Mid Level Security Analyst/ Mid-Level Agency Liaison

CISSP, FISMA, OMB, NIST, Cyber Security Assessment and Management (CSAM)
Full Time
Negotiable
Telecommuting not available Travel not required

Job Description

Ace Info Solutions, Inc. (AceInfo) is a leading Federal contractor with a focused vision: empower our clients, challenge our employees, and grow our business. Founded in December 2000, we are deeply committed to ensuring quality and customer satisfaction. We have a mature corporate infrastructure, strong management, and quality practices. AceInfo is a trusted IT partner to the Federal Government, and we help various agencies transform and strengthen their processes, operations, infrastructures, and security practices to help them further their critical missions.

 

For over 15 years, we have successfully managed large and significant Federal programs. We have proven experience prioritizing client satisfaction, project quality, and providing innovative, cost-effective solutions to Federal clients.

AceInfo is prime on 95% of our contracts, is headquartered in Reston VA, and has geographically dispersed office locations throughout the country, to include: Kearneysville, WV; Chesapeake, VA; Fort Collins, CO; Boulder, CO; Quantico, VA; Kansas City, MO; Bowie, MD; multiple Washington, DC Metropolitan locations, and project presence in 23 states in all time zones. We offer excellent benefits and salary packages including free medical/dental/life insurance premiums for staff members. We offer relocation assistance for internal employees and external candidates, within 50 miles (minimum) of work location. We do not offer assistance for relocation and housing for internship positions.

 

 

AceInfo is currently seeking a Mid Level Security Analyst / Mid Level Agency Liaison to support our federal project, in Washington, DC.

 

Overview:

 

This Program provides Agency Liaison Support Services for the U.S. Department of Agriculture (USDA), Office of the Chief Information Officer (OCIO), Agriculture Security Operations Center (ASOC), by means of a performance based contract.

The Program provides direct services to OCIO and agency IT and security personnel as Agency Liaisons supporting a highly effective and agile the Agency Liaison Support Services Program (ALSSP). The Agency Liaisons are Subject Matter Experts (SMEs) who continuously provide direct services, assistance, and guidance to OCIO and agency IT and security personnel

to help them understand and implement USDA’s policy and procedures for USDA’s Risk Management Framework, which includes, but is not limited to, USDA’s Assessment and Authorization (A&A), Continuous Monitoring (CM), and Continuous Diagnostics and Mitigation (CDM) programs and processes. Agency Liaisons perform activities and tasks necessary to facilitate and ensure that OCIO and agencies meet or exceed FISMA compliance and USDA’s information security policies and procedures for all information assurance activities as mandated and In Accordance With (IAW) applicable FISMA law and other regulations, OMB mandates and applicable circulars, NIST standards and guidance, and USDA cyber security policy and procedures.

 

Description:

 

Full-time Mid-Level Agency Liaison who shall be physically available to be on-site and/or via telework during core hours, and be responsible for performance of all work. The Mid-Level Agency Liaison shall be the junior security analyst for the Agency Liaison Services Support Program (ALSSP) and is the single point-of-contact for assistance, support, and resolution of activities, tasks, and issues for the agencies assigned to the Agency Liaison. This position requires interacting professionally and positively with OCIO and ASOC internal and external customers, such as, clients, co-workers, associates, and other contractors, as well as, agency IT and cyber security senior and support staff. The Mid-Level Agency Liaison is responsible for the planning, direction, and timely execution of Agency Liaison activities and tasks in support of agencies’ Assessment and Authorization and Continuous Monitoring requirements.

 

