Cyber Security Analyst

Cyber Security, SCA, NIST-800-53-IPS
Full Time, Full Time
Depends On Experience
Telecommuting not available Travel not required

Job Description

Ace Info Solutions, Inc. (AceInfo) is a leading Federal contractor with a focused vision: empower our clients, challenge our employees, and grow our business. Founded in December 2000, we are deeply committed to ensuring quality and customer satisfaction. We have a mature corporate infrastructure, strong management, and quality practices. AceInfo is a trusted IT partner to the Federal Government, and we help various agencies transform and strengthen their processes, operations, infrastructures, and security practices to help them further their critical missions.


AceInfo seeks a cyber-security analyst to support a complete program of multiple government web applications to acquire and maintain their ATO and implement information system continuous monitoring. The client is baseed in Fort Collins, but the work can be done from our corporate office in Reston, VA . Some travel to Fort Collins occasionally .  It also requires the candidate for this position pass the background check for clearance: Moderate Background Investigation or Secret clearance.




This role will provide:

  • Oversight, expertise, technical security strategy, standards, and best practices for multiple programs with various security categorizations (low, moderate and high).
  • Counsel to ensure auditing, testing, preventive and reactive measures are being adequately implemented for systems with an active Authorization to Operate (ATO).
  • Reviews, updates and development of all required security documentation.
  • Reviews, testing and implementation of security requirements within project plan timelines.
  • Research and tracking of security standards, policies, and procedures.
  • Balance multiple assignments with strong and effective communication, time management and collaboration skills.


  • Review and verify policies and procedures are developed in line with all applicable federal and LOC security standards and regulations.
  • Maintain, track, and communicate detailed project tasks.
  • Manage initial and reauthorization System Assessment and Authorization (SAA)/ Security Controls Assessment (SCA) task and milestone, task dependencies for low, moderate, and high security systems.
  • Develop and update security documentation including but not limited to:
    • Privacy Threshold Assessment (PTA)/ Privacy Impact Analysis (PIA)
    • Business Impact Assessment (BIA)
    • Contingency Plans (CP)
    • Configuration Management Plan (CMP)
    • Change Management Plans, Incident Response Plans (IRP)
    • Plan of Action and Milestones (POA&Ms)
    • Security Assessment Reports (SAR)
    • Memorandum of Understanding / Interconnection Security Agreement (ISA)
  • Categorize and determine baseline IT security requirements in accordance with FIPS 199.
  • Identify and visually demonstrate system boundaries, select security controls, and ensure implemented controls are adequate for COTS or proprietary web applications. Provide recommendations as necessary to meet or improve controls.
  • Ensure security policies are developed, maintained and updated to meet IT security best business practices and standards, including Federal Info Security Management Act (FISMA), and National Institute of Standards and Technology (NIST) 800-53 – IPS federal info processing standard.
  • Be able to review security scans, advise on triaging vulnerabilities, and be able to provide recommendations on mitigating security risks.
  • Assist with testing and training functional teams, and advise them on providing security implementation evidence as necessary.
  • Assists in documenting and managing artifacts in SharePoint, Atlassian Suite (JIRA, Confluence) and CSAM security repositories, including but not limited to writing implementation statements.
  • Assists Information Systems Security Managers (ISSMs) in generating ATO packages
  • Conduct continuous monitoring and reporting of security control implementations.
  • Must evaluate business strategies and requirements to develop security strategies, assess risk, research standards, and determine security requirements as necessary.
  • Track and coordinate POA&M remediation activity with different functional teams across multiple systems.
  • Other duties as assigned.

Additional Information:

  • Ability to attain Federal Government Position of Trust


Ace Info Solutions is an Equal Opportunity Employer with a commitment to diversity. All individuals, regardless of personal characteristics, are encouraged to apply. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity, disability or veteran status.

Posted By

Jaya Sapre

11490 Commercial Park Dr, Suite 340 Reston, VA, 20171

Dice Id : 10115943
Position Id : 701099
Have a Job? Post it

Similar Positions

IT Security Specialist
  • Bethesda, MD
Cybersecurity Analyst
  • Booz Allen Hamilton
  • Reston, VA
Cyber Security/Information Assurance Journeyman
  • Agil3Tech (Agil3 Technology Solutions)
  • Washington, DC
IT Security/ Cybersecurity Assessor
  • B&M Consulting Group, Inc
  • Washington, DC
Security Analyst
  • The Judge Group, Inc.
  • Herndon, VA
Senior Information Security Analyst
  • Eliassen Group
  • Washington, DC
Cyber Security Specialist
  • Alexandria, VA
Security Analyst
  • Apptech Group LLC
  • Washington, DC
Information Assurance Cyber Security Analyst ( Veteran Affairs exp.)
  • SBG Technology Solutions, Inc.
  • Washington, DC
Security Analyst
  • TCG
  • Washington, DC
Information Assurance Engineer
  • CyberCoders
  • Suitland, MD
Security Analyst
  • Kavaliro
  • Bethesda, MD