Positions Available

nowhiring.png

 

Assessment and Authorization Analyst

  Full Time Salaried Employment                                 Clearance Requirements: TS/SCI

   Location: Washington DC

                  Responsibilities and Duties:

·       Perform assessment and authorization (A&A) efforts under the NIST Risk Management Framework (RMF) on behalf of a federal civilian agency as a contractor

·       Conduct cybersecurity analysis in preparation for A&A reviewing and validation of all associated cybersecurity documentation and technical controls

·       Develop System Security Plans (SSP), Contingency Plans, Business Impact Analyses (BIA), Plan of Action and Milestones (POA&Ms), Security Assessment Report (SARs), Security Assessment Plan (SAPs), and other documentation
 

·       Identify key stakeholders in A&A efforts and ensure system documentation reflects current system security configurations to include hardware and software components, data flow, interconnections, and ports, protocols, and services, etc.

·       Identify potential risks associated with system configurations and advise on mitigation strategies

·       Participate in A&A status meetings and facilitate moving systems toward a successful A&A effort

·       Assist to estimate Level of Effort (LOE) involved in performing A&A activities

·       Assist to develop and implement detailed test plans and review findings from self-assessments to determine readiness for independent validation and verification (IV&V) assessment

·       Assist customer program offices in interpreting and applying mitigation strategies

·       Conduct IV&V assessments and analyze test results for accuracy, compliance, and adherence to Federal cybersecurity requirements

·       Conduct thorough reviews of all vulnerabilities, architecture, and defense in depth strategies and report findings in POA&Ms document

·       Document residual risks and provide the cybersecurity risk analysis and mitigation determination results

·       Produce risk assessment artifacts describing initial risks during system development and residual risks identified during IV&V

·       Maintain cybersecurity policy and processes as assigned

·       Manage and track systems or programs involved in the A&A process.

·       Develop and implement security related directives and guidance for Information Assurance; Information Technology; and Information Management;

·       Promote an environment of continuous process improvement, learning and team collaboration

 

Minimum Qualifications

 

  • Must possess a Bachelor’s degree in a related field

  • Must possess a Top-Secret Personnel clearance with eligibility for access to SCI (TS/SCI). Top Secret SSBI candidates could be read in in SCI

  • 5+ years of experience in the following areas: Cybersecurity policy, procedures, and processes, including RMF and NIST 800-53 and A&A's

  • 2 years of experience in EDP auditing, computer programming, or other relevant areas.

  • One or more of the following certifications preferred (Security+, CAP, CISSP, CISM, GSEC, GCIH, or GSLC)

  • Familiar with information security and assurance principles and associated supporting technologies

  • Excellent customer service, organizational, and writing skills

  • Knowledge of FISCAM, GAAS, applicable programming languages, system application & hardware components, networks, etc.

 

Working Conditions/Physical Demand Statement

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. The noise level in the work environment is usually moderate.

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of the job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

While performing the duties of this job, the employee is frequently required to sit, talk and hear.  The employee is occasionally required to walk; use hands and fingers to operate, handle, or feel objects, tools, or controls; and reach with hands and arms.  The employee must occasionally lift and/or move up to 25 pounds.  Specific vision abilities required by this job include close vision and the ability to adjust focus.

 
 

Assessment and Authorization Assessor

           Full Time Salaried Employment                                 Clearance Requirements: TS/SCI

            Location: Washington, DC

Responsibilities and Duties:

· Perform Security Assessments on low, moderate and high information systems as part of an active third-party assessment organization in accordance with National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) Step 4

· Complete comprehensive test plans for identified security controls following NIST 800-53, FedRAMP guidance, and/or agency-specific guidance

· Produce complete, accurate, and timely findings reports

· Develop documents and document templates

· Promote an environment of continuous process improvement, learning and team collaboration

Minimum Qualifications

· Must possess a bachelor’s degree in a related field

· Must possess a Top Secret Personnel clearance with eligibility for access to SCI (TS/SCI). Top Secret SSBI candidates could be read in in SCI

· 5+ years of experience in the following areas: Cybersecurity policy, procedures, and processes, including RMF and NIST 800-53 and A&A's

· One or more of the following certifications preferred (Security+, CAP, CISSP, CISM, GSEC, GCIH, or GSLC)

