Sr Analyst, Info Security

Suffolk, VA
Jan 12, 2017
Apr 03, 2017
Full Time
Provide Information Assurance (IA)/Cybersecurity (CS) support to the Information Systems Security Manager (ISSM):

 - Maintain accreditation of customer’s test and development networks and project enclaves by applying the Risk Management Framework (RMF) in validating and certifying systems, applications and networks, and preparing accreditation packages for formal approval.

 - Conduct and analyze vulnerability scans and configuration scans to ascertain residual risk.

 - Evaluate system and network device configurations against DoDI 8500.2 IA Controls to ascertain the accreditation readiness of commercial (COTS) and Government (GOTS) systems, applications, and architectures.

 - Ensure integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices.

 - Organize artifacts in Enterprise Mission Assurance Support Service (eMASS) to develop accreditation packages for approval by the Joint Staff Authorizing Official.

 - Organize, develop, and present briefings, written summaries, and written reports incorporating narrative, tabular and/or graphic elements.


 Provide IA/CS Subject Matter Expertise (SME) support to project teams:

 - Determine the security posture and IA/CS accreditation readiness of systems and architectures involved in assessment of Command and Control (C2) interoperability between DoD, Coalition, COTS/GOTS tools, systems, and systems of systems.

 - Support engineering design teams by assessing network and system security design features and making recommendations concerning overall security accreditation readiness and compliance with IA/CS guidance and best practices.

- Support interoperability assessment teams by applying IA/CS SME judgment to assessment criteria, metrics, and techniques; develop IA/CS assessment objectives; and present written analysis and conclusions in all phases of analysis.



 - Understanding of DHS/DoD policies and procedures, including FIPS 199, FIPS 200, NIST 800-53, DHS 4300A SSH and other applicable policies.

 - Strong understanding of RMF, NIST SP 800-53 IA Controls, eMASS, and ACAS.

 - Ability to conduct Information Systems vulnerability assessment, risk mitigation, and Plan of Action and Milestone (POA&M) development and tracking; understanding and application of mitigation strategies, IAVAs, and IAVBs.

 - Ability to research policies, procedures, standards, and guidance; then apply to specific conditions for protection of information and information systems.



- Five years of direct or related Information Assurance / Cybersecurity or Information Technology experience.

- Network and/or System Administration technical expertise with Microsoft (primarily) operating systems, Linux/Unix operating systems, Cisco products, and VMWare/virtualization.

- Experience with DoD and Service cyber ranges, such as construction, topology, or operations.

- Experience with wireless (802.11) protocols, wireless network scanning tools, and mobile device security.

- Experience with Cross Domain systems / guards.

Education Bachelors Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.

Qualifications * 5-8 years of related experience in data security administration

* Certified (or capable of obtaining within six months) IA Workforce Level II certification (e.g., CISSP, GSLC, CAP, CISM)

* Must have an active Top Secret security clearance

* Must be a U.S. citizen


 As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors.With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.GDIT is an Equal Opportunity/Affirmative Action Employer - Minorities/Females/Protected Veterans/Individuals with Disabilities.