Senior Security RMF Audit Analyst

Overview

DecisionPoint Corporation is seeking a Senior Security RMF Audit Analyst to join our team on an upcoming contract to support the Unites States Coast Guard USCG) Aviation Logistics Center (ALC) Information Systems Division (ISD) in Elizabeth City, North Carolina. The USCG ALC ISD provides development, security, and operations (DevSecOps) IT support for products and services for the Coast Guard Information Officer (CIO), Commandant, and Coast Guard Cyber Command through a geo-dispersed workforce including military, civilians, an contractor personnel committed to supporting the USCG's missions and requirements of the leading growing interconnectivity, increased reliance on data and networks, and development of commercial space and artificial intelligence systems.

Position is on-site with off-site capabilities.

Duties & Responsibilities

The duties and responsibilities of the Senior Security RMF Audit Analyst include:

• Recommends information assurance/security solutions to support customers' requirements.
• Identifies, reports, and resolves cyber security violations.
• Designs, develops, engineers, and implements solutions that meet security requirements.
• Provides integration and implementation of the computer system security solution.
• Evaluate and validate technical processes used to support authorization and assessment activities to assure the systems meet the organization's cybersecurity requirements.
• Perform actions as risk management framework for all systems including government cloud.
• Develop training, processes, and procedures to support the transition.
• Assess security risks of systems, applications, processes with emphasis on cybersecurity risks against common control frameworks and regulations.
• Analyzes general information assurance and cyber security-related technical problems and provides basic engineering and technical support in solving these problems.
• Performs vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle.
• Experience in functional and systems analysis preferred.
• Will independently perform risk analysis/risk assessments and define security requirements.
• Design, develop, and implement solutions to IT system security requirements. Collect and organize technical information about existing security products, authorized vulnerability management policies, and procedures.
• Assists with the Security Controls Auditor in validating the security controls and the Risk Management Framework.
• Conduct an analysis of system vulnerability management, remediation solutions, and develop the necessary POAMs.
• Collaborate with internal and/or external security teams regarding audits and security controls.
• Evaluate, tests, monitor, and maintain information security policies, procedures and systems such as hardware, firmware, and software.
• Ensure security design, controls, and procedures are aligned with information security standards and are appropriate to mitigate risk of exposure.
• Identifies security violations, determines cause, and implements procedures to prevent future incidents.

Qualifications

• Active SECRET Clearance required.
• Bachelor's or associate degree in Computer Science, Math, Information Technology, Engineering, or related field or at minimum IT Certification.
  • Note: Two (2) years' experience is equivalent to one (1) years of education.
• Five (5) years of experience in Information security with auditing and IT controls design experience.
• Five (5) years of experience with Security Information and Event Management (SIEM).
• Five (5) years of experience in the risk management framework.
• Basic knowledge of the following: Active Directory, UNIX, Windows, Relational Databases.

Our Equal Employment Opportunity Policy

• EEO and Affirmative Action Policy: DecisionPoint Corporation is an Equal Employment Opportunity and Affirmative Action employer. It is the policy of DecisionPoint Corporation to provide equal employment opportunity in accordance with all applicable Equal Employment Opportunity/Affirmative Action laws, directives and regulations to all employees and qualified applicants without regard to race, ethnicity, color, religion, national origin, sex, age, disability status, pregnancy, sexual orientation, gender identity, genetic information, protected veteran status, or any other protected status under Federal, State or Local laws.
• Pay Transparency Policy: In accordance with Presidential Executive Order 13665, DecisionPoint Corporation will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.
• Authorization to Share Resume and Personal Information: By expressing your interest and submitting your resume for this position, you authorize DecisionPoint Corporation to share your resume, as well as personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should DecisionPoint Corporation. or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.