Information Security Analyst

Overview

DecisionPoint Corporation is seeking an Information Security Analyst to support the Norfolk Naval Shipyard (NNSY) IT Support Services contract. NNSY's mission is to safely return warships to the Fleet on time and within budget, supported by secure and reliable information systems.

This position is fully on-site.

Duties & Responsibilities

• Apply computer security (CS) and information security (INFOSEC) concepts, principles, and requirements to protect enterprise IT systems and data.
• Conduct system and network vulnerability analyses to identify security weaknesses and recommend corrective actions.
• Perform risk assessments and risk mitigation analyses to reduce threats and vulnerabilities to acceptable levels.
• Support and execute Security Test and Evaluation (ST&E) activities to validate system security controls and compliance.
• Develop, maintain, and support contingency planning activities, including backup, recovery, and continuity of operations.
• Configure, implement, and maintain firewall policies in accordance with security requirements and approved configurations.
• Manage and assess network ports and protocols to ensure secure and authorized communications.
• Perform day-to-day Vulnerability Remediation Asset Management (VRAM) activities to track, prioritize, and resolve identified vulnerabilities.
• Enter and maintain system baseline configurations in VRAM by uploading and validating vulnerability scan results from representative baseline systems.
• Utilize cyber security tools and applications, including ACAS, HBSS, Microsoft Defender for Endpoint (MDE), Microsoft Defender for Identity (MDI), and Splunk, to monitor, analyze, and remediate security events.
• Apply expert-level institutional knowledge and a minimum of four (4) years of experience supporting mission-critical procedures, systems, and processes related to Information Technology and Cybersecurity requirements.
• Ensure compliance with cybersecurity requirements defined by applicable public laws, national policies, DoD and Department of the Navy (DoN) guidance, including FISMA, DoDD 8100.02, DoDI 8500.01, DoDI 8520, DoDI 8530, DoDI 8531, SECNAVINST 5239 series, OPNAVINST 5239 series, and NIST Special Publication 800 series.
• Apply expert knowledge of and experience with the requirements outlined in OPNAVINST N9210.3, Safeguarding Naval Nuclear Propulsion Information.
• Maintain full qualification in accordance with DoD 8570.01-M requirements.

Qualifications

• Active Top Secret clearance.
• Bachelor's degree in an IT-related discipline or a Level II Certification (CompTIA Security+ or higher) with a minimum of four (4) years of experience performing Computer Security (CS) analysis.
• Demonstrated experience supporting cyber metrics analysis and reporting.
• Experience conducting incident response and mitigation activities.
• Experience performing risk mitigation analysis and developing corrective action recommendations.
• Experience developing and supporting contingency plans to ensure system resilience and continuity of operations.

Our Equal Employment Opportunity Policy

• EEO and Affirmative Action Policy: DecisionPoint Corporation is an Equal Employment Opportunity and Affirmative Action employer. It is the policy of DecisionPoint Corporation to provide equal employment opportunity in accordance with all applicable Equal Employment Opportunity/Affirmative Action laws, directives and regulations to all employees and qualified applicants without regard to race, ethnicity, color, religion, national origin, sex, age, disability status, pregnancy, sexual orientation, gender identity, genetic information, protected veteran status, or any other protected status under Federal, State or Local laws.
• Pay Transparency Policy: In accordance with Presidential Executive Order 13665, DecisionPoint Corporation will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.
• Authorization to Share Resume and Personal Information: By expressing your interest and submitting your resume for this position, you authorize DecisionPoint Corporation to share your resume, as well as personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should DecisionPoint Corporation. or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.