Job Title: OSCAL Specialist

Location: Baltimore, MD

Introduction:

C2 Labs [www.c2labs.com] partners with clients on their IT transformation journey via data-driven IT strategic planning, application rationalization and redevelopment, and innovative research and development of new industry standards and technologies. C2 Labs provides specialized products and services that allow our clients to innovate with speed and scale seamlessly while maintaining a robust and effective security posture. C2 has a unique approach to client success enablement that is empowered by ART (Application Rationalization andTransformation) and SCIENCE (Strategic Client Interview and Engineering to assess, design, and implement Cloud Ecosystems) to couple creative new approaches/technologies with proven methodologies that deliver rapid results.

Must be a US Citizen and capable of passing a Public Trust background investigation.

Job Description:

C2 Labs is seeking a dedicated and experienced OSCAL (Open Security Controls Assessment Language) Specialist to join our team. As an OSCAL Specialist, you will be responsible for designing and managing OSCAL-based workflows and artifacts to drive compliance automation for our clients. You will play a crucial role in helping organizations streamline their security assessment and authorization processes.

Responsibilities:

• Design and implement OSCAL-based workflows for security control assessment and compliance automation. security control
• Develop and maintain OSCAL artifacts, including System Security Plans (SSPs), control catalogs, assessment procedures, and assessment results.
• Work closely with security engineers, compliance analysts, and other stakeholders to ensure OSCAL artifacts align with organizational policies and regulatory requirements.
• Utilize OSCAL tools and technologies to automate the generation, validation, and exchange of security assessment data.
• Provide guidance and support to clients on the adoption and implementation of OSCAL.
• Contribute to the development of internal OSCAL best practices and standards.
• Stay up-to-date with the latest OSCAL developments and advancements.

Qualifications:

• Bachelor's Degree
• 3+ years of experience working with security compliance frameworks (e.g., NIST, FedRAMP, ISO).
• Experience with OSCAL (Open Security Controls Assessment Language).
• Strong understanding of security control assessment methodologies.
• Experience with automation tools and scripting languages (e.g., Python, PowerShell).
• Excellent analytical and problem-solving skills.
• Excellent written and verbal communication skills.
• Ability to work independently and as part of a team.

C2 Labs is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.