Digital Information Assurance Analyst, Mid

Key Role:

Identify your stakeholders’ business and system requirements and translate and decompose those needs into actionable software requirements, test criteria, and scenarios. Evaluate and support the documentation, validation, assessment, and accreditation processes necessary to ensure that IT systems meet the organization’s information assurance (IA) and security requirements. Consider organizations' preferred state and risk thresholds to analyze actual state information to assess compliance and assist with evaluating computer applications, software, or specialized utility programs to determine if software assurance best practices are followed. Participate in the maintenance compliance of custom-built software against stated security policies using code-scanning approaches and with the client in the strategic design process to translate security and business requirements into technical designs. Assist with designing, developing, or recommending integrated security system solutions to ensure proprietary and confidential data and systems are protected. Provide technical engineering services to support integrated security systems and solutions. Assist with configuring and validating secure systems and testing security products and systems to detect security weaknesses.

Basic Qualifications:

-Experience with information assurance, including providing support for system accreditation activities through all 6 steps of the Risk Management Framework (RMF) life cycle

-Experience with creating and updating the artifacts necessary for ICD 503 system accreditation

-Top Secret clearance

-BA or BS degree
-Security+ CE, SSCP, CCNA-Security, or GSEC Certification or ability to obtain within 6 months of hire

Additional Qualifications:

-Experience with providing code security assessments for developed software
-Experience with vulnerability scan applications and operating systems and remediating system vulnerabilities
-Experience with providing recommendations and processes for automated test report summaries and feedback
-Experience in working with architecture and development teams on security implementation approaches, best practices, process development, and testing procedures
-Experience with providing the secure implementation of chosen frameworks and technologies

-Experience with providing audit reports generation techniques and tools for configuration management and audits or maintenance for system scans

-Possession of excellent team leadership, development, and client relationship skills

-Possession of excellent interpersonal skills to successfully interact with clients, engineers, and managers

-TS/SCI clearance preferred

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Top Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Not ready to apply? Join our talent community and sign up for job alerts.