· Familiar with information security and assurance principles and associated supporting technologies

· Excellent customer service and organization skills

· Excellent oral and written communication skills

 

FISMA SME

                  Full Time Salaried Employment                                 Clearance Requirements: N/A

            Location: Washington, DC

                  The Subject Matter Expert provides subject matter technical knowledge and analysis to support functional technical areas across multiple projects. Applies principles, methods and knowledge of the functional area to specific task requirements leading towards the development of solutions to complex problems and is responsible for planning, developing, finalizing, and reviewing key deliverables focusing on cybersecurity programs. Strong candidates for this position will have a strong understanding of standards and requirements outlined by FISMA, NIST, OMB and others are required. The SME III Cybersecurity will be actively engaged in identifying unique system characteristics, interviewing key organizational personnel (technical, administrative, and executive), working with the IT Security consulting team to compose requisite documentation (security categorizations, risk assessments, contingency plans, security test & evaluation reports, vulnerability assessment reports, etc.), and mapping complex technical requirements, functionality, and capabilities to prescribed security controls, policies, and practices. Analyzes data collected from data calls, and articulates results in both detailed and high-level formats for a diverse group of internal and external stakeholders.

Qualifications:

  • Bachelor's Degree in relevant field and a minimum of 7 years of experience

  • Candidates possessing a Master’s Degree in a relevant field may substitute 2 years of experience.

  • Certified Information Systems Security Professional (CISSP) or similar industry recognized certification

  • Experience implementing Cyber Security Frameworks such as the NIST Risk Management Framework

Preferred Qualifications:

  • Candidates with Department of Commerce Cybersecurity experience will be given special consideration.

While this job description describes the essential functions and qualifications of the position described, it is not intended to serve as a comprehensive list of all the duties performed by all employees in this job.  Incumbent(s) may not be required to perform all duties listed and may be required to perform additional, position-related duties.

1099 Candidates will be considered.

 

Security Engineer

            Full Time Salaried Employment                                 Clearance Requirements: N/A

            Location: Washington, DC

Job Duties

· Provides subject matter expertise for cyber security and trusted system technology.

· Applies advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems.

· Researches, writes, reviews, disposition feedback and finalizes recommendations regarding cyber security policy, security test and evaluation reports, and security engineering practices and processes.

· Conducts research and assist with writing risk assessment reports to include risk thresholds, evaluation, and scoring.

· Supports analysis of the findings and provides expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings. and other complex problems

 

Minimum Qualifications

· Must possess a bachelor’s degree in a related field

· Must be suitable for Public Trust clearance

· 5 years of experience in a related field

· Thorough understanding of cyber security processes and technologies

· Relevant IT certifications (Security+, CCNA Security, etc. are a plus.

 

1099 Candidates considered as well.

 

Working Conditions/Physical Demand Statement

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. The noise level in the work environment is usually moderate.

 

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of the job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

 

While performing the duties of this job, the employee is frequently required to sit, talk and hear.  The employee is occasionally required to walk; use hands and fingers to operate, handle, or feel objects, tools, or controls; and reach with hands and arms.  The employee must occasionally lift and/or move up to 25 pounds.  Specific vision abilities required by this job include close vision and the ability to adjust focus. 

 

Subject Matter Expert I (Policy)

            Full Time Salaried Employment                                 Clearance Requirements: N/A

            Location: Washington, DC

                  Job Responsibilities

  • Provide subject matter technical knowledge and analysis to support functional technical areas of a project. Apply principles, methods, and knowledge of the functional area to specific task requirements to develop solutions to complex problems.

  • Support cyber security project teams in the delivery of program and task order requirements.

  • Create and deliver cyber security reports, documents and briefings, and advises on industry best practices. 

  • Conduct research to resolve complex issues or problems.

  • Conduct cybersecurity data calls, monitors requirements of data requests, analyzes data, and articulates results in both detailed and high-level formats for a diverse group of internal and stakeholders, in response to Federal mandated, Senior leadership, mission-required drivers for continued cyber defense strategies.

  • Proactively review, update, and maintain cybersecurity policy, guidance documents, directives, templates, and materials to ensure all documentation reflects and incorporates the most recent version of all DOC cyber security program documentation.

