Senior Information Security Analyst - Fairfax, VA
Senior Information Security Analyst - Fairfax, VA
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
ATTENTION MILITARY AFFILIATED JOB SEEKERS - Our organization works with partner companies to source qualified talent for their open roles. The following position is available to Veterans Transitioning Military National Guard and Reserve Members Military Spouses Wounded Warriors and their Caregivers. If you have the required skill set education requirements and experience please click the submit button and follow the next steps. All positions are onsite unless otherwise stated.
Primary Responsibilities:
- Advising senior-level stakeholders on InfoSec initiatives including compliance awareness and training and security operations.
- Leading Independent Validation and Verification (IV&V) efforts on security authorization/ATO packages to ensure compliance with agency requirements.
- Leveraging the existing Governance Risk and Compliance (GRC) tool Telos Xacta (or an alternate like CSAM or RSA Archer) to track and reconcile findings from assessments audits and vulnerability scans.
- Coordinating government data calls (FISMA FMFIA BDR etc.) and monthly reports.
- Assessing the effectiveness of the InfoSec and privacy training program and leading the collection analyzing and presentation of enterprise-level InfoSec performance metrics.
- Managing InfoSec Program POA&Ms including advising on remediation efforts.
- Working closely with senior agency security officials system owners information system security officers (ISSOs) and other stakeholders to advise and implement security solutions.
- Identify opportunities for efficiencies in work process and innovative approaches.
- Participating in team problem solving efforts and offer ideas to solve client issues.
- Conducting relevant research data analysis and developing reports.
- Preparing and assisting in the development of policy and procedures.
- Implementing processes and procedures to monitor risk across programs / projects.
- Preparing briefings to the executive team to debrief the results of studies analyses and plans.
- Assisting the client leadership in reviewing monthly project progress documenting issues and monitoring resolution.
Desired Qualifications:
- Advanced level cybersecurity certification (e.g. CompTIA CISM ISC2 CISSP)
Required Qualifications:
- Bachelors degree in information technology or related field and 8 years of relevant IA experience. May substitute security certification (e.g. CISSP) for 2 years of experience.
- 3 years in a leadership role
- Strong data analysis skills.
- Excellent written and verbal communication skills.
- Possess in-depth knowledge of applying selecting and testing the NIST 800-53 Rev 4 security controls.
- Possess in-depth knowledge of NIST 800-37 Risk Management Framework.
- Experience with a Governance Risk and Compliance tool (e.g. Xacta RSA Archer CSAM or eMASS).
- Excellent attention to detail.
- Ability to handle and prioritize multiple tasks and deadlines.
- Advanced level cybersecurity certification (e.g. CompTIA CISM ISC2 CISSP)
- In-depth knowledge of applying selecting and testing the NIST 800-53 Rev 5 security controls
Required Experience:
Senior IC
Employment Type
Full Time
