Job Description
Job Description
Job Description:
Quevera is seeking an Assessment and Authorization Officer to join our team. At Quevera, we don’t just offer jobs—we provide opportunities to be part of a dynamic, forward-thinking community that fosters innovation, collaboration, and personal growth. You’ll work with industry experts, take on exciting challenges, and have the creative freedom to build cutting-edge solutions, all while advancing your career in a space that truly values your skills and ideas.
HIGHLIGHT'S OF WORKING FOR QUEVERA:
Quevera employees voted Quevera as a TOP EMPLOYER in the Baltimore /DC area by the Washington Post for 2025 for the 5th consecutive year!
Excellent Quevera's Benefits:
Medical/Dental/Vision (100% Employer Paid Medical Plan)
Short/Long Term Disability (Employer Paid)
Life Insurance (Employer Paid)
Yearly $5,000 towards education/training/certification.
Employees are in control of their career path through our Career Pathway Program.
Employer paid Company Vacation Package for you and a guest!
Retirement: Quevera will match up to 6% towards your 401K and an additional 4% profit sharing!
REQUIRED - MUST have a current TS/SCI Polygraph clearance to apply for role. Only those with a current TS/SCI with Poly clearance will be considered.
Required Experience:
Subject Matter Expert
• Demonstrated experience facilitating TEMs with cloud service providers to review cloud service architectures
• Demonstrated experience maintaining assessment and authorization (A&A) packages across multiple services or systems in accordance with FIPS-199, NIST 800-53, and CNSS 1253 requirements.
• Demonstrated experience designing, implementing, assessing or reviewing systems that utilize cloud technology with either Amazon Web Services, Oracle Cloud, Google Cloud, IBM Cloud, or Microsoft Azure cloud architecture.
• Demonstrated experience utilizing or reviewing cross domain technology and common architecture designs.
• Demonstrated experience consulting project teams on system architecture and security posture.
• Demonstrated experience with continuous monitoring requirements to include scan analysis for critical or high findings with common scan tools such as Rapid 7, Nessus, and Qualys.
• Demonstrated experience creating, monitoring, or closing system or service Plans Actions and Milestone items (POA&Ms).
• Demonstrated experience utilizing compliance tools to track assessment and authorization activities such as Xacta 360, Risk Vision, RSA Archer.
• Demonstrated experience with the common control provider concept within the NIST Risk Management Framework.
• Demonstrated experience with security control assessments to include working with SCAs and preparing security packages for SCAs.
• Demonstrated experience conducting information system security engineering activities.
Desired Experience:
• Demonstrated experience using the Sponsors or IC element A&A process.
• Demonstrated experience creating or reviewing A&A body of evidence documentation in a cloud security environment.
• Demonstrated experience identifying, implementing, or reviewing appropriate information security controls.
• Demonstrated experience working in Xacta 360.
Quevera is an equal opportunity employer and does not discriminate on the basis of any legally protected status or characteristic. Protected veterans and individuals with disabilities are encouraged to apply. #LI-AA1