Information Security Analyst

Patuxent River, Maryland, United States

Full Time Mid-level / Intermediate Clearance required USD 115K - 145K

Sigma Defense

View company page

Sigma Defense Systems is a leading technology company serving the Department of Defense (DoD), providing tactical communications systems and services for digital modernization since 2006. Through our acquisitions of SOLUTE in January 2022 and Sub U Systems in May 2022, we have expanded our software and communications hardware solutions to better support JADC2, C5ISR, SATCOM, and DEVSECOPS for customers in the Army, Navy, Air Force, Marine Corps, and Space Force. Through a combination of hardware, software, and industry expertise, we provide a complete portfolio of solutions and services that accelerates information collection and sharing for faster decision making and better mission outcomes.

Why would you work for us? Quite simply, the work we do is meaningful and stimulating. We promote initiative and independent thought; we encourage direct client engagement to ensure we are delivering what the customer wants; and our engineers and scientists are working on cutting-edge projects that move the state-of-the-art closer to the people who need them. If you're looking for technical challenges and an opportunity to take a leadership role in an environment that encourages you to excel, then WE are your destination.

We are a company of innovative professionals thriving in a highly motivating work environment that fosters creativity and independent thinking. If you are a motivated individual with a desire to support our service men and women, now is a great time to join Sigma Defense!

To learn more about our company, find and follow us at Sigma Defense Systems LLC: Overview | LinkedIn.

We are seeking an Information Security Analyst to provide support to the US Navy in an aircraft system development laboratory setting. This Analyst will primarily work with the Integration Team to ensure system/software development activities meet all security requirements and user workflow optimization.

Requirements

  • Bachelor’s Degree; Master’s Degree in Computer Science/Cybersecurity/Information Management desired.
  • 7+ years’ experience as a cybersecurity professional working with products and tools related to network systems engineering, vulnerability assessments or information systems risk management. (DoD experience highly desired.)
  • Experienced in managing information systems under the DoD Risk Management Framework.
  • Experienced in applying cybersecurity industry standards and best practices to manage information systems. (NIST Special Publication 800 series, ISO/IEC 27000 family of standards.)
  • Experienced in the DoD vulnerability management process; and compliance standards such as DISA Security Technical Implementation Guides (STIG) and Security Requirements Guides (SRG), and Common Criteria/National Information Assurance Partnership (NIAP) Protection Profiles.
  • DoDM 8570 - IAM Level III. (CISSP or equivalent.)
  • Experienced in cybersecurity compliance assessment tools and security information and event management data platforms: Assured Compliance Assessment Solution (ACAS); Security Content Automation Protocol (SCAP) Compliance Checker (SCC); eMASS; STIG Viewer.
  • Experience performing as an ISSO and eMASS knowledge.
  • Experience with locating fixing and testing issues that result from Security Technical Implementation Guides.
  • Knowledge of the RMF process.
  • Must possess a minimum DoD Secret clearance.

Essential Job Responsibilities (not all-inclusive)

  • Perform all A&A Configuration Management-related tasks in a thorough, reliable and timely manner for all capabilities under their purview.
  • Monitor system compliance utilizing ACAS and other remote monitoring/auditing tools and report to the ISSM.
  • Oversee and assist ISSEs in vulnerability management activities.
  • Produce comprehensive and accurate quarterly release baselines for systems under their purview.
  • Support test and evaluation activities in accordance with USN processes.
  • Maintain site security SOPs up to date and perform site inspections and audits as part of Continuous Monitoring.
  • Maintain site and system artifacts, to include diagrams.


    Salary Range: $115,000 - $145,000 annually.

    Benefits

    • Dental and Vision Insurance
    • Medical Insurance to Include an HSA Plan and HRA Plan Which Features a $6,000 Health Reimbursement
    • Life and A&D coverage
    • Employee Assistance Program (EAP)
    • 401(k) Plan with Company Matching Contributions
    • 160 Hours of Paid Time Off (PTO) with Carry-Over up to 240 hours
    • 12 (Floating) Holidays
    • Educational Assistance
    • Highly Competitive Salary

    We are an equal opportunity employer. All applicants will be considered for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, marital status, veteran status or any other applicable legally protected status or characteristic.

    Tags: Audits Automation CISSP Clearance Compliance Computer Science DevSecOps DoD DoDD 8570 IAM Monitoring NIST Risk management SCAP Vulnerability management

    Perks/benefits: Career development Competitive pay Flex vacation Health care Insurance

    Regions: Asia/Pacific North America
    Country: United States
    Job stats:  6  0  0
    Category: Analyst Jobs
    • Share this job via
    • or

    More jobs like this

    Explore more InfoSec/Cybersecurity career opportunities

    Find open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Analysis, Cryptography, Digital Forensics and Cyber Security in general, filtered by job title or popular skill, toolset and products used.