Home > Careers > C&A Specialist

Company Information

SysNet Technologies, Inc. is a private technology consulting company that is located in the Washington metropolitan area. We assist Federal agencies in resolving their most challenging technical and management issues. We focus on providing practical solutions to our customers in the areas of: Information Systems Security (ISS), Systems Engineering, and System Management. At SysNet, we strive to form long-term relationships with our customers by consistently providing high quality products and services, standing by our commitments and exceeding expectations. To help us meet our growing customer needs, SysNet is seeking qualified individuals with a strong Systems Engineering/Computer Science background and ISS experience. SysNet offers competitive salaries and an excellent benefits package, including medical, 401K, and tuition reimbursement plans.

Job Description

A C&A Specialist is a full-time position within the Independent Risk Assessment and Testing (IRAT) Team. The IRAT team’s primary role is to provide ISS support to the Federal Aviation Administration (FAA) by performing risk assessments on FAA Administrative and National Airspace Systems (NAS). The assessments include performing data gathering at various FAA operational facilities, security testing, analyzing system documentation and Standard Operating Procedures (SOPs), and providing recommendations to mitigate discovered vulnerabilities. System types/technologies assessed include telecommunications, networking, client/server, web-based, automation, operating systems, databases, and custom and off-the-shelf applications. This position requires the individual to have the ability to solve customer problems and recommend solutions. Strong analytical and excellent interpersonal skills are essential for direct customer interaction and high-level management interface.

Primary Responsibilities

• Perform on-site data gathering and security testing on multiple platforms and applications.
• Perform risk assessments, analysis, and mitigation planning/implementation.
• Interview system specialists and collect artifacts based on NIST 800-53A requirements.
• Reviewing vendor documentation, technical manuals, and standard operating procedures.
• Develop supporting documentation for certification and authorization deliverables.
• Requires knowledge and ability to apply National Institute of Standards and Technology (NIST) and industry practices for information security.

Candidate Requirements

• BS in Engineering, Computer Science or related field
• Strong oral and written communication skills
• Must be tech savvy, self-motivated, a strategic thinker and quick learner
• Team player
• Experience with Windows (all versions), Linux, Unix operating systems
• Experience with Oracle (all versions), SQL Server, mySQL databases
• Familiarity with automated scan testing tools
• Knowledge of NIST Special Publications, FIPS 199 and 200, and FISMA requirements
• Must demonstrate strong initiative to plan and coordinate program activities with FAA headquarters, regional, and field personnel
• US travel is required. This is typically 25%
• US Citizenship

Bonus Skills

• Knowledge of the National Airspace System (NAS) and/or previous FAA experience
• Experience with ThreatGuard products, Nessus, and NMAP
• Certifications: CISSP, CISA, CAP