L2 Cyber Solutions is seeking a Cybersecurity Support Specialist to support the Information System Security Officer (ISSO) for NOAA in Boulder, CO. This role will assist in the implementation of the Risk Management Framework and ensure information system-related security risks are managed consistent with organizational business and mission objectives and the overall risk strategy. The successful candidate shall have comprehensive knowledge of IS security regulatory requirements and standards including the NIST Risk Management Framework, NIST Special Publication 800 series, Federal Information Processing Standards (FIPS), FISMA and other relevant standards or regulatory documentation. The Cybersecurity Support Specialist is expected to be self-motivated, possess excellent time management and decision-making skills. They must display excellent judgment and provide advanced application of tools and skills. Key attributes are able to work collaboratively with technical subject matter experts, keep sensitive information confidential, demonstrate excellent verbal and written communication skills and be highly organized. Responsibilities Develop, maintain, and implement security documentation (System Security Plan (SSP), FIPS 199 Criticality Assessment, FIPS 200 Control Tailoring, Configuration Management Plan (CMP), System Contingency Plan (CP), Business Impact Assessment (BIA), Privacy Impact Analysis (PIA), Privacy Threshold Analysis (PTA), Plans of Action and Milestones (POAM)) IAW customer directives (e.g. NIST, NOAADOC) throughout the information system's AA lifecycle Participate in team meetings and peer reviews Attend client meetings when tasked by supervisor Assist in system risk assessments and develop Plan of Actions and Milestones (POAM) and mitigation strategies for potential vulnerabilities. Assist with compliance reviews and conduct audits to ensure information systems maintain the compliance baseline Interpret government regulations, directives, policies and procedures Draft and implement local operating policies, procedures, and guidelines Have a working knowledge of system functions, security policies, technical security, safeguards and operational security measures Requirements CISSP, CISA, or CISM, etc. Understandingexperience of FISMA, FedRAMP, NIST, DOC, andor NOAA standards Understandingexperience with CSAM, ArchSight, BigFix, Tenable Security Center
* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.