Information Assurance & Certification Assessment Specialist

ICF International, Inc Petersburg , VA 23803

Posted 1 week ago

Working at ICF

Working at ICF means applying a passion for meaningful work with intellectual rigor to help solve the leading issues of our day. Smart, compassionate, innovative, committed, ICF employees tackle unprecedented challenges to benefit people, businesses, and governments around the globe. We believe in collaboration, mutual respect, open communication, and opportunity for growth. If you're seeking to make a difference in the world, visit to find your next career. ICFtogether for tomorrow.

Join our team of cyber pioneers with expertise and decades of experience defending and protecting some of the nation's most valuable resourcesICF. Through implementation of effective Cybersecurity solutions, ICF supports security awareness, readiness, resilience and response to cyber incidents. Our extensive customer base has benefited from the leading-edge work our security engineers and data scientists perform in maintaining and advancing situational awareness of the current cyber threat landscape.

Job Description:

The Information Assurance & Certification Assessment Specialist is responsible for planning, documenting, and conducting comprehensive security assessments (audits) using both the DOD Information Assurance Certification and Accreditation Process (DIACAP) and NIST Risk Management Framework (RMF). Additionally, the Analyst is responsible for reviewing existing documentation, IA controls, and DISA Security Technical Implementation Guideline (STIG) implementations. Work location is at Fort Lee in Petersburg, VA. Relocation assistance is available if needed. There is some travel during the year (10-15%) to GA, OH, MA and CA.

The Information Assurance & Certification Assessment Specialist will also assist in the development and maintenance of an IA program that identifies IA architecture; IA requirements; IA objectives and policies; IA personnel; and IA processes and procedures monitors the overall security posture of the client's host-based and network-based assets by detecting, analyzing and responding to security alerts and events.

Key Responsibilities:

  • Provide support, as needed, to the Certification board in the area of IA requirements and system authorization.

  • Perform tasks focused on the development of security test plans, conduct security testing, analyze test results, and develop risk assessment reports that document vulnerabilities, threats, impacts, and recommended mitigations.

  • Provide technical services on all aspects of Information Security; Assess system design/architecture as well as defining, and advising Information Security compliance with DISA STIGs as well as other security standards and best practices

  • Demonstrated analytical, oral, and written communication skills including to executive management.

  • Assist with preparing for various audits and inspections.

Basic Qualifications:

  • Familiarity with DISA STIGs and other DOD security requirements a must.

  • Minimum of 3 years of network defense/information assurance experience.

  • A strong understanding of DOD information assurance policy and regulations.

  • Familiar with Cyber Command Readiness Inspections and interpreting vulnerability scan results.

  • Candidate must be able to obtain, and maintain, the proper clearance required for this position


  • Prefer Certified Information Systems Security Professional (CISSP), Certified Authorization Professional (CAP), GIAC Systems and Network Auditor (GSNA).

  • Require DOD 8570.01-M compliance at IAT Level II (GSEC, Security + CE, SSCP, CCNA Security, CSA+, GICSP)

Preferred Skills/Experience:

  • Initiative and a personal interest in Information Technology Security.

  • People skills, and the ability to communicate effectively with various clients with the ability to explain and elaborate on technical details.

  • Familiarity with various network and host-based security applications and tools, such as network and host assessment/scanning tools, network and host based intrusion detection systems, and other security software packages.

  • Previous experience on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security operations center.

Professional Skills/Required Skills:

  • Excellent written and verbal communication skills.

  • Excellent problem solving skills.

ICF is an equal opportunity employer that values diversity at all levels. (EOE Minorities/Females/ Protected Veterans Status/Disability Status/Sexual Orientation/Gender Identity)

Reasonable Accommodations are available for disabled veterans and applicants with disabilities in all phases of the application and employment process. To request an accommodation please email and we will be happy to assist. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. Read more about non-discrimination: EEO is the law and Pay Transparency Statement.

Virginia Client Office (VA88)

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Systems Support Supervisor (Petersburg)

State Of Virginia

Posted Yesterday

VIEW JOBS 3/18/2019 12:00:00 AM 2019-06-16T00:00 Provides supervision, guidance, support, consultation and training to user employees, other technicians, and others in the installation, operation, application and maintenance of various types of information/communications technology and performs routine analysis, program design, coding and relating systems analysis tasks. Serves as network administrator for the Local Area Computer Network (LAN); Assures that the network and its applications are available to users; Resolves user problems as required; Responds to a variety of inquiries related to LAN operation; Takes corrective action as necessary to include analyzing problems; Coordinates repairs with local data processing department or State Department of Social Services as required; Troubleshoots when users encounter problems with State applications; Serves as trainer for local and State information systems; Administers the automated systems security procedures and provides support to users when needed to resolve systems access problems; Serves agency as the Security Officer for all security issues related to County and/or State applications; Employs problems solving techniques to resolve user problems related to system accesses, logon, passwords and user or device authorizations; Maintains logs or other mechanisms to track and manage requests from end users for systems security; Uses problem solving techniques to resolve problems which might involve any combination of operator error, or software anomaly; Determines personal computer and/or mainframe hardware problems by determining the cause and corrects; Logs problems and recommends equipment repair or replacement as required; Ensures that problem is corrected with minimal downtime for the user; Conducts structured telephone interviews to rule out various problem sources (for example software, hardware, modems, operator error, bad records) and guides the user through various tests, if appropriate, such as checking connections and modem boxes, powering up and down and running programs; Prepares detailed statistical reports, records, and documents for input into the State computer system; and Provides guidance to other personnel on computer problems. Minimum Qualifications Considerable knowledge of: data processing operations/ microcomputers/ mainframe computer hardware configurations/ and network monitoring software packages. Skill in operating/ repairing/ installing/ initial configuration/ and maintaining microcomputer and network equipment. Demonstrated ability to: analyze and diagnose computer operations problems such as those encountered in the operation of the Local Area Network; maintain clear and concise problem logs; communicate effectively both orally and in writing with both technical and non-technical personnel; exercise independent judgment in the performance of duties; plan and schedule work; maintain a professional and effective working relationship with users/ use good judgment/ tact/ and be courteous; interpret and implement administrative policy; and successfully complete and utilize ongoing training modules and train others Preferred Qualifications Associate degree or equivalent technical technician program in the operation of peripheral equipment/ microcomputers/ and local area networks supplemented with related work experience in microcomputer repair/ installation and troubleshooting OR any equivalent combination of training and experience which provides the required knowledge/ skills and abilities. Bilingual experience preferred. Special Requirements Occasional weekend work, work during inclement weather, work during other unusual conditions, and overnight travel may be required. Requires Central Registry check and may require criminal background check. May be required to report for emergency shelter duty. May have to lift, bend, stoop, carry and move heavy equipment. State Of Virginia Petersburg VA

Information Assurance & Certification Assessment Specialist

ICF International, Inc