Join our Talent Network >

IT Security Analyst

This job posting is no longer active.

Job ID: 195617
Location: VIENNA, VA, United States
Date Posted: Apr 21, 2020
Category: Cyber
Subcategory: Cyber Sec Analyst
Schedule: Full-time
Shift: Day Job
Travel: Yes, 10 % of the Time
Minimum Clearance Required: None
Clearance Level Must Be Able to Obtain: Public Trust
Potential for Remote Work: No

Share: mail

Job Description

Description

This role will support the Information System Security Officer (ISSO) of a federal civilian agency. The role will work within a team that supports a wide varieties of security activities including supporting third party assessment and authorization (A&A) efforts under the NIST Risk Management Framework (RMF), review security impact on change requests, review accounts for the systems under their purview, and other duties to ensure compliance with FISMA and other security requirements mandated by the agency.

 

This individual will provide information to the ISSO so that the proper documentation can be updated, to include the System Security Plans (SSP), Contingency Plans, Business Impact Analyses (BIA), Plan of Action and Milestones (POA&Ms), and other documentation.

 

Responsibilities and Duties:

 

  • Facilitate meetings with contractor, Agency and third-party contractor staff to support A&A-related engagements.

  • Track artifact and meeting requests and providing status reports on outstanding items to Agency staff.

  • Coordinate with contractor and Agency staff to provide requested artifacts for A&A-related engagements in a timely manner.

  • Review artifacts provided by contractor staff to ensure requested information have been properly provided and meet appropriate security/privacy requirements.

  • Coordinate vulnerability remediation efforts with contractor and Agency staff in order to remediate findings within specified deadlines.

  • Review policies and procedures for compliance with applicable standards; and to identify areas of improvement for finding remediation

  • Identify key stakeholders in A&A efforts and ensure system documentation reflects current system security configurations to include hardware and software components, data flow, interconnections, and ports, protocols, and services, etc.

  • Identify potential risks associated with system configurations and advise on mitigation strategies

  • Participate in A&A status meetings and facilitate moving systems toward a successful A&A effort

  • Assist customer program offices in interpreting and applying mitigation strategies

  • Review documentation to ensure compliance with Federal cybersecurity requirements

  • Conduct thorough reviews of all vulnerabilities, architecture, and defense in depth strategies and report findings in POA&Ms document to ISSO

  • Maintain cybersecurity procedures and processes as assigned

  • Able to analyze, interpret, and apply Federal cybersecurity guidance to customer needs

  • Communicate the security posture of systems through designated reporting mechanism

 

Qualifications

 

Required Skills:
 
  • 5 or more years of IT Security experience

  • Experience developing A&A documentation from scratch and performing assessments; RMF step 1 through 4

  • Experience supporting ISSOs or acting as one

  • Familiar with NIST publications, specifically RMF and NIST controls

  • Familiar with dealing with defense-in-depth, and other information security and assurance principles and associated supporting technologies

  • Excellent customer service and organization skills

  • Excellent oral and written communication skills

  • Must be able to review artifact and meeting requests and determine correct contractor personnel based on requested information

  • Must be highly organized and detail oriented

  • Must be able to take initiative and work independently or as a member of a team.

  • Must demonstrate proficiency in the following areas: multi-tasking, critical thinking; and the ability to work quickly, efficiently and accurately in a dynamic and fluid environment

 
Desired Skills:
 
  • Experience working with Security engineering to review Nessus Vulnerability / Tripwire compliance scans

  • Experience performing on-site cybersecurity assessments using Standards such as CIS Benchmarks, DISA STIGS, etc.

  • Broad technical experience related to IT operations, networks, OS's, and system administration

 
Education and Experience:
 
  • Bachelor's Degree in IT, Cyber Security, Computer Science, or related field preferred and 5+ years of experience 

  • 5+ years of experience in the following areas: Cybersecurity policy, procedures, and processes, including RMF and NIST 800-53 and A&A's

  • Experience using with Microsoft Office (Word, Excel, Visio, PowerPoint, MS Project), MS SharePoint

  • One or more of the following certifications preferred (Security+, CAP, CISSP, CISM, GSEC, GCIH, or GSLC)

 
US Citizenship Required
 

Must have the ability to obtain a Public Trust Clearance prior to starting work



Overview

SAIC is a premier technology integrator solving our nation's most complex modernization and readiness challenges. Our robust portfolio of offerings across the defense, space, civilian, and intelligence markets includes high-end solutions in engineering, IT, and mission solutions. Using our expertise in existing and emerging technologies, we integrate the best components from our own portfolio and our partner ecosystem to deliver innovative, effective, and efficient solutions. We are 25,500 strong; driven by mission, united by purpose, and inspired by opportunities. Headquartered in Reston, Virginia, SAIC has pro forma annual revenues of nearly $7.1 billion. For more information, visit saic.com. For ongoing news, please visit our newsroom. For SAIC benefits information, see Working at SAIC. EOE AA M/F/Vet/Disability

Share: mail

Similar Jobs

Cyber Security/Computer and Network Defense SME

RESTON, VA, United States
Cyber

Senior DevSecOps

FLEXWORK, VA, United States
Cyber

Senior Information System Security Manager (ISSM)

RESTON, VA, United States
Cyber

Principal Cyber Security Analyst

RESTON, VA, United States
Cyber

Senior Information System Security Manager (ISSM)

MCLEAN, VA, United States
Cyber

Senior Security Engineer (VG008060)

SPRINGFIELD, VA, United States
Cyber

Technical Cyber Sec Analyst Principal

BETHESDA, MD, United States
Cyber

Sr. Penetration Tester

MCLEAN, VA, United States
Cyber

Senior Cybersecurity Engineer

SUITLAND, MD, United States
Cyber

Senior Cybersecurity/Vulnerability Analyst

SUITLAND, MD, United States
Cyber

Cyber Security Engineer

SUITLAND, MD, United States
Cyber

Information Systems Security Engineer

MCLEAN, VA, United States
Cyber

Cyber Security Operations Manager

RESTON, VA, United States
Cyber

Cybersecurity Architect

RESTON, VA, United States
Cyber

Cybersecurity Engineer

RESTON, VA, United States
Cyber

Information Security Manager

RESTON, VA, United States
Cyber

Principal Cyber Security Analyst

RESTON, VA, United States
Cyber

CND / Splunk Engineer (junior - mid)

SPRINGFIELD, VA, United States
Cyber

Senior Cyber Intelligence Analyst

WASHINGTON DC, DC, United States
Cyber

Mid Cyber Intelligence Analyst

WASHINGTON DC, DC, United States
Cyber

Public Health Cybersecurity Strategist

WASHINGTON DC, DC, United States
Cyber

Security Engineer - Lead

WASHINGTON, DC, United States
Cyber

Web Application Scanning Lead

WASHINGTON, DC, United States
Cyber

IT Auditor Senior- Lead

WASHINGTON, DC, United States
Cyber

Provide your information to receive jobs that fit you by keywords, location, and more,
and then receive great opportunities based on your skills and experience.

Join our Talent Network >