Responsibilities

  • Serves as A&A Subject Matter Experts (SME) to OCIO and agencies by tracking, monitoring, and reporting on the status of all USDA IT Systems to ensure compliance with applicable FISMA law and other regulations, OMB mandates and applicable circulars, NIST standards and guidance, and USDA cyber security policy and procedures and USDA Risk Management Framework (RMF) Six Step Processes
  • Provides assistance and guidance to OCIO and agencies through identifying and resolving problems in an efficient and timely manner with A&A requirements, processes, and procedures; recognizing the proper course of action to take; and identifying, routing, and tracking issues for escalation and resolution to appropriated ASOC personnel, as specified by the Government
  • Provides training to OCIO and agencies, as needed, with the USDA Risk Management Framework (RMF) Six Step Processes; A&A requirements, processes, and procedures; and with relevant and supporting technologies or processes, such as, but not limited to, CSAM and the A&A Concurrency Review Process
  • Tracks, monitors, reviews, reports, and documents when OCIO and agency systems and major applications will require an A&A to be performed; review and discuss planning process to initiate and complete the A&A; and facilitate and provide guidance to shepherd A&A package to completion
  • Provides advisory services to OCIO and agencies promoting continuous improvement of their security posture; consults on the security posture of their systems; and works to ensure common understanding and expectations for security compliance for their systems
  • Provides assistance, guidance, and mentoring to OCIO and agency IT, security personnel, and key stakeholders, such as OCIO or agency System Owners, during all phases of the A&A process
  • Tracks, monitors, and reports on the Authorization to Operate (ATO) status for systems and applications to ensure that OCIO and agencies are planning and implementing activities and tasks to meet timelines and milestones for completing both A&A Phase 1 and Phase 2 activities and minimize and reduce the occurrence of ATO expirations
  • Reviews, tracks, monitors, and reports on OCIO and agency A&A relevant documentation for all systems and applications listed in CSAM to ensure compliance (or identify non-compliance), accuracy, completeness, and validity of documentation
 

Qualifications

 

  • Bachelor’s Degree in Computer Information Systems, Computer Networking, or related field or equivalent experience
  • Current IT Security Certification (e.g. CISSP, CISM, CAP, FITSP, etc.)
  • 7+ years experience and knowledge in IT and/or security operations and management, development and implementation, and administration and program management
  • 4+ years experience and knowledge of cyber security concepts, methods, best practices, tools, policies and laws as outlined by FISMA, OMB, NIST, DHS, and other government and non-government cyber security organizations
  • 2+ years experience in performing information security assessments as outlined in NIST Special Publications, including skills in identifying and analyzing security risks, developing and presenting findings and recommendations to IT and cyber security managers and their technical teams and staff
  • Experience and training in using Cyber Security Assessment and Management (CSAM) or equivalent tool used to assess, document, manage, and report on the status of IT security risk assessments and implementation of Federal mandated IT security control standards and guidelines
  • Excellent oral and written communication skills, attention to detail, ability to communicate highly technical requirements to a diverse audience across multiple mission areas on all aspects of the Agency Liaison Services Support Program, including skills in communicating new policy, guidance, or procedural requirements provided by OMB, NIST, DHS, and/or USDA
  • Must be US Citizen

 

Ace Info Solutions is an Equal Opportunity Employer with a commitment to diversity. All individuals, regardless of personal characteristics, are encouraged to apply. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, genetics, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

 

Posted By

Gwen Holland

11490 Commercial Park Dr, Suite 340 Reston, VA, 20171

Contact
Dice Id : 10115943
Position Id : 2018-3313
Have a Job? Post it

Similar Positions

Cybersecurity Policy Analyst
  • TCG
  • Washington, DC
Deputy A&A Team Lead
  • Tetrad Digital Integrity Inc
  • Bethesda, MD
Information Systems Security Officer (ISSO)
  • Business Operational Concepts
  • Washington, DC
Information Security Analyst
  • Somos
  • Herndon, VA
RMF Cybersecurity Analyst
  • Scope Group
  • Washington Navy Yard, DC
Security Assessor
  • Dunhill Professional Search
  • Washington, DC
Senior Security Control Assessor
  • Redport Information Assurance
  • Lanham, MD
IT Security Engineer
  • Mindbank Consulting Group
  • Silver Spring, MD
Security Engineer
  • CNSI
  • Rockville, MD
Information Security Analyst
  • Robert Half Technology
  • Silver Spring, MD
Cyber Security Specialist - D.C. Area
  • 10525742
  • Washington D.c. Metro, DC
System Security Analyst
  • VariQ Corporation
  • Washington, DC
Security Analyst (FISCAM and COBIT)
  • AETEA Information Technology Inc
  • Washington, DC
Cybersecurity Engineer
  • TISTA Science and Technology Corporation
  • Washington, DC