  • Provide Cyber security and Privacy requirements and guidance, including, but not limited to the following:

    • Provide a gap analysis, with recommendations for improvement, of existing Cyber security policies, handbooks, standards, procedures, and recommend disposition (i.e. continued use as is, needs revision, or rescind)

    • Recommend, review, and update existing and/or develop new Cyber security policies, handbooks, standard and procedures

    • Ensure documentation is current and relevant for DOC processes and programs

    • Ensure alignment with of security policy with agency programs like privacy, supply chain risk management, enterprise architecture, FISMA, etc.

    • Draft, review, and/or comment on CI and CISO directives and other policies, procedures, and correspondence

    • Produce documentation, which includes security documentation, user manuals, training material, standard operating procedures (SOP), network diagrams system-level security requirements, security specifications, and metrics for product/system testing evaluation and assessment

    • Perform inventory review and update plan with schedule monthly

    • Perform inventory review and update plan with schedule monthly

    • Delivery of Authority To Operate (ATO) packages

    • Review packages to CISO and CIO as required

 

                  Minimum Qualifications

 

  • Bachelor's degree

  • CISSP or similar-level industry-recognized certification approved by the DOC IT Security Program Policy.

  • 5+ years of related experience, including at least 3 years of experience in Implementation of NIST Risk Management Framework (RMF), Cybersecurity Framework (CSF), Federal Information Security Modernization Act (FISMA) and full complement of information security and privacy risk and controls from NIST Special Publication 800 series in an enterprise environment within the US Federal Government.

 

Budget Analyst and eCPIC Project Manager

Full Time Salaried Employment                                 Clearance Requirements: N/A

            Location: Washington, DC

                  Job Overview

The Enterprise Capital Planning and Investment Control (ECPIC) Project Manager has good organization, planning, analysis, communications, and people skills. He or she understands Federal capital planning (‘OMB300’ Business Cases). Ideally, he or she also understands Information Technology (IT) portfolio management and/or projects.

                  Responsibilities

  • Providing oversight support at the Department level for a set of Federal ‘Major IT Investment Business Cases’ (formerly known as OMB300’s) maintained by subordinate organizations

  • Assisting with validation of ‘Major IT Investment Business Cases’ in the eCPIC tool

  • Analyzing and compiling high-level Program Status information from OMB300 data.

  • Documenting/updating instructions for Department Project Managers (PMs) to comply with annual OMB updates to guidance on creation, maintenance, and reporting of ‘Major IT Investment Business Cases’.

  • Assisting Investment owners identify Operational Metrics.

  • Maintaining associated Policy, Process, and Procedures documentation.

  • Manage project scope, schedules, and associated risks/issues in order to produce high quality deliverables/work products and deliver them in a timely manner (on or before the scheduled due date) including, but not limited to:

    • Major Business Case Review Scorecards

    • Collection of OMB Major Investment Artifacts

    • Major Business Case Annual Submissions to OMB

    • CPIC Process and Procedure Documentation

  • Ideally provide CPIC subject matter expertise in order to:

    • Guide new department Major Investments through the process of building out their initial Business Case

    • Provide necessary training to PMs of new Department Major Investments and/or provide necessary support for internal team members involved with the OMB Budget Submission process (e.g. IT Portfolio Summary, Infrastructure Spending Summary, Cloud Spending Summary, and Major Investment Business Cases).

Qualifications

  • Experience with OMB CPIC / IT Investment Management processes, Major IT Investment Business Cases, and preferably the eCPIC tool.

  • Experience working with Project Managers (PMs) in a Federated OCIO environment (interacting with Bureau OCIO organizations).

  • Excellent organizational skills with the ability to coordinate multiple work streams, multi-task, and work well under tight deadlines

  • Strong interpersonal skills and proven experience in building successful partnerships with business and technical groups

  • Self-starter with ability to perform and lead work independently

  • Structured problem solving

  • Excellent verbal and written communication skills

  • Ability to use multiple communication methods (written/visual) to work with all levels of staff

  • Ability to interact effectively with a variety of contacts/relationships, including senior-level managers and technical SMEs

Minimum Requirements

  • Bachelor’s degree required.

  • 5-10 years of professional experience.

