Information System Security Analyst, Senior in Denver, CO at Booz Allen Hamilton Inc.

Date Posted: 11/10/2018

Job Snapshot

Job Description

Job Number: R0018171

Information System Security Analyst, Senior

Key Role:

Serve as an information system security subject matter expert (SME). Assist a federal agency with fulfilling Information System Security Officer (ISSO) responsibilities in accordance with NIST SP 800-37. Ensure that the appropriate operational Cybersecurity posture is maintained for assigned IT systems. Develop, update, and maintain the System Security Plan (SSP), including contingency plans, incident response plans, Federal Information Processing Standard (FIPS) Information Types, Plan of Action and Milestones (POA&M), Privacy Impact Assessments (PIA), risk assessments, security impact analyses, and SSP implementation statements. Conduct Contingency Plan, Recovery Plan, and Incident Response tests for assigned IT systems and participate in Incident Response activities for assigned IT systems. Perform continuous monitoring of security controls to ensure that they continue to be implemented correctly, operating as intended and producing the preferred outcome with respect for meeting the Cybersecurity requirements for assigned IT systems. Assist federal staff with assessing new applications, identifying applicable NIST SP 800-37 RMF requirements, and advising system owners of the process.

Basic Qualifications:

-8 years of experience in information management with 5 years as an information system security officer with IT certifications or 6 years of experience in defining computer security requirements

-Experience with FISMA-related activities, including system security plans