GRC Security Analyst - Xacta Lead

(GRC over 2 year(s) OR GOVERNANCE, RISK, AND COMPLIANCE ) AND(INFOSEC OR RMF OR SECURITY COMPLIANCE OR NIST OR RISK MANAGEMENT OR XACTA ) AND(FISMA )
Contract W2, Contract Independent, C2H W2, C2H Independent, Full Time
BASED ON EXPERIENCE
Work from home not available Travel not required

Job Description

Data Systems Analysts, Inc. (DSA) is a leading Information Technology and Management Consulting firm, delivering solutions to Federal, State and Local Government and commercial industry. We are best known for Knowledge & Information Management, Energy Management & Environmental Sustainability, Enterprise Systems Development & Operations and Cyber Security and Information Assurance. With offices in the DC Metropolitan Area and across the nation, we serve Fortune 500 decision makers and Federal, State and local government agencies throughout the U.S.



Job Description:

The ideal candidate will report directly to the program manager and have strong analytical and leadership skills and the ability to lead tasks and projects. The Governance, Risk, and Compliance (GRC) Security Analyst - Xacta Lead will be an integral part of a team responsible for supporting the development and maturation of an Agency-wide information security (InfoSec) program for a large civilian Federal agency. The candidate should have strong GRC tool experience and technical and data analysis skills. The candidate will serve as a subject matter expert (SME) with regards to the Risk Management Framework (RMF) and all associated information security policies and procedures and should possess in-depth knowledge of applying, selecting and testing the NIST family of security controls.



Primary Responsibilities:


  • Providing administrative support in response to Telos Xacta IA Manager customer requests for:

  • Access Problems

  • Account Creations

  • Project Registration

  • Project Modification Support

  • General Troubleshooting

  • Authoring Xacta operational procedures and providing customer training.

  • Performing Authorized Outages (AO's) and functionality testing, for the XACTA IA Manager, in support of new application and software releases.

  • Capture relevant reporting metrics; information will be formalized and presented to the XACTA Program leadership in support of monthly reports.

  • Develop and implement corrective measures for database issues/problems found during Xacta monitoring.

  • Review existing workflow configurations and provide design guidance for improvements.

  • Must understand the NIST RMF requirements and how they are managed within the application.

  • Must be able to develop NIST documentation in Xacta utilizing extensible publishing and XML (templates, reference sheets, and supporting documentation).




Minimum Qualifications:


  • US Citizenship.

  • Bachelor s degree in Computer Science, Information Systems, Engineering, Business, or other related scientific or technical discipline is required. Four (4) additional years of experience in IA/Information Security will be an acceptable substitute for a Bachelor s degree.

  • Minimum of seven (7) years related general experience and at least five (5) years of IA specialized experience, including four (4) or more years of Telos Xacta IA Manager

  • Knowledge of IT security concepts, assessment processes, and high level controls used for validating compliance. Understanding of major GRC security regulations/assessment processes (NIST 800-53, NIST 800-37, ISO 27001 and related primary security regulations would be useful)

  • Must be able to work with existing content in various file formats (.txt, .xls, .xml, doc, .pdf, etc.) using related tools. Knowledge of XML would be a plus.

  • Experience with Word/Excel and other office automation tools, needed in the development of the content. Use of advanced Excel topics (formulas, macros, VBA) would be useful.

  • Understanding of scripting languages would be a benefit (perl, velocity, UNIX scripting, javascript, etc.).

  • Need to be able to handle general content management tasks (archiving, versioning, SVN would be helpful).

  • Basic understanding of programming concepts would be a plus.

  • Written and oral communication skills including the ability to communicate complex technical issues to senior stakeholders and non-technical staff.

  • Knowledge and understanding of integrating the security lifecycle into the system development lifecycle (SDLC).




Preferred Abilities, Skills, and Tool Experience


  • Telos Xacta IA Manager

  • CDM Dashboard/RSA Archer

  • CSAM

  • XML Experience (schema development, general content creation).

  • General programming experience (velocity, velocity tools)

  • Experience with java string methods.

  • Experience with Regular Expressions (Regex).

  • General Scripting Experience (Perl, JavaScript).

  • Experience with Spreadsheets (functions, formulas), use of macros and/or VBA a plus.




MUST HAVE AN ACTIVE DOD CLEARANCE ; this will be verified prior to interview. Therefore, only US Citizens can be considered for this position.



Founded in 1963, Data Systems Analysts, Inc. (DSA) has been providing Defense and Federal Government customers' business-driven Information Technology and consulting solutions and services for more than 50 years. DSA's people excel in helping our customers achieve sensitive, mission-critical business goals and objectives. DSA is a 100 percent employee-owned company: every employee has a stake in the success of our company and our customers.Our culture embraces training and development opportunities that include leadership programs, employee networks, continued education, and much more. We recognize that building expertise in your profession benefits everyone, and our leadership training programs help employees better manage their projects, inspire coworkers and customers to action, and reinforce DSA's guiding principles since 1963.


We also value the unique combination of skills, abilities, aspirations, and backgrounds of every individual our diversity makes us stronger. We are 100 percent employee-owned through an Employee Stock Ownership Plan (ESOP).DSA employees receive customizable benefits that are highly competitive in each local market that include a Vanguard 401K. DSA provides equal employment opportunity for employees and applicants without regard to an individual's protected status; race/ethnicity, color, national origin, ancestry, sex/gender, gender identity/expression, sexual orientation, marital/parental status, pregnancy/childbirth or related condition, religion, creed, age, disability, genetic information, veteran status, or any other protected status.



DSA will provide necessary reasonable accommodation to ensure that an individual with a disability who is not able to fully utilize DSA's online job application system is provided with equal opportunity to apply and be considered for all jobs. If you need an accommodation to complete the application process, please email HR @dsainc.com or call 1-877-422-4372.

Posted By

Adele Hackney

Dice Id : 10119839
Position Id : 19-00142
Have a Job? Post it