Information Security Analyst

$115,000 - $140,000/Yr

Chenega Corporation - Washington, DC

posted 12 days ago

Full-time - Mid Level
Washington, DC
Administrative and Support Services

About the position

The Information Security Analyst at Chenega Corporation will provide critical information security expertise to support a large federal IT organization. This role involves planning and executing security processes within the Systems Engineering Life Cycle (SELC), preparing necessary security documentation, ensuring the application of appropriate security controls, and conducting continuous monitoring during operations. The analyst will also review and recommend security policies, making this a highly visible and impactful position within the organization.

Responsibilities

  • Lead efforts to research and analyze emerging information security vulnerabilities and threats.
  • Collaborate with external organizations within the intelligence community and share findings with the enterprise.
  • Assist the Information System Owner (ISO) in monitoring the security posture and vulnerability landscape of multiple systems.
  • Report findings to the Information System Security Officer (ISSO) for necessary remediation.
  • Serve as a domain expert and improve vulnerability management, security configuration assessment, and penetration testing programs.
  • Support the ISO in planning and executing SELC processes, ensuring that appropriate security controls are applied, and perform continuous monitoring.
  • Ensure procedures are followed to safeguard computer files against unauthorized modifications, destruction, or disclosure, and to meet emergency data processing needs.
  • Assist with the preparation and renewal of Authorization to Operate (ATO) packages and monitor, track, and control Plan of Action and Milestones (POAMs).
  • Review violations of IT security procedures, providing recommendations for corrective actions.
  • Assist in drafting computer security policies, procedures, and emergency measures, ensuring they are current and effective.
  • Monitor the use of data files and report findings to the ISO and ISSO to safeguard information integrity.
  • Coordinate the implementation of computer system plans with internal personnel and external vendors.

Requirements

  • 5 years of relevant federal work experience.
  • Bachelor's degree in information technology or related field.
  • Possess valid and current IAM III certification; ISACA Certified Information Security Manager (CISM) preferred.
  • Experience in Federal Risk Management Framework (RMF), FISMA, NIST, and Zero Trust Architecture (ZTA).
  • Participated in a DoD, Command Cyber Readiness Inspection (CCRI).
  • Experience in DISA Security Technical Implementation Guidance (STIG) implementation.
  • Experience in DISA ACAS scanning.
  • Experience in remediation of DISA cybersecurity findings.
  • Excellent written and verbal communication with a commitment to high-quality output.
  • Ability to obtain a Public Trust clearance and higher-level clearance as required.

Nice-to-haves

  • Detail-oriented and highly organized.
  • Self-motivated and proactive in managing workload and professional development.
  • People-oriented with the ability to communicate well with a range of personalities and audiences.
  • Strong written and verbal communication skills.
  • Understanding of Agile/SAFe methodologies, Software Development Life Cycle (SDLC) or (SELC) processes, and security vulnerability remediation process.

Benefits

  • 401(a)
  • Commuter assistance
  • Health savings account
  • AD&D insurance
  • Paid holidays
  • Disability insurance
  • Health insurance
  • Dental insurance
  • Flexible spending account
  • Paid time off
  • Employee assistance program
  • Vision insurance
  • Pet insurance

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service