Systems Security Analyst (31-21423)
Herndon, Virginia
Applications have closed
Freedom Consulting Group
Key Responsibilities
- Design and implement safety measures and controls. Monitor network activity to identify vulnerable points. Address privacy breaches and malware threats.
- Support the Assessment and Authorization (A&A) processes and Information Assurance documentation for multiple analytic and mission systems across all CLINs
- Generate and maintain the complete security Body of Evidence (BoE) while leading the A&A activities according to the Risk Management Framework (RMF) processes (ICD 503, CNSSI-1253, NIST 800-37, NIST 800-53, etc.) for all multiple information systems
- Author, complete and maintain the System Security Plan (SSP) within XACTA
- Develop the Security Controls Traceability Matrices (SCTM), and the Security Test Plan (STP) procedures within Xacta.
- Analyze existing security systems and make recommendations for changes or improvements
- Prepare reports and action plans in the event that a security breach does occur
- Monitor the network and provide early warning of abnormalities or problems
- Communicate the system status and keep users informed of downtime or changes to the system
- Experience working with software developers and architects to understand security requirements
- Experience guiding the application developers on security policy, identifying security requirements, providing technical guidance for the satisfaction of requirements
- Experience creating and managing the plan of action and milestones (POA&Ms), and working with project managers and engineers to develop schedules and engineering actions that mitigate open findings
- Experience supporting the Continuous Monitoring of operational systems; experience monitoring and auditing operational systems for proper use
- Log Review/Analysis using SIEM tools (Splunk, etc.)
- Vulnerability Analysis and Review (ACAS, TwistLock, SonarQube)
- DISA STIGs and STIG Viewer experience
Required Qualifications
- 5+ years supporting Assessment and Authorization (A&A) and information assurance processes and documentation using RMF, BS degree; 3 years of experience with a masters; an additional 4 years of experience required in lieu of a degree (will consider at higher or lower level with the appropriate years of experience)
- Hands-on experience to validate control implementations and test procedures
- Knowledge of current security risks and protocols
- Willingness to work outside of standard hours if circumstances require
- Good analytic and problem solving skills
- DoD Approved 8570 Baseline Certifications (eg, Security+) certifications
- RMF, Xacta experience
Desired Qualifications
- Experience working with AWS/Google cloud-hosted information systems or applications
- Experience working with Redhat or CentOS Linux operating systems
- Experience working in a DevSecOps environment and tool chain
What’s in It for You?Flexible work environmentA team mentality – work with friendly, like-minded professionalsWork with innovative, cutting edge technologiesEnjoy extremely competitive compensation and benefitsA work-life balance you can count onOpportunities to grow and advance your career on our dime
The Benefits You Get with FreedomAmazing benefits including matching 401k, profit sharing, fully paid medical, and moreGenerous paid time off – including paid site closure daysCompetitive salary offeringsPaid training and tuition reimbursementReferral bonusesFully paid life and disabilityAnnual logo wear allowanceCompany sponsored events (game nights, holiday party, summer party, happy hours)Interested in learning more about Freedom and our culture? Contact us today! We’re constantly hosting hiring events in our office and elsewhere, to help you get a sense of what life is like at Freedom before joining the team.
As an Equal Opportunity Employer, we do not discriminate on the basis of race, color, religion, sex, age, marital status, disability or veteran statusApplicant Federal & E-Verify PostingsVEVRAA Federal Contractor
Per Executive Order, all employees working on or in connection with any federal contracts, including employees working remotely or in the corporate office, are required to be fully vaccinated against COVID-19 or have an approved exemption. Official documentation must be provided to the human resources department.
Accessibility: If you need an accommodation as part of the employment process please contact Human Resources atPhone: 410-290-9035 Email: recruiting@choosefreedomit.com
Equal Opportunity Employer, including disabled and veterans.
If you want to view the EEO Law poster, please choose your language: English - Spanish - Arabic - Chinese
If you want to view the EEO Law Supplement poster, please choose your language: English - Spanish - Chinese
If you want to view the Pay Transparency Policy Statement, please click the link: English
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: ACAS Audits AWS Clearance Cloud DevSecOps DISA DoD DoDD 8570 GCP ICD 503 Linux Malware Monitoring NIST NIST 800-53 POA&M Polygraph Privacy Risk management RMF SCTM Security analysis Security Clearance SIEM SonarQube Splunk STIGs System Security Plan TS/SCI Twistlock
Perks/benefits: 401(k) matching Career development Competitive pay Flex hours Flex vacation Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs