Information Assurance Analyst

Employer
Diverse Systems Group
Location
Fort Belvoir, VA
Posted
Jul 17, 2017
Closes
Jul 20, 2017
Function
Analyst, IT, QA Engineer
Hours
Full Time
Job Description · Summary/Responsibilities · Responsible for assisting in the management of the FBCH IAW NIST, DOD, DHA, and local policies/procedures. Serve as a DoD Information Assurance Certification and Accrediation (DIACAP) / DoD Risk Management Framework (DRMF) security advisor to the site IAM. Generate and/or update documentation/artifacts IAW DOD 8500.01, DoD 8510.01, DHA and local policies and procedures. Provide direct support to all stakeholders of an Automated Information System Proactive in conferring with vendor, site support, system owner and admins on information gathering and other necessary tasks. Identify and evaluate internal IT business processes and controls and identify areas of risk Collaborate with IV&V team and contractors with defining the system's Defense-in-Depth architecture, verifying IA controls, IA deficiency database, Risk Mitigation Plan and Residual Risk Assessment to prepare DIACAP packages IAW DOD 8500.01 and DoD 8500.8510.01. Assists with other aspects of the security program as directed by supervisor. · Job Requirements · Experience with DoD Information Assurance Certification and Accreditation Processes (DIACAP) and the DoD IA RMF (DIARMF) processes · Excellent verbal and technical writing skills. · Must be able to work as a member of a team of IA analysts or independently with little supervision. · Experience in the implementation of IA policy and guidance for operating systems, applications, networks and databases and other relates to the Defense in Depth computing, enclave, and enterprise environment required practices. · Possess working knowledge of IA principals, concepts, practices and method to include but not limited to: DoD 8500.01, 8510.01, 8570 Directives and Instructions. Federal Information System Management Act (FISMA) and National Institute of standards and Technology (NIST) policies and guidelines ( NIST Special Publications (800 Series). · Has the ability to convey complex or abstract notions in an easy to understand way via email, verbal or written document. · Must be accustomed to reviewing existing documentation for errors, modifying and maintaining baseline templates to meet compliance associated with a comprehensive package. · Must be able to demonstrate effective time management and communication · Must have and maintain CompTIA Security+ CE certification in good standing · Working knowledge of DISA Security Technical Implementation Guides, and Checklists and · Preferable experience with or must learn DoD Enterprise Missions Assurance Support System (eMASS). · Assists with other aspects of the security program as directed by IAM. · US Citizen with an active SECRET security clearance. · Education / Experience · At least 5-7 years of dedicated experience with creating DIACAP and RMF packages at the operational level. · At least 7-10 years of technical writing. Proficient in creating policies and or modifying exiting policies that are central to information securityISC2 CAP certification a plus. · DoD eMASS experience preferable · Proficient Use of Microsoft Office Products. · Working knowledge of Microsoft Operating systems Company Description Diverse Systems Group, LLC (DSG), is a minority-owned 8(a) firm that creates custom information technology and business solutions for government agencies, systems integrators and government contractors. Our experience and commitment to client relationships enables us to provide creative, innovative and cost-effective solutions.DSG is a premier provider of information technology and business solutions to government agencies, system integrators and government contractors. Our project management experience and commitment to client relationships enable us to provide creative and cost-effective solutions.DSG provides a wide range of services to industries to help them leverage the strengths of Information Technology to optimize their business performance and produce value-driven results. Our services deliver a total solution package designed to meet our clients complete business and technology needs. DSG approaches every engagement with one objective in mind to help our clients win and grow. Specialties / DSG Core Competencies: * Healthcare Information Management * Healthcare Information Technology Discovery(HID) * Project/Program Managers * Change and Configuration Managers * Quality Assurance/Testers * Network Security * Database Developers and Administrators * Information Assurance * Web Development * Helpdesk