Security Assessor

Spry is a certified Small Disadvantaged Business (SDB) headquartered in McLean, VA. Spry provides Enterprise, C4IT, Management, and Cyber Solutions to the federal government and commercial entities. Founded in 2001, Spry Methods was built on the foundation of combining industry knowledge with unmatched responsiveness to produce results for our customers. Our goal is to build a business dedicated to the maximization of value for all stakeholders starting with our employees, our customers, and our community. We recognize that talented and dedicated employees are our most valued assets and the foundation of our success. Guided by these principles, we have established an impressive track record of proven past performance serving our customers within the Commercial, Federal Civilian, DoD, and Intelligence Communities. A CMMI Level 3 certified and ISO 9001:2008 registered company, Spry is committed to quality and continuous improvement.

Spry Methods is seeking a Security Assessor to provide security support to DOI's Land Mobile Radio service in Denver, CO. For the right security professional, we will allow remote work on this task order.

• Understanding of security in Land/Mobile/Radio arena
• Ensuring that Stakeholders adhere to Federal Information Assurance policies and procedures to acquire and maintain an Information System's Authority to Operate (ATO) under The Federal Information Security Modernization Act (FISMA) of 2014 following NIST 800-53 guidelines and NIST 800-53a security controls assessment practices
• Strong knowledge of Risk Management Framework (RMF)
• Guide systems engineering design and development toward a "baked-in" security design using Information Assurance best practices as well as organizational-specific policies and guidelines
• Serve as daily security point of contact
• Expert knowledge and hands-on experience with FISMA Systems, NIST 800-series guidelines, FIPS, Security Assessment & Authorization (SA&A) requirements and processes, Continuous Monitoring Framework experience and its tools, Plan of Action & Milestones (POA&M) policies, and vulnerability/patch management, risk management, project management, proficient with Microsoft products - Word, Excel, PowerPoint
• Proficient with vulnerability and scanning tools and well-versed in interpreting risk posture resulting from assessment reports. Experience in project management and tracking, and the Microsoft suite of office products
• Maintain up to date documents such as procedures, work instructions, plans and manuals
• CSAM knowledge and tool understanding

• Must have an understanding of security support for Land/Mobile/Radio services
• CISSP or CAP
• Excellent written and verbal skills

At Spry, we believe talented and dedicated employees are our most valued assets and the foundation of our success. We are committed to crafting a diverse and inclusive workplace that endorses engagement, creativity, quality and innovation.

We are proud to be an Affirmative Action and Equal Opportunity Employer and as such, we evaluate qualified candidates in full consideration without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, age, disability status, protected veteran status, and any other protected status.