Information Security Analyst

Job Type

Full-time

Description

SSI is seeking a Sr. Information Systems Security professional to join our team on a new Navy contract with us!

DUTIES AND RESPONSIBILITIES :

• Research, design, develop, implement, test and review of information security in order to protect information and prevent unauthorized access.
• Applying the best practices of the RMF across all phases of the lifecycle.
• Assisting with the design and technical implementation of RMF compliant environments, implement security policies, identify vulnerabilities within customers systems.
• Designing and validating secure systems ready for ATO submission and maintaining the system's ATO and cybersecurity health post-authorization
• Recommending and implementing technical controls to ensure all applicable cybersecurity policy, plans and procedures are followed.
• Applying NIST, STIGs, and DoD directives via system design and ensuring adherence as directives evolve.
• Ensuring required cybersecurity controls are implemented and validated, to include continuous monitoring actions for assigned systems.
• Supporting the development and maintenance of cybersecurity related design documentation, plans, procedures and guidance including System Security Plans
• Configuring systems in accordance with STIGs and benchmarks, documenting controls in the SSP and developing artifacts, diagrams and procedures.
• Monitoring and recognizing non-compliance, suspicious and anomalous and effectively reporting such activity and associated risks to the appropriate parties.
• Ensuring plans of actions and milestones or remediation plans are in place for vulnerabilities identified during monitoring activity, audits, inspections, etc. and implementing, or overseeing, required corrective actions.
• Creating, collecting and retaining data to meet reporting requirements.
• Monitoring and correlating data (logs, events, activity) from a variety of sources to identify and mitigate threats, vulnerabilities and non-compliance.
• Performing risk assessments, developing and validating security architectures, conducting system-level vulnerability analysis.

Requirements

• Education: DoD8570 IAT Level II (eg: Sec+) and CE level certification
• Clearance: Secret minimum, with eligibility for Top Secret
• Minimum 3 years experience in cyber security and RMF
• Must have familiarity with applying NIST 800-53 Security and Privacy Controls for Federal Information Systems.
• Must possess a good understanding of DFARS 252.204.7012-Safeguarding Unclassified Controlled Technical information.
• Must be familiar with NMCI networking
• Bachelor's Degree preferred, equivalent additional experience accepted.

SSI is committed to non-discrimination and equal employment opportunity. All qualified applicants will receive consideration for employment without discrimination based on disability, protected veteran status or any other characteristics protected by law.
SSI is a HUBZone small business that provides professional services including systems engineering, information systems integration, and technology management services. SSI offers a generous array of benefits including: Employee Medical, Vision, Dental, and Prescription Drug Insurance Plans, 60% paid premium for dependents. SSI provides Life Insurance, Long Term Disability, and Short-Term Disability benefits at no cost. SSI employees receive 24 paid days off in the first year on board. We also provide Military Leave benefits, a 401(k) Retirement Plan, education assistance, Personal Technology Refresh and Employee Referral bonuses. Positions subject to Service Contract Act (SCA) have benefits provided as required by law.