Information Security Analyst at Chenega Corporation
UNAVAILABLE, DC
About the Job
Overview
Come join a company that strives for Extraordinary People and Exceptional Performance! Eagle One Solutions, Inc., a Chenega Professional Services’ company, is looking for a Information Security Analyst to support a large federal IT organization. The ISA will provide information security expertise in support of the Information System Owner (ISO), including planning and execution of security processes within the Systems Engineering Life Cycle (SELC), preparing SELC security documents, ensuring appropriate security controls are applied, providing continuous monitoring during operations, and reviewing and providing recommendations for security policy. This is a highly visible position and will require a self-motivated, well-versed, and knowledgeable candidate to support the organization.
Our company offers employees the opportunity to join a team where there is a robust employee benefits program, management engagement, quality leadership, an atmosphere of teamwork, recognition for performance, and promotion opportunities. We actively strive to channel our highly engaged employee’s knowledge, critical thinking, innovative solutions for our clients.
Responsibilities
- Lead efforts to research and analyze emerging information security vulnerabilities and threats. Collaborate with external organizations within the intelligence community and share findings with the enterprise.
- Assist the ISO in monitoring the security posture and vulnerability landscape of multiple systems. Report findings to the Information System Security Officer (ISSO) for necessary remediation.
- Serve as a domain expert and improve vulnerability management, security configuration assessment, and penetration testing programs.
- Support the ISO in planning and executing SELC processes, ensuring that appropriate security controls are applied, and perform continuous monitoring.
- Ensure the procedures are followed to safeguard computer files against unauthorized modifications, destruction, or disclosure, and to meet emergency data processing needs.
- Assist with the preparation and renewal of Authorization to Operate (ATO) packages and monitor, track, and control Plan of Action and Milestones (POAMs).
- Review violations of IT security procedures, providing recommendations for corrective actions.
- Assist in drafting computer security policies, procedures, and emergency measures, ensuring they are current and effective.
- Monitor the use of data files and report findings to the ISO and ISSO to safeguard information integrity.
- Coordinate the implementation of computer system plans with internal personnel and external vendors.
Qualifications
- 5 years of relevant federal work experience.
- Bachelor’s degree in information technology or related field.
- Possess valid and current IAM III certification; ISACA Certified Information Security Manager (CISM) preferred.
- Experience in Federal Risk Management Framework (RMF), FISMA, NIST, and Zero Trust Architecture (ZTA).
- Participated in a DoD, Command Cyber Readiness Inspection (CCRI).
- Experience in DISA Security Technical Implementation Guidance (STIG) implementation.
- Experience in DISA ACAS scanning.
- Experience in remediation of DISA cybersecurity findings.
- Excellent written and verbal communication with a commitment to high-quality output.
- Ability to obtain a Public Trust clearance and higher-level clearance as required.
Knowledge, Skills and Abilities:
- Detail-oriented, highly organized, and the ability to work efficiently and effectively with others.
- Self-motivated and proactive, both with respect to managing workload and own professional development.
- People oriented, with the ability to remain objective and communicate well with a range of personalities and audiences.
- Strong written and verbal communication skills.
- Effective communicator in a wide range of audiences and personality types.
- Strategic-oriented, always looking for opportunities for the customer to streamline, gain efficiencies.
- Understanding of Agile/SAFe methodologies, Software Development Life Cycle (SDLC) or (SELC) processes, and security vulnerability remediation process.
- Computer skills to include but not limited to, skills in operating Microsoft Office software, with emphasis on Word, OneDrive, SharePoint, Excel, Power Point, and Visio; network monitoring, network security, and transaction security.
Final salary determination based on skill-set, qualifications, and approved funding.
Many of our jobs come with great benefits – Some offerings are dependent upon the role, work schedule, or location, and may include the following:
Paid Time Off
PTO / Vacation – 5.67 hours accrued per pay period / 136 hours accrued annually
Paid Holidays - 11
California residents receive an additional 24 hours of sick leave a year
Health & Wellness
Medical
Dental
Vision
Prescription
Employee Assistance Program
Short- & Long-Term Disability
Life and AD&D Insurance
Spending Account
Flexible Spending Account
Health Savings Account
Health Reimbursement Account
Dependent Care Spending Account
Commuter Benefits
Retirement
401k / 401a
Voluntary Benefits
Hospital Indemnity
Critical Illness
Accident Insurance
Pet Insurance
Legal Insurance
ID Theft Protection