Skip to main content

This job has expired

You will need to login before you can apply for a job.

Information Assurance Analyst with Security Clearance

Employer
Gridiron IT Solutions
Location
Maryland
Salary
110000.00 - 135000.00 USD Annual
Closing date
17 Dec 2024
View more categoriesView less categories
Sector
IT
Job Role
Information Assurance
Job Type
Permanent
Information Assurance Analyst Location: Fort Meade, MD
Work Type: Hybrid Job Description
Gridiron is looking to hire an Information Assurance Analyst with an Active Secret Clearance. This candidate shall perform (or review) technical security assessments of computing environments to identify points of vulnerability, non–compliance with established Information Assurance (IA) guidelines and regulations and recommend mitigation strategies. In this role, the candidate will ensure that the environments in which DoD information systems reside are secure and compliant, develop approaches to secure the environment, assess threats to the environment, provide inputs on the adequacy of security designs and architectures, perform RMF related activities, and participate in risk assessment during the certification and accreditation process. Responsibilities
Evaluate, develop and/or implement information assurance guidelines and procedures as required.
Recommend security solution mitigations and enhancements supporting information assurance guidelines and customer requirements.
Perform vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle.
Conduct IT security site surveys.
Support Authorizing Official (AO) actions by developing and delivering accreditation packages with supporting documents and artifacts in accordance with RMF as defined in NIST 800–37 revision 2 and related agency specific RMF requirements.
Provide input into an Audit and Accountability Plan containing methods, procedures, and planned reviews for the continuing accreditation and authorization against AU (Audit and Accountability) family controls per NIST SP 800–53 guidance.
Provide input and implements an organizational access control policy and plan in compliance with risk–levels defined in the National Institute of Standards and Technology (NIST) 800–53, rev 4, Access Control family of controls to include auditing annually, at a minimum.
Develop processes and procedures for evaluating and documenting information system security vulnerabilities IAW DoD Instruction (DoDI) 8510.01 (RMF for DoD IT)
Ensure that all information systems meet or exceed compliance requirements.
Identify, report, and resolve security violations.
Establish and satisfy information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands.
Have experience performing various types of vulnerability and assessment scans with multiple tools.
Perform various types of vulnerability and assessment scans with multiple tools.
Experience using eMASS and/or Xacta.
Mentor team members.
Monitor and review the regular updates/upgrades to equipment and procedures to maintain pace with IA requirements and business needs.
Identify overall security requirements for the proper handling of Government data. Qualifications
Bachelor's degree and 8+ years of experience; additional years of directly applicable experience may be accepted in lieu of a degree.
Prior relevant experience working with RMF, serving in an ISSO, ISSO support, SCA representative, or similar role.
Current DoD 8570 IAT II Certification is required. (Sec+.)
Have experience performing various types of vulnerability and assessment scans with multiple tools.
Have experience using eMASS and/or Xacta.
Solid understanding of the Risk Management Framework (RMF) and the System Development Life Cycle (SDLC).
Understanding of hardware and software engineering best practices.
Demonstrated analytical and problem–solving skills.
Must meet eligibility requirements for work assignment on specified contract.
Applicants selected will be subject to a government security investigation and must meet eligibility requirements. Desired Qualifications:
Experience collaborating with divers stakeholders to drives consensus and forward progress
Ability to identify needed changes to processes and activities and help to implement continuous improvement solutions.
Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), and/or Certified Accreditation Professional (CAP).
Ability to work successfully as part of a virtual team. Clearance
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.
Compensation and Benefits
Salary Range: $110,000–$135,000 (Compensation is determined by various factors, including but not limited to location, work experience, skills, education, certifications, seniority, and business needs. This range may be modified in the future.)
Benefits: Gridiron offers a comprehensive benefits package including medical, dental, vision insurance, HSA, FSA, 401(k), disability & ADD insurance, life and pet insurance to eligible employees. Full–time and part–time employees working at least 30 hours per week on a regular basis are eligible to participate in Gridiron's benefits programs.
Gridiron IT Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status or disability status.
Gridiron IT is a Women Owned Small Business (WOSB) headquartered in the Washington, D.C. area that supports our clients' missions throughout the United States. Gridiron IT specializes in providing comprehensive IT services tailored to meet the needs of federal agencies. Our capabilities include IT Infrastructure & Cloud Services, Cyber Security, Software Integration & Development, Data Solution & AI, and Enterprise Applications. These capabilities are backed by Gridiron IT's experienced workforce and our commitment to ensuring we meet and exceed our clients' expectations.

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert