Overview
On Site
Hybrid
Depends on Experience
Contract - W2
Contract - Independent
Skills
ISSO
CSAM
RMF
Cloud
Job Details
Information Systems Security Analyst / Officer (Nessus / Splunk, CSAM, RMF, POA&M)
Location: Sterling / Lorton, VA (2 days telework / week and 3 days onsite)
Work schedule & hours: Mon-Fri (regular Shift 7am or 9am or 11am)
Clearance: Required Active Interim/ Secret / TS clearance
Interview: Webcam / phone
Skills Set: CSAM, RMF, POA&M, Cloud Services (Nessus or Splunk or similar tools are highly desirable)
Must have skills to qualify for this position: ISSO experience, Strong CSAM, RMF, NIST, experienced working with Nessus OR Splunk OR Similar dashboard, must have ability to handle reporting and deadlines.
Information Systems Security Analyst or Officer (5 plus years of experience including 3plus years in Security is required)
-Design and implement solutions for protecting the confidentiality, integrity and availability of sensitive information.
-Recognized information security expert
-Provide technical support in the areas of vulnerability assessment, risk assessment, network security, product evaluation, and security implementation.
-Participate in the design of information system business impact analysis, system categorization, contingency plans, privacy documents, and other system security documentation to maintain appropriate levels of protection and meet requirements for minimizing operational impact to the enterprise.
-Conduct testing and audit log reviews to evaluate the effectiveness of current security measures.
-Conduct security product evaluations, and recommend products, technologies and upgrades to improve the customer’s security posture.
Required Experience
-Minimum of 3 years experience with federal information systems security policy and implementation and conducting security control assessments, Plan of Action and Milestones (POA&M) management, system authorizations, configuration management, and system analysis.
-Design and implement solutions for protecting the confidentiality, integrity and availability of sensitive information.
-Recognized information security expert
-Provide technical support in the areas of vulnerability assessment, risk assessment, network security, product evaluation, and security implementation.
-Participate in the design of information system business impact analysis, system categorization, contingency plans, privacy documents, and other system security documentation to maintain appropriate levels of protection and meet requirements for minimizing operational impact to the enterprise.
-Conduct testing and audit log reviews to evaluate the effectiveness of current security measures.
-Conduct security product evaluations, and recommend products, technologies and upgrades to improve the customer’s security posture.
Required Experience
-Minimum of 3 years experience with federal information systems security policy and implementation and conducting security control assessments, Plan of Action and Milestones (POA&M) management, system authorizations, configuration management, and system analysis.
Education:
-BS or Master in Computer Science, Information Systems Engineering, Business, Physical Science, or other technology-related discipline. OR 6 years in IT with Bachelor or 10 years in IT without degree
-BS or Master in Computer Science, Information Systems Engineering, Business, Physical Science, or other technology-related discipline. OR 6 years in IT with Bachelor or 10 years in IT without degree