GDIT

  • Info. Security Analyst Advisor

    Job Location USA-FL-Hurlburt Field
    Requisition ID
    2019-60349
    # of Openings
    1
    Job Function
    Information Technology
    Security Clearance Level
    Secret
    Full/Part Time
    Full Time
  • Job Description

    The Information Security Analyst – Information System Security Manager (ISSM) will lead a team of ISSMs working closely with other Cyber Security personnel on other teams – to support multiple programs and Air Force and USSOCOM connected systems through the Risk Management Framework (RMF) process. They will ensure all related information assurance (IA) and Authorization & Accreditation (A&A) activities for all AFSOF C2MS occur in accordance with DoD 8500 series publications, National Institute of Standards and Technology (NIST), CJCSI 6510.01, Security Technical Implementation Guides (STIGs), and other applicable governing publications. The ISSM shall work as a member of a team to evaluate C2MS configurations, create System Security Plans, Disaster Recovery Plan, Incident Response Plans and other artifacts as required to facilitate the A&A of AFSOF systems.  The ISSM shall work with system engineers, system administrators and other security teams to help ensure compliance with the vulnerability management program and secure systems, networks and applications.  The ISSM as the lead will prepare, submit, and coordinate DoD Risk Management Framework (RMF) packages for all AFSOF C2MS systems while coaching and leading other ISSMs on the team to do the same.  The ISSM shall be able to evaluate new and existing system designs and recommend technical changes to improve security. The ideal candidate is a leader of people with a background in Systems Administration or Systems Engineering, has a strong systems security mindset, and is very detailed oriented with strong written and oral communication skills.

    Education

    • Bachelor's Degree in Computer Science, Computer Engineering, Math, or an equivalent combination of education and experience

    Qualifications

    Knowledge, Skills and Abilities

    Required:

    • 8+ Years of Information Security experience developing accreditation packages
    • High-level familiarity with RMF processes and procedures
    • High-level familiarity with DoD, USAF, USSOCOM, and other Cyber Security Regulatory Compliance bodies
    • High-level familiarity with RMF input and validation tools such as eMass and XACTA.
    • Demonstrated knowledge of Systems Administration/Engineering with proficiency in analyzing systems designs with a systems security mindset
    • Ability to oversee and/or perform the development, maintenance, and continuous monitoring of RMF accredited systems
    • Strong knowledge of threats and vulnerabilities associated with cloud and on-premise network security
    • Demonstrated ability to work effectively in an ambiguous environment
    • Strong oral and written communications skills
    • Strong analytical and problem-solving skills and proactive thinking skills
    • Familiarity with Vulnerability Management tools such as ACAS, SCAP, and SCCM.
    • Understanding of how to classify and prioritize the risk of new vulnerabilities based on the operating environment
    • Ability to develop and maintain metrics and reports on vulnerability findings and remediation compliance
    • Provide support to system and technology owners to propose mitigation and remediation solutions
    • Assist with routine compliance and audit functions to ensure regulatory scanning requirements are satisfied
    • Document and report on processes and procedures
    • Provide input to leadership for enhancing the vulnerability management strategy
    • Stay current on security industry trends, attack techniques, mitigation techniques, security technologies and new and evolving threats to the organization by attending conferences, networking with peers and other education opportunities
    • Sense of urgency to address new technologies being deployed: Continuous development of infrastructure and cloud vulnerability expertise to function as subject matter expert in multiple technical or business disciplines;
    • A team-player contributing to policy development, RMF package accreditations, and Tempest requirements
    • Must have a Secret Clearance to begin work and the ability to obtain a Top Secret-SCI clearance
    • The work is performed in an office and lab environment
    • Must be able to obtain a passport for OCONUS travel, if required
    • Lift over 35 LBS

    Certification Requirements

    • DoD 8570 IAM II Level Certification Required (CISSP, CISM, GSLC)
    • Sec+ CE, SSCP, GIAC Security Essentials, and other security related certifications a plus
     
     

    For more than 50 years, General Dynamics Information Technology has served as a trusted provider of information technology, systems engineering, training and professional services to customers across federal, state, and local governments, and in the commercial sector. Over 40,000 GDIT professionals deliver enterprise solutions, manage mission-critical IT programs and provide mission support services worldwide. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed!

    Need help finding the right job?

    We can recommend jobs specifically for you! Click here to get started.