View Our Website View All Jobs

Security Analyst

Great opportunity with growing Government Contracting company. Multiple Security Analyst positions.

 

Responsibilities:

Perform independent compliance reviews, tracking, and continuous monitoring of newly submitted C&A packages.
Advise and assist with the Lifecycle Certification and Accreditation (C&A) process and developing a Systems Security Plan (SSP)
Act as C&A project register, managing the C&A registration process
Monitor and track projects in the C&A test queue
Maintain a document repository where C&A project documentation is stored
Work closely with developers to identify the appropriate certification/approval processes and authorities
Record/register actions concerning project approvals to operate in the C&A database
Read and analyze SSPs and develop understanding of systems and applications into security test plans
Coordinate C&A actions and system testing with appropriate security personnel
Develop risk assessment reports
Assemble and submit C&A packages to Principal Accreditation Authority/Designated Accreditation Authority

Required Qualifications:

Active Secret level security clearance  
Must possess demonstrated experience in all phases of preparing and reviewing complete certification and accreditation (C&A) packages for information technology systems and/or applications as defined by the Federal Information Security Management Act of 2002 (FISMA) and implemented by the guidance of the National Institute of Standards and Technology (NIST).
Be able to communicate effectively through written and verbal means to co-workers and senior leadership
Be able to effectively manage multiple tasks simultaneously; coordinating and ensuring scheduled goals are met
Take responsibility for the performance of IA Compliance Validation Tests, reports, and tracking
Be prepared to offer security-related guidance on business processes, emerging technology and acquisitions, and vulnerability assessments/mitigation approaches
Be able to work well with collateral engineers, analysts and managers on related programs
Be able to conduct effective vulnerability assessments of networked and stand-alone information systems to the extent of conclusively validating all technical controls found within NIST SP 800-53R3, as well as other DHS requirements
Possess a B.A. or B.S. degree in related field and 5 years of experience. B.A. or B.S. degree may be substituted with 4 additional years of professional Information Assurance services experience

 

Desired Qualifications:

5-8 years of experience in information security, with a concentration on C&A as it applies to the US Government
Experience with DHS or DoD requirements
Documentation, presentation, and Technical writing experience
The ideal candidate will thrive in an fast paced environment that demands accountability from eac team member; demonstrate a broad range skills in the fields of NIST publications, FISMA requirements and reporting, privacy data identification and handling, security engineering, certification and accreditation (C&A) procedures, security architecture, vulnerability assessments, computer forensics, computer network defense, and policy development
CISSP, or similar security certification

Read More

Apply for this position

Required*
Apply with Indeed
Attach resume as .pdf, .doc, or .docx (limit 2MB) or Paste resume

Paste your resume here or Attach resume file

150