Senior SA&A Consultant to provide guidance on security authorizations, regulations, and policies following ITSG-33/ NIST frameworks to re-certify IT applications.

Our Valued Public Sector Client is seeking a Senior SA&A Consultant to provide guidance on security authorizations, regulations, and policies following ITSG-33/ NIST frameworks to re-certify IT applications.
 
Project Description:
Provide expertise on SA&A activities, and re-certify all applications and solutions maintained within the department.
 
Must Haves:

• 10+ years with SA&A or TRA
• 10+ years at Department of National Defence
• Degree in IT Technology (computer science, computer engineering, information technology or security)

Responsibilities:

• Developing Reports such as Data Security analysis, Statement of Sensitivity, Concept of Operations, Threat assessment, Risk assessments, and IT Security risk, threat, or vulnerability briefings.
• Conducting Security Testing and evaluation to determine if the technical safeguards are functioning correctly and perform residual risk assessment.
• Identifying personnel, physical, procedural, and technical threats to project designs and deliverables.
• Performing IT security work in accordance with the Government Security Policy
• Reviewing analyzing and applying IT Security policies and Security Assessment and Accreditation processes to project deliverables which encompass people, processes, and technology.
• conducting assessment activities such as: verifying that security safeguards meet policies and standards, map police requirements to security safeguards, and ensure safeguards have been implemented correctly.