Information Assurance Support Analyst with Security Clearance
Astrion Rockville
Overview Information Assurance Support Analyst LOCATION:
REQUIRED QUALIFICATIONS / SKILLS
- Rockville, MD CLEARANCE: NRC Clearance JOB STATUS: Full
REQUIRED QUALIFICATIONS / SKILLS
- BA/BS or 5 years additional equivalent experience
- 6 years IT experience, with 4 years specialized in Information Assurance
- Secret Clearance; the ability to obtain an NRC Security Clearance; US citizenship required
- Must hold at least one of the following certifications: CompTIA Security+, CISSP, ISACA CISA, GIAC GSEC, GIAC GSNA, GIAC GPEN, CEH, CAP, CASP+, CRISC, or CCSK PREFERRED QUALIFICATIONS / SKILLS
- A strong understanding of FISMA and NIST Special Publications, especially NIST SP 800-37 and NIST SP 800-53
- Excellent written and oral communication skills; attention to detail is a must
- Experience with vulnerability scanning tools, such as Tenable Security Center
- Working knowledge of DISA STIGs, SCAP content/ audit files, and CIS Benchmarks
- Understanding of cloud service models (SaaS, PaaS, IaaS) and protections as described in FedRAMP security documentation
- Experience reviewing FedRAMP authorization packages and understanding how to ensure customer responsibilities are addressed in accordance with the shared responsibility model
- Experience with performing technical architecture reviews of complex systems with a strong understanding of a system's authorization
- Knowledge of major cloud platforms (Azure/ Amazon Web Services [AWS]), virtualization, networking devices (e.g., routers and switches), web services (e.g., IIS, Apache Tomcat), network security appliances (e.g., firewalls, VPNs), databases (e.g., Microsoft SQL), and intrusion prevention/ anti-malware software
- Knowledge of system and application security threats and vulnerabilities
- Proficiency with Microsoft Office applications
- Ability to prioritize and complete tasks efficiently and effectively
- Comfortable working individually and as part of a team
- Scripting ability (e.g., PowerShell, VBA) is a plus
- Familiarity with the use of artificial intelligence (AI) tools such as chat technologies to enhance personal productivity RESPONSIBILITIES
- Work closely with all levels of personnel, including system administrators, Information System Security Officers (ISSOs), and Authorizing Official (AO), to support FISMA systems through the Security Assessment & Authorization (SA&A)
- Assess the confidentiality, integrity, and availability impact levels of information stored, possessed, and transmitted by systems to determine the FIPS 199 security categorization
- Develop and maintain system security documentation throughout all phases of the NIST Risk Management Framework (RMF).
- Analyze risks identified during security control assessments and continuous monitoring activities in accordance with NIST SP 800-30.
- Perform and document the results of vulnerability scans and configuration compliance checks against configuration standards such as DISA STIGs and CIS Benchmarks
- Analyze FedRAMP security packages to document and assess customer responsibility for cloud-based
- Assist in the review of monthly continuous monitoring deliverables produced by Cloud Service Providers (CSPs) and annual assessments (produced by third party assessors [3PAOs]) in support of FedRAMP requirements to ensure that cloud services maintain an appropriate risk
- Create, track, and manage system Plans of Action and Milestones (POA&Ms)
- Attend project meetings and collaborate with stakeholders to ensure security is addressed throughout the entire system lifecycle #CJ
Global Enterprise Services, LLCArlington (VA), 14 mi from Rockville (MD)
Location: Pentagon, Arlington, VA Clearance: Active Top Secret (TS) REQUIRED Certification: DoD 8140/8570 IAT Level II or Above REQUIRED Position Overview GES is seeking an Information Assurance Analyst to ensure cybersecurity compliance...
Telos CorporationAshburn (VA), 18 mi from Rockville (MD)
and 401k. Our employees enjoy more than just a great work environment! This position will be Remote Responsibilities: In this role, you will support our client's engineering and compliance teams with their ongoing information assurance needs.
You...
Rollout SystemsArlington (VA), 14 mi from Rockville (MD)
Seeking a highly motivated and driven Sr. Information Assurance Security Engineer (IASE) (Air Systems) to work Onsite supporting enterprise IT for our War-fighter customer who upholds America's status as the "Land of the Free" every day, at work...