct support of a national, international, or multi-national CIS security accreditation, certification, or similar field.
• Demonstrated proficiency in English as defined in STANAG 6001.
• Active NATO or National SECRET (or higher) security clearance.
• Valid NATO Nation passport with no travel restrictions to NATO nations.
• Able to prepare written documentation to transfer technical information about concepts, situations, products, services, or results to audiences with varying levels of technical knowledge.
• Thorough understanding of grammar, sentence structure, and intended audiences to the process of reviewing, editing, or constructively critiquing a document, publication, or message.
• Skill in clearly and effectively conveying information verbally to senior leaders; able to deliver clear, effective communication and ability to take responsibility for understanding others.
• Knowledge and ability to use computers and related technology; proficient in Microsoft Office products.
• Able to work fully onsite based on client needs.