Information Assurance/audit Support Services

Information Assurance/Audit Support Services

GDIT is your place. You make it your own by embracing autonomy, seizing opportunity, and being trusted to deliver your best every day. We think. We act. We deliver. There is no challenge we can't turn into opportunity. And our work depends on a TS/SCI POLY level cleared Information Assurance/Audit Support Services person to join our team in support our Intelligence areas in either Springfield, VA or St. Louis, MO.

What we need:

GDIT is looking for a person experienced in Information Assurance/Audit Support Services that will report directly to the Chief for Cyber Readiness, where you will provide audit support that manages our customers' preparation for, execution of, and response to external cyber audits such as Command Cyber Operational Readiness Inspection (CCORI), Command Cyber Readiness Inspection (CCRI), Cybersecurity Service Provider (CSSP), Federal Information Security Management Act (FISMA), and Federal Information Systems Controls Audit Manual (FISCAM) audits. This includes, but is not limited to, aggregating documents and artifacts, securing the facilities and infrastructure necessary to house auditors and meetings, developing presentations, briefs, and other products as needed to brief stakeholders on audit readiness status, coordinating audit activities across the NGA enterprise, and conducting routine internal audit assessments to ensure a continuous level of audit readiness. Candidates performing audit support services shall have or obtain within six months of start a certification that is compliant with DoD 8140.01 and DoD 8570.01-M 1040 IAT Level II and CSSP Auditor.

What you'll do:

Ensure the Cybersecurity Operation Cell (CSOC) is prepared to successfully pass inspections and audits at all times; this includes but is not limited to identifying the audit criteria for CCRI/CCORI, FISMA, FISCAM, and CSSP audits

Review regulations, directives, guidance, grading criteria, regulations, and other documents and products as required to identify applicable cybersecurity standards and inspection criteria;

Perform self-assessments of CSOC services to identify deficiencies, gaps, or other issues and provide remediation recommendations to the Chief of Cyber Readiness

Coordinate and collaborate with other Contracts, Government entities, and activities to identify and remediate any findings outside the direct control of TCS staff

As required, provide status briefings and reports to the Government on the status of findings and remediation status

Regularly attend meetings held both internally and community-wide

Develop, update, and maintain, dashboards, charts, documents, reports, and other products as required to accurately depict NGA's audit readiness

Provide input to the Weekly CSOC Status Report

Coordinate and collaborate with any internal or external stakeholders (government and contractor) as needed or directed by the government in support of this service

Qualifications:

Required:

Minimum of 6 years demonstrated experience supporting an IC or DoD agency in an auditor role

TS SCI POLY (active)

Considerable experience preparing organizations for CCRI/CCORI, CSSP, and FISMA audits

Strong understanding of the NIST Cybersecurity Framework

Working knowledge of DOD Cybersecurity Services Evaluator Scoring Metrics (ESM) V.10

Working knowledge of DoDIN Inspection Coordination Guides

Working knowledge of DoDIN Inspection Pre-Deployment Checklists

Working knowledge of the areas of CCORI to include, but not limited to, DCO-IDM effectiveness, Traditional Security STIG checks, Contributing Factors and CND Directive scoring

A minimum of 6 years demonstrated experience supporting an IC or DoD agency in an auditor role

Strong understanding of cybersecurity compliance policy, governance, programs, processes, and metrics.

Excellent verbal and writing skills with the ability to write clear and concise assessment reports

Demonstrated experience providing briefings to an executive audience.

IAT Level II certified

Willingness to obtain CSSP Auditor certification within 6 months of joining the team

Desired:

ISACA CISA Certified

IAT Level III Certified

Bachelor's Degree Master's Degree a plus

The likely salary range for this position is $96,569 - $130,651. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.