Senior Security Engineer, Application Security
Trail of BitsSalary not specified
Full Time
Senior (5 to 8 years)
Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
GovernmentIndustries
Requirements
- 6+ years’ experience with NIST, FISMA, and Security Assessment & Authorization
- FedRAMP and Cloud experience (e.g., Azure, AWS, Oracle (OCI))
- Knowledgeable on various security-related NIST publications (e.g., SP 800-53r5, SP 800-53A, SP 800-18r1, etc.)
- In-depth knowledge of the Risk Management Framework (RMF)
- Ability to obtain and maintain a customer Public Trust clearance (sponsorship available)
- Certifications: CISSP required
Responsibilities
- Serve as integral team member for agency’s risk assessment program, performing internal audits and building streamlined assessment processes
- Manage the security of a system’s accreditation boundary with in-depth security knowledge and high technical expertise
- Focus on enterprise governance and risk of exposure across multi-cloud and on-premise environments, including multiple vendors, customers, and XaaS products
- Evaluate agency’s current system infrastructure and recommend changes to improve security posture
- Provide customer support for security compliance and audit liaison activities, focusing on improving the security posture of Forensic and Investigative Labs
- Develop, maintain, and assess Security Assessment & Authorization (SA&A) packages resulting in an Authority To Operate (ATO) for IT systems
- Create and maintain System Security Plans (SSPs) and supporting documentation (e.g., Contingency Plans, Incident Response Plans, Account Management Plans) per agency guidelines, including writing implementation statements, performing self-assessments, peer assessments, and collaborating with stakeholders
- Develop, coordinate, test, and train personnel on Incident Response Plans and Contingency Plans
- Ensure information systems are accredited, maintain ATO, and are continuously monitored
- Perform risk assessments for agency systems/applications, including cloud-based systems
- Perform security control assessments, including collecting artifacts/evidence and interviewing system owners/representatives
- Maintain and track system Plans of Action and Milestones (POA&Ms)
- Review and analyze vulnerability scan data and provide remediation recommendations
- Take ownership of various projects
- Improve processes and procedures and make recommendations to enhance the security posture of the agency's IT systems and applications
Skills
ISSO
Risk Assessment
SA&A
ATO
SSP
Incident Response Planning
Contingency Planning
Security Audits
Multi-Cloud Security
On-Premise Security
Account Management Plans
AnaVation LLC
IT engineering services for federal government
About AnaVation LLC
AnaVation LLC provides specialized technology solutions to complex technical and analytical problems, primarily serving the Federal Government. The company offers a variety of IT engineering services, including intelligence collection and processing, analytical systems, big data solutions, and cybersecurity measures. AnaVation focuses on delivering tailored solutions that meet the unique needs of its clients, positioning itself as a trusted partner in the government technology market. The company generates revenue through contracts with federal agencies, ensuring a steady income by maintaining long-term relationships. AnaVation's success is supported by its dedicated team, known as AnaVators, who are committed to delivering high-quality engineering solutions while fostering a positive work culture. The goal of AnaVation is to enhance operational efficiency and security for its clients by solving complex technical challenges.
Reston, VirginiaHeadquarters
2013Year Founded
VENTURE_UNKNOWNCompany Stage
Government & Public Sector, CybersecurityIndustries
51-200Employees
Benefits
Health Insurance
Dental Insurance
Vision Insurance
Disability Insurance
401(k) Retirement Plan
401(k) Company Match
Paid Vacation
Paid Holidays
Professional Development Budget
Life Insurance
Risks
Emerging tech startups may reduce AnaVation's market share in federal IT services.
Rapid AI evolution requires significant R&D investment to maintain competitiveness.
Potential federal IT budget cuts could impact AnaVation's primary revenue streams.
Differentiation
AnaVation specializes in IT services for the Federal Government, ensuring tailored solutions.
The company emphasizes a strong work culture, enhancing employee satisfaction and client outcomes.
AnaVation's expertise in cybersecurity and big data sets it apart in the government sector.
Upsides
Increased demand for cloud-native cybersecurity solutions offers expansion opportunities for AnaVation.
U.S. government's IT modernization budget boost in 2024 could secure more contracts.
AI-driven data analytics rise enhances AnaVation's big data solutions for federal clients.
Related Jobs
RemoteRemoteSenior Information Security Specialist-SECRET CLEARANCE REQUIRED
Latitude AISalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Enterprise Risk Management Specialist
Spring HealthSalary not specified
RemoteRegulatory & Security Compliance Analyst
RainSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSr Software Developer in Test (FedRamp)
CriblSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSr. Information Security Analyst
ValonSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteDeputy Compliance Officer
Bitcoin DepotSalary not specified
RemoteSenior Cloud Security Engineer
PaytientSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteAccreditation Specialist Lead (Remote)
ExpediaSalary not specified
RemoteRF Signal Processing Specialist-Geospatial
Muon SpaceSalary not specified
- Full Time
- Junior (1 to 2 years)
RemoteSenior Digital Auditor
GE HealthcareSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteGovernance Senior Risk Analyst
M&T BankSalary not specified
RemoteSenior Implementation Manager
DrataSalary not specified
RemoteSenior Penetration Tester
HumanaSalary not specified
RemoteSenior Security Engineer
BraceSalary not specified
- Full Time
- Senior (5 to 8 years)