Information Systems Security Analyst Engineer

Employer
Pacific Architects and Engineers, Inc
Location
Falls Church, VA
Posted
Jan 20, 2022
Closes
Jan 22, 2022
Ref
323470577
Hours
Full Time
Supporting the Most Exciting and Meaningful Missions in the World Information Systems Security Analyst EngineerThe Senior Information Systems Security Analyst is a "hands-on" position responsible for conducting structured security certification and accreditation activities utilizing the Risk Management Framework and in compliance with the Federal Information Security Management Act (FISMA) requirements. As a member of the PAE Corporate Cybersecurity Team, the candidate will lead the review of technical, management and operational Security Controls in accordance with the National Institute of Standards and Technology (NIST) to ensure the completeness and effectiveness of the IT system's information technology and security solutions.The Senior Information Systems Security Analyst's responsibilities include:Assignment as Information System Security Officer (ISSO) for corporate shared services information systemsEnsuring all Information Systems (IS)s are operated, maintained, and disposed of in accordance with security policies, best practices and NIST publication series NIST 800-53Execute vulnerability management services and ensure system patching stays within approved policy parameters.Support incident response actions and execute protective and corrective measures when a security incident is discovered.Ensure Configuration Management (CM) for security relevant IS software, hardware, and firmware is documented and maintainedPerform the implementation of Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance Checker (SCC).Manages ATO artifacts, documentation and provides updates within approved GRC platforms.Ensure system changes adhere to change management protocols.Administrate endpoint protection services.Ensure general users and privileged users are trained-in the specific knowledge needed for them to safely operate and maintain the ISs to which they have access.Ability to represent the organization as a knowledgeable resource on external projects while demonstrating a strong analytical, verbal and written communication skill set to accurately document, report, and present findings.Develop, implement, and enforce information systems security policies and procedures.Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, A packages, and Security Controls Traceability Matrix (SCTM)Supports security authorization activities in compliance with Risk Management Framework (RMF)Advises the CISO on risk elements and mitigation strategies for risks that exceed tolerable risk thresholds.Assist in the evaluation of security solutions to ensure they meet cybersecurity requirements for PAE's diverse customer base.On occasion, work extended hours (other than normal business hours) to support contractual requirements to meet customer needs.Must be able to work unscheduled hours to support organizational IA/Cyber requirementsThe successful Senior Information Systems Security Analyst must have:Must have and be able to maintain a US Government issued Top Secret security clearance and be SCI eligible.Bachelor's in Computer Science, Information Systems or related field and 6-8 years of demonstrated results.Security + certificationExperience with the NIST policies and frameworks.Must be customer focused and possess the ability to identify issues, analyze, and interpret data and develop solutions to a variety of moderately complex technical problems.Experience using vulnerability assessment tools/platforms such as Acunetix, Nessus, ACAS, Qualys, Nexpose, along with centralized logging and penetration testing.Strong experience with documenting test. environments,requirements, results and POAM resolution.Candidates must be able to travel 10% of the time.Bonus points if the candidate also has:Prior ISSO or ISSM experienceCISSP certificationPrior incident response experienceCloud management and cybersecurity #LI-corporatejobs #APP21 PAE is proud to be an Equal Opportunity Employer. Our hiring practices provide equal opportunity for employment without regard to race, religion, color, sex, gender, national origin, age, United States military veteran's status, ancestry, sexual orientation, marital status, family structure, medical condition including genetic characteristics or information, veteran status, or mental or physical disability so long as the essential functions of the job can be performed with or without reasonable accommodation, or any other protected category under federal, state, or local law.EEO is the Law Poster EEO is the Law Poster Supplement

Similar jobs