Sr. Information Security Analyst - TISTA Science and Technology
Washington, DC
About the Job
Overview
TISTA Science and Technologyis seeking aSenior Information Security Analystto join our growing team. The ideal candidate will work collaboratively with a high-performing team of cybersecurity experts on a Federal project to support Assessment and Authorization, Audit, and Continuous Monitoring Support
TISTA associates enjoy above Industry Healthcare Benefits, Remote Working Options, Paid Time Off, Training/Certification opportunities, Healthcare Savings Account & Flexible Savings Account, Paid Life Insurance, Short-term & Long-term Disability, 401K Match, Tuition Reimbursement, Employee Assistance Program, Paid Holidays, Military Leave, and much more!
Stay Connected:
Follow us onLinkedInfor updates on this job and other exciting opportunities.
Responsibilities
+ Demonstrates proficiency developing, managing and executing Assessment & Authorization (A&A) and Authority to Operate (ATO) packages
+ Experience developing, managing and mitigating Plan of Action & Milestones (POA&M’s)
+ Experience with vulnerability management and have the ability to interpret network scans and provide recommendations for remediation
+ Experience in technical writing, specific to security-related documents, policies and procedures
+ Experience with developing and maintaining System Security Plans (SSP), Contingency Plans (CP), Configuration Management Plans (CMP), Business Impact Analysis (BIA) Experience with developing and maintaining Privacy related documentation including Privacy Threshold Analysis (PIA) and Privacy Impact Assessment (PIA)
+ Experience conducting research and providing review recommendations on software and technologies to address vulnerabilities
+ Demonstrate strong knowledge of migrating and securing IT systems in the cloud
+ Experience with High Value Assets (HVA) systems and their security controls
+ Experience with Privacy related policy and compliance
+ Experience with developing risk impact assessments and risk mitigation strategies
+ Possess experience conducting Contingency Plan testing
+ Strong project management skills and familiarity with standard project management methodologies such as Agile and Scrum
+ Comfortable leading meetings
+ Strong familiarity with NIST Special Publications and guidance, specifically 800-53 rev. 4/rev. 5 and the NIST Risk Management Framework
+ Strong problem solving and analysis skills, self-motivated, leader and able to work and communicate in a team environment
Qualifications
+ A minimum of 5-7 years of demonstrated experience in the Information Security (Cybersecurity or Information Assurance) field
+ Experience with leading and directing the work of others
+ Demonstrates proficiency with developing, maintaining and managing Authorizations and Assessments (A&A) and Authority to Operate (ATO) packages
+ Knowledge of standard concepts, practices, and procedures within program management
+ Strong background in vulnerability management
+ Demonstrates proficiency in IT systems cloud migrations and securing systems in the cloud
+ Experience with developing and managing Plans of Action & Milestones (POA&M’s)
+ A holistic understanding and knowledge of the Risk Management Framework (RMF) as defined by National Institute of Technology (NIST) Special Publication (SP) 800-53 (current revision), Recommended Security Controls for Federal Information Systems and NIST SP 800-53A Revision 4, Guide for Assessing the Security Controls in Federal Information Systems.
+ Strong problem-solving and analysis skills, self-motivated, and able to work and communicate in a team environment.
+ Excellent documentation skills – redacted samples may be requested.
+ Excellent oral and written communication skills.
Preferred Professional Certifications:
+ Certified Information Systems Security Professional (CISSP)
+ Certified Information Security Auditor (CISA)
+ Certified Information Security Manager (CISM)
+ CompTIA Security
+ Education:
+ Bachelor’s degree or higher in computer science, Information Technology, Information Security, or similar fields.
+ Recommended certifications:
+ Security+ Or Certified Authorization Professional (CAP)
+ Cloud Certification (Azure, AWS, CCSP, Cloud+, etc.)
+ Desired Certifications:
+ Certified Information Systems Security Professional (CISSP);
+ Project Management Professional (PMP)
Clearance:
+ The ability to pass a Tier 2/Modest Background Investigation
Location:
+ Prefer someone in MD, DC or VA Area
Pay Range:
+ The pay for this position ranges from $88,730 to $101,500
+ The actual salary offer will carefully consider a wide range of factors, including your skills, qualifications, experience, and location
+ Also, certain positions are eligible for additional forms of compensation, such as bonuses
+ TISTA associates are eligible to participate in our comprehensive benefits plan! More information can be found here:https://tistatech.com/working-at-tista/
TISTA Science and Technology Corporation,a CMMI Maturity Level 3 company, focuses on delivering information technology and professional services to Federal and State agencies. TISTA is recognized in 2019 by Inc. 5000 as one of the fastest-growing private companies in the US. TISTA is also a recipient of 2019 Top Veteran-Owned Companies by the Washington Business Journal. TISTA also received a 2018 Moxie Award in the GovCon category.
Here at TISTA Science and Technology, we value Veterans and encourage all to apply!
#thinktista #tistacares #tistavaluesvets
Employment Transparency:
TISTA is an Equal Opportunity/Affirmative Action Employer and embraces diversity in our employee population. It is the policy of TISTA to provide equal opportunity to all qualified applicants and employees without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, or genetic information. TISTA will refrain from discharging, or otherwise discriminating against, employees or applicants who inquire about, discuss, or disclose their compensation or the compensation of other employees or applicants.
The EEO is the Law poster is available here, and the poster supplement is availablehere. (https://www.eeoc.gov/employers/upload/poster_screen_reader_optimized.pdf)
The Pay Transparency Policy is availablehere. (https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf)
Tista is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation due to a disability for any part of the employment process, please send an e-mail torecruiting@tistatech.comor call (301) 968-3420 and let us know the nature of your request and your contact information.
TISTA is a federal contractor and is subject to the federal contractor COVID requirements under the new FAR/DFARS clauses and must comply with the incorporated Guidance.
If the candidate is hired to perform work on or in connection with one of TISTA’s federal contracts, TISTA is contractually obligated to ask the candidate to verify and show proof of vaccination status and the candidate will be required to comply with mask and social distancing requirements imposed by the FAR/DFARS as well as any additional requirements imposed by TISTA’s customers for any required onsite work.
Job ID2024-5458
Job LocationsUS-DC
Source : TISTA Science and Technology