  • 2 years of capital planning ‘Major IT Investment Business Case’ (formerly OMB300) experience

  • Capital Planning certification a plus

  • MBA or equivalent degree a plus

  • Project Manager (PM) experience a plus

  • Project Management Professional (PMP) Certification a plus

 
Photo by oneinchpunch/iStock / Getty Images

Pashto/Dari Linguist

Triquetra Technologies is accepting applications for Linguists that can Speak and Write fluently in Pashto, Dari and English. Linguist  will provide foreign language services to support classified Operations with US Military personnel in and around Afghanistan:

  • Support their assigned unit 7 days per week for a minimum of 8 hours per day which can be extended to 12 hours or longer depending on mission. Read, write, and speak in clear and concise grammar and pronunciation the required foreign languages and English fluently in all three languages of Pashto, Dari, and English.

  • Have the ability to conduct consecutive, accurate translation and interpretation of on-going conversations and/or activities.

  • Have the familiarity with and ability to conduct oneself in accordance with the local culture and customs.

  • Have the ability to deal inconspicuously with local populace.

  • Be willing and able to live and work in harsh environments, to include living and working in temporary facilities as mission dictates.

  • Have the ability to serve in a combat zone if necessary.

  • Have the ability to function effectively and efficiently during extended periods of high pressure and stress.

Minimum Requirements

  • Provide general linguistic support for military operations and interpret during interviews, meetings, and conferences.

  • Interpret and translate written and spoken communications.

  • Transcribe and analyze communications.

  • Perform document exploitation.

  • Scan, research, and analyze foreign language documents for key information.

  • Translate foreign language documents.

  • Identify and extract information components meeting military information requirements.

  • Provide input to reports.

Desired Requirements

  • CAT I – Must be a U.S. Citizen eligible for a Security clearance

  • CAT II/III - Must be a U.S. Citizen that holds an active security clearance

  • CAT III - Must hold a TS/SCI clearance.

  • Must be proficient in reading, writing, listening, and speaking target language(s) and English.

  • Must be willing to travel overseas, in this case, Afghanistan.

 

Junior All Source Anaylst

Triquetra Technologies is accepting applications for Junior All Source Analysts with the following requirements:

• Bachelor or Master’s Degree or specialized training and 2-3 years of CT intelligence analysis experience
• In lieu of degree, 3-4 years of military intelligence experience or equivalent intelligence/academic experience
• Must be proficient in the use of information technology, including but not limited to standard Microsoft Office and Adobe Software applications required to perform redaction/declassification of sensitive documents
• Experience with performing security classification and declassification reviews for a variety of documents is highly desirable
• Active/Current TS/SCI security clearance verifiable in JPAS

Job Description

     The successful candidate will review and analyze data and documents, providing objective assessments for the redaction/declassification of releasable DoD intelligence products requested for legal proceedings conducted by specific courts, while ensuring sensitive information is protected in response to requests. 
     The successful candidate will prepare classified and unclassified summaries in collaboration with original classification authorities (OCAs) or their representatives and government and/or defense litigation team attorneys involved in the detainee litigation process. He/She will conduct declassification reviews to transition DoD classified documents to the UNCLASSIFIED//FOR OFFICIAL USE ONLY (U/FOUO) and UNCLASSIFIED//PUBLIC RELEASE (U/PUBLIC RELEASE) levels for presentation in open court proceedings, including summaries and explanations and justifications.
     The successful candidate will be a DoD Subject Matter Expert (SMEs) on redactions/declassifications of classified material, and conduct coordination and advise across DoD and other national level agencies, military departments and combatant commands under court-imposed tight deadlines and dynamic conditions. He/She will prepare redacted/declassified documents for release to the Courts, subject to government review and approval. 
     The work performed by the Analyst will be part of the comprehensive declassification review effort providing dedicated assistance to the Office of Military Commission (OMC), DoD Office of the General Counsel (OGC), and the Presidential Review Secretariat (PRS) in legal proceedings of detainees held at Guantanamo Bay, Cuba.
     



 

Triquetra Technologies, Inc. is a technology focused, knowledge management and Intelligence based company that supports our customers by providing unmatched expertise in Operational Intelligence, Knowledge Management, IT Support and Cyber Training anywhere in the world in direct support of Warfighters and Warfighting Operations.