Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

(627) Information Assurance Compliance Specialist II

Arlo Solutions

(627) Information Assurance Compliance Specialist II

Philadelphia, PA

Arlo Solutions (Arlo) is an information technology consulting services company that specializes in delivering technology solutions. Our reputation reflects the high quality of the talented Arlo Solutions team and the consultants working in partnership with our customers. Our mission is to understand and meet the needs of both our customers and consultants by delivering quality, value-added solutions. Our solutions are designed and managed to not only reduce costs, but to improve business processes, accelerate response time, improve services to end-users, and give our customers a competitive edge, now and into the future.

The Specialist, Information Assurance Compliance II (SIAC2) will support the Naval Surface Warfare Center Philadelphia Division (NSWCPD) Department 40 as contractor staff through Arlo Solutions, serving as a senior cybersecurity compliance specialist providing comprehensive information assurance and Risk Management Framework (RMF) support services for Propulsion, Power & Auxiliary Machinery Systems. This key personnel position focuses on developing, implementing, and maintaining cybersecurity compliance programs and documentation to ensure adherence to Department of Defense (DoD) and Department of Navy (DON) cybersecurity policies and procedures for both afloat and Platform Information Technology (PIT) ashore systems.

Work Location: Primary: Philadelphia, PA; periodic travel to customer and operational sites may be required

Clearance: Active Secret security clearance

Job Responsibilities and/or Success Factors

  • Collect and collate system or site information to evaluate and document security postures in Enterprise Mission Assurance Support Service (eMASS)
  • Develop, submit, and maintain RMF packages in accordance with DoD Instruction 8510.01, Naval Sea Systems Command (NAVSEA) Business Rules, DON RMF Process Guides, and NAVSEA Standard Operating Procedures (SOPs)
  • Create comprehensive RMF package documentation including Assess Only (AO) Determination Request Packages, System Platform IT (PIT) Determinations, Categorization Forms, Authorization Boundary Diagrams, Defense in Depth Diagrams, Privacy Impact Assessments (PIA), and Security Plans (SPs)
  • Develop and maintain Plan of Action and Milestones (POA&M) for all Information Assurance-related tasks and deliverables in eMASS

Policy and Compliance Management

  • Develop or revise existing policies, plans, and strategy documents to meet requirements for RMF Control Families
  • Create comprehensive documentation including Incident Response Plans, Contingency Plans, Information Assurance Vulnerability Management Plans, Configuration Management Plans, and Physical Security Plans
  • Ensure all Information Assurance requirements are addressed and compliant with applicable DoD and DON cybersecurity policies
  • Evaluate discrepancies and recommend potential mitigation measures for reducing or eliminating specific risks

Assessment and Evaluation Activities

  • Conduct risk and vulnerability assessments of planned and installed systems to identify vulnerabilities, risks, and protection needs
  • Execute Security Assessment Plans (SAPs) by conducting on-site testing for afloat and PIT ashore systems
  • Perform systems security reviews, audits, and evaluations to ensure accreditation documents accurately represent current risk posture
  • Determine residual risk of packages based on package content and assessment results for Security Controls Assessor review
  • Conduct analysis of logs, events, and reporting from various data collection tools including Assured Compliance Assessment Solution (ACAS), Host Based Security Systems (HBSS), Security Information and Event Management (SIEM), firewall systems, and intrusion detection systems

Continuous Monitoring and Maintenance

  • Support continuous monitoring activities for authorized systems to maintain Authorization to Operate (ATO) status
  • Develop and update required eMASS documents at specified frequencies, including POA&Ms and Risk Assessment Reports (RARs)
  • Determine system compliance with all applicable Controls and Assessment Procedures (APs) for assigned DON systems
  • Maintain current vulnerability scan data and residual risk POA&Ms in Vulnerability Remediation Asset Manager (VRAM)
  • Track deliverables and action items in accordance with A&A guidance

Technical Documentation and Reporting

  • Perform detailed technical documentation analysis of software/hardware associated with systems and components
  • Develop system architecture diagrams, software design requirements, network connection/authorization boundary diagrams, and RMF plans/policies
  • Create and maintain vulnerability DON eMASS POAMs for systems
  • Present and submit data to management, develop comprehensive reports, and produce procedural documentation
  • Execute Security Technical Implementation Guides (STIGs), Security Requirements Guides (SRGs), ACAS scanning, and apply patches to assets to obtain cybersecurity compliance

Stakeholder Coordination and Communication

  • Manage, attend, and support configuration control board practices
  • Coordinate with government personnel, system owners, and other stakeholders throughout the RMF process
  • Assess impacts from observed risks and report via the Cybersecurity Program chain of command
  • Perform evaluation of system administrator and security engineer proposed corrections to ensure compliance
  • Support Information Assurance Vulnerability Management (IAVM) activities including remediation, patching, and scanning

Compliance and Quality Assurance

  • Ensure RMF artifacts comply with published Navy, NAVSEA Business Rules, NIST SP-800-37, and SP-800-53 Rev 4 requirements
  • Create and verify accuracy of POA&Ms/RARs as identified by vulnerability test results
  • Ensure information systems are operated, used, maintained, and disposed of in accordance with security policies
  • Test systems to verify adequate functionality for mission and project requirements
  • Maintain security clearance and comply with all security requirements specified in the contract

Education and Minimum Qualifications

  • Must be a U.S. Citizen
  • Active Secret security clearance
  • Target Education: Bachelor's degree (Computer Science, Information Technology or related technical degree) from accredited College or University
  • Target Experience: Four (4) years of professional experience in Information Assurance Compliance

Minimum Certification: Must demonstrate at least one of the following

  • Information Assurance Management (IAM)
  • Information Assurance Technical (IAT) Level 2 certifications (acceptable certifications include: CAP, CASP+ CE, CISM, CISSP or Associate, GSLC, CCISO, or HCISPP)

Continuing Professional Education Requirements

  • Maintain current IAM/IAT Level 2 certification with required Continuing Professional Education (CPE) as mandated by certification body
  • Complete all required Government mandated training including Antiterrorism Level 1 Awareness, Operations Security (OPSEC), Cybersecurity 101 Training, and other security-related training as specified

Desired Qualifications

  • Experience with Navy cybersecurity programs and RMF processes
  • Familiarity with NIST Special Publications and DoD cybersecurity instructions
  • Experience with eMASS, VRAM, ACAS, and other DoD cybersecurity systems
  • Knowledge of Navy and DoD organizational structure
  • Experience supporting NAVSEA or other Navy commands
  • Professional experience in DoD or Navy environments
  • Understanding of NAVSEA Business Rules and SOPs

AAP Statement

We are proud to be an Affirmative Action and Equal Opportunity Employer and as such, we evaluate qualified candidates in full consideration without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, age, disability status, protected veteran status, and any other protected status.

Arlo Solutions
Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the (627) Information Assurance Compliance Specialist II in Philadelphia, PA vacancy
  •  ...Specialist, Information Assurance Compliance II (SIAC2) Location: Philadelphia, PA Type: Full Time Overtime Exempt: Exempt Reports To: ARMADA HQ Travel Required: Yes Security Clearance Required: Active Secret Security Clearance Duties & Responsibilities... 
    Suggested
    Full time
    For contractors
    Work at office
    Local area

    Armada Ltd

    Philadelphia, PA
    3 days ago
  •  ...Title: GRC Security Analyst II (Governance & Risk) Responsibilities...  ...risk, vulnerability, and compliance findings to define...  ...Provide escalation support for the Information Technology Help Desk as required...  ...and Risk Analysis, Information Assurance. 3‑5 years of previous... 
    Suggested
    Work at office
    Local area
    Flexible hours
    Rotating shift

    Aqua America

    Bryn Mawr, PA
    4 days ago
  •  ...Compliance Analyst - II A Few Words About Us Integrated Resources, Inc is a premier staffing firm recognized as one of the tri-states most...  .... We provide quality resources in four specialty areas: Information Technology (IT), Clinical Research, Rehabilitation Therapy... 
    Suggested

    Careers Integrated Resources Inc

    Horsham, PA
    5 days ago
  •  ...professional development. Summary of the Role We are looking for an experienced and dynamic Permitting & Regulatory Compliance Specialist II to join our growing team. In this role you will independently manage a defined caseload of permitting and compliance... 
    Suggested
    Work at office
    Immediate start
    Remote work
    Flexible hours

    Core States Group

    Philadelphia, PA
    7 days ago
  •  ...Job Description Job Description Description: Responsibilities: Support implementation and maintenance of information assurance and compliance programs Assist in performing security control assessments and validation testing Collect, organize, and maintain... 
    Suggested

    EHS TECHNOLOGIES CORPORATION

    Moorestown, NJ
    21 days ago
  • Aqua seeks a GRC Security Analyst II to ensure the security and integrity of information systems. Responsibilities include risk assessments, developing remediation plans, and ensuring compliance with best practices. The ideal candidate will have a Bachelor’s degree in... 

    Aqua

    Bryn Mawr, PA
    2 days ago
  • $39k - $58.21k

     ...TRAINING & ELIGIBILITY Minimum Experience and Training Requirements: One year of experience obtaining, evaluating and providing information to the public. You must meet the PA residency requirement. For more information on ways to meet PA residency requirements,... 
    Permanent employment
    Full time
    Local area

    Commonwealth of Pennsylvania

    Philadelphia, PA
    1 day ago
  •  ...Submarine Systems Quality Assurance Specialist to join our team in Philadelphia...  ...programs through Naval Information Warfare Center Charleston....  ...Evidence (OQE) to verify compliance with contract, drawing, and...  ...processes (e.g., SUBSAFE, Level I/II material, HM&E systems).... 
    Contract work

    Predicate Logic

    Philadelphia, PA
    13 days ago
  • Essential Utilities, Inc. is seeking a Security Analyst II (Governance & Risk) to ensure the security and integrity of information systems. This role involves conducting risk and vulnerability assessments and collaborating with technical teams to develop remediation strategies... 

    Dormont Manufacturing Co

    Bryn Mawr, PA
    4 days ago
  •  ...America, Inc. is hiring a GRC Security Analyst II responsible for managing risk assessments,...  ...security awareness programs, and ensuring compliance with security standards. The role requires a bachelor's degree in Information Technology or a related field, along with 3-... 

    Aqua America

    Bryn Mawr, PA
    4 days ago
  • $41.92 - $59.73 per hour

     ...Details Biomedical Imaging Specialist II Job Description Job...  ...maintenance, quality assurance inspections, installation,...  ...consistently high level of PM compliance over time. Provides safety...  ...prescription) insurance. For more benefits information, please click here
    Hourly pay
    Daily paid
    Full time
    Temporary work
    Part time
    Remote work
    Monday to Friday
    Flexible hours
    Shift work
    Day shift
    Afternoon shift
    Early shift

    Thomas Jefferson University Hospital

    Philadelphia, PA
    4 days ago
  •  ...Actuarial Analyst II Bring your drive for excellence, team orientation and customer commitment to Independence; help us renew...  ...CMS revenue and risk score analysis, etc. # Prepares rating information packages to be delivered to underwriting and other internal customers... 
    Work experience placement
    Interim role

    Independence Blue Cross

    Philadelphia, PA
    2 days ago
  •  ...Compliance Services Position Ascensus is the leading independent technology and service platform powering savings plans across America...  ..., improper transmission, and/or unapproved disclosure of information that could result in harm to Ascensus or our clients. Our... 

    Ascensus

    Dresher, PA
    2 days ago
  • $80k - $100k

     ...Phenix Business Analyst II USCS is dedicated to advancing, innovating, and serving...  ...criteria in collaboration with Quality Assurance teams Manage sprint priorities, Jira...  ...Education: Bachelor's degree in Business, Information Systems, Supply Chain, or related field... 
    Permanent employment
    Full time
    Contract work
    Temporary work
    Flexible hours

    USCS

    Camden, NJ
    2 days ago
  • $37k - $48k

     ...opportunity with our Work Ready program as a Compliance Specialist. Work Ready provides services to...  ...and 3 years in data entry, quality assurance, or compliance. ~ Proficient in...  ...individuals we serve. For more information about what it’s like to be a part of... 
    Full time
    Work from home

    JEVS Human Services

    Philadelphia, PA
    26 days ago
  •  ...ainsi qu'une expertise en développement de rapports et en communication. Ce rôle implique de travailler avec divers partenaires pour assurer le respect des normes de qualité, tout en développant des présentations et en participant à des projets d'amélioration continue. #J... 

    Integrated Resources Inc.

    Horsham, PA
    1 day ago
  • $65k - $75k

     ...Regulatory Compliance Specialist As a Compliance Specialist within the U.S. Regulatory Compliance team, you will play a key role in ensuring...  ...regulated markets. Interact with employees to collect individual information which is extremely confidential and sensitive nature.... 
    Work at office
    Flexible hours

    Evolution

    Philadelphia, PA
    4 days ago
  • Executive Director, Quality Assurance Full Time | Plymouth Meeting, PA, US Harmony Biosciences...  ..., Stability Quality, and GMP/GDP/GLP compliance activities across development and...  ...identity/expression, age, disability, genetic information, military service, covered/protected... 
    Full time
    Contract work
    Work at office
    Local area

    Paragon Biosciences LLC

    Plymouth Meeting, PA
    2 days ago
  •  ...Project Manager II, Laboratory ICON is a global healthcare intelligence and clinical...  ...Worksheet (CLW) and communicating information as required to other departments within...  ...Retirement and pension plans Life assurance and disability coverage Employee assistance... 
    Local area

    ICON

    Blue Bell, PA
    1 day ago
  •  ...Apogee Global RMS is seeking a Program/Project Manager II to support programs under the eCRAFT MANP2 labor category. This is a Key...  ...supporting federal programs in this Top Tier engagement where compliance maturity directly impacts contract eligibility, mission readiness... 
    Contract work

    Apogee Global RMS

    Philadelphia, PA
    5 days ago
  • $48 - $55 per hour

     ...demands to travel. Job Description: Epic Certified Health Information Management (HIM) Senior Analyst will bring experience...  ...workflows, build specifications, and testing protocols. Ensure compliance with HIPAA, data governance, and organizational security policies... 
    Hourly pay
    Live in
    Work at office
    Local area
    Flexible hours

    Accenture

    Philadelphia, PA
    6 days ago
  •  ...Construction Manager II: ccountable for all Civil Works and...  ...the agreed site design • Assures that: o Only Customer's approved...  ...• Provide accurate status information on the progress to project...  ...the proper interpretation and compliance of the civil design plans.... 
    Contract work
    Local area

    ADEX

    Philadelphia, PA
    3 days ago
  • $65k - $75k

     ...Regulatory Compliance Specialist Evolution is the worlds leading provider of video-streamed Live Casino solutions and Slots, delivering...  ...markets. Interact with employees to collect individual information which is extremely confidential and sensitive nature. Review... 
    Work at office
    Flexible hours

    Evolution

    Philadelphia, PA
    5 days ago
  • $172k - $250k

     ...Grant Thornton is seeking a Director of Information Security Audit & Compliance to join the team. Approved office locations can be found below. We...  ...across global teams. Continuous Compliance & Control Assurance Establish processes for continuous control monitoring... 
    Internship
    Seasonal work
    Work at office
    Local area
    Flexible hours
    3 days per week

    Grant Thornton

    Philadelphia, PA
    1 day ago
  • $90.7k - $124.75k

     ...are seeking a Submarine Systems Quality Assurance Specialist to support multiple U.S. Navy submarine...  ..., system certification, and SUBSAFE compliance across vendor facilities, repair activities...  ...work processes (e.g., SUBSAFE, Level I/II material, HM&E systems). #nowhiring... 
    Full time
    Contract work
    Part time
    Local area
    Remote work

    Noblis

    Plymouth Meeting, PA
    16 hours ago
  • $60k - $75k

     ...Trade Compliance Manager Xylem is a Fortune 500 global water solutions company dedicated...  ...Customs Broker, Certified Customs Specialist (CCS) or certifications preferred but not...  ...or harassment. Please note that the information in this job description outlines the general... 
    Work at office

    Xylem

    Philadelphia, PA
    2 days ago
  • $24.41 per hour

     ...Compliance Specialist Working with us takes a certain kind of person; we want someone who identifies with our values and is willing to challenge...  ...for monitoring EARN customers' participation and sharing information with Workforce Advisors generating and reviewing reports to... 
    Hourly pay
    Temporary work
    Local area
    Flexible hours

    Eckerd Connects

    Philadelphia, PA
    1 day ago
  •  ...qualified candidates who are passionate about using data and information to effectively and efficiently inform policy, program, and intervention...  ..., clinical, and legal data needs of BHJD. Performs quality assurance of computer databases and the information contained within... 

    PMHCC Inc.

    Philadelphia, PA
    21 days ago
  •  ...Practice Coding Specialist II Radiation Oncology Penn Medicine is dedicated to our tripartite mission of providing the highest level...  ...ancestry, age, disability, marital status, familial status, genetic information, domestic or sexual violence victim status, citizenship... 
    Remote work
    Flexible hours

    Pennsylvania Medicine

    Philadelphia, PA
    6 days ago
  •  ...GOVERNMENT CONTRACT******** Credentialing Specialists will provide credentialing service...  ...credentialing training and maintain compliance with PIV-II SmartID credential requirements....  ...equivalent Disclaimer: The above information has been designed to indicate the... 
    Full time
    Contract work
    Temporary work
    For contractors
    Local area
    Relocation
    Shift work
    Night shift
    Weekend work

    Armada

    Philadelphia, PA
    1 day ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to (627) Information Assurance Compliance Specialist II. Be the first to apply!