Careers > Current Openings

Project Manager – Cyber Compliance & Assessment

Location: Washington DC(remotely initially during the COVID-19)

Role Summary: The Project Manager/ISSM will be leading the team of security assessors responsible for government client GSS or MA financial systems/applications, managing information security compliance for the same.  Providing Security SME Support to a federal agency located downtown DC. The contract just commenced and is funded for 4 years. Preferred experience includes:

  • Expert level knowledge of and experience with FISMA-related activities to include system security plans, contingency plans, incident response plans, configuration management plans, security control requirements and assessments, Plan of Action and Milestones (POA&M), and training requirements.
  • Expert level knowledge of and experience in applying NIST SP 800-37 Risk Management principles, interpreting requirements, and developing implementation guidance.
  • Expert level knowledge of and experience implementing requirements and guidance as indicated in the documents identified as follows:
  • NIST SP 800- 18, Guide for Developing Security Plans for Federal Information Systems NIST SP 800-30, Guide for Conducting Risk Assessments
  • NIST SP 800-34, Contingency Planning Guide for Federal Information Systems
  • NIST SP 800-37, Guide for Applying the Risk Management Framework to Federal Information Systems: A Security Life Cycle Approach
  • NIST SP 800-39, Managing Information Security Risk: Organization, Mission, and Information System View
  • NIST SP 800-53A, Assessing Security and Privacy Controls in Federal Information Systems and Organizations: Building Effective Assessment Plans
  • NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  • NIST SP 800-60, Guide for Mapping Types of Information and Information Systems to Security Categories
  • NIST FIPS 199, Standards for Security Categorization of Federal Information and Information Systems
  • FedRAMP Security Assessment Framework, Security Controls and Agency Guide for FedRAMP Authorizations https://www.fedramp.gov/resources/documents/
  • Expert level knowledge and experience with documentation and writing policies, procedures, guidance, standards and instructional materials.
  • Ability to design, develop and implement FISMA compliant solutions that meet current and future business requirements and enhance and optimize the existing security architecture.
  • Knowledge of and experience with Federal Privacy requirements to include Privacy Impact Assessments PIA and personally identifiable information (PII).

MINIMUM QUALIFICATIONS:

  • 7-10 years’ experience in Federal IT
  • 5 years’ extensive/dedicated experience within Cyber Security
  • 3 years’ experience managing Teams of 4-8 people (any area)
  • Bachelor’s Degree Preferred: Computer Science, Computer Engineering, Information Systems, Math or technical equivalent
  • CISSP or other certification Preferred
  • US Citizen - Public Trust

Nature of Work: Security Leadership and SME Support covering all aspects of Cyber
Security Compliance. The Security Lead supports day to day operations and event
investigation. Expertise in policy, compliance, documentation, A&A, are key to the role. This
role will be part of the Information Security Team including many Federal and contract employees.

Benefits: Zen Strategics pays excellent benefits at market rate in Medical, Dental, Vision and Short-Term Disability. In addition, we also will also offer Metro/VRE transit or monthly car parking benefits (subsidized) in the form of travel allowance; Commuter pay and a competitive PTO policy.

Zen Strategics is an Equal Employment Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information

Apply Now

Please send your resume to recruiting@zenstrategics.com

Core Capabilities

  • Controlled Unclassified Information (CUI) Governance, Implementation & Assessments
  • Cyber Security - Strategy & Operations
  • Cloud – Fed RAMP & IV&V
  • Mobility & Big Data
  • Program Management
  • Corporate Strategy
  • Market & Competitive Analysis
  • Systems Engineering
  • Business Operations
  • Wireless & Telecom
    (Public Safety/Interoperability)
  • Strategic Alliances
  • Mergers & Acquisitions(Advisory, Due Diligence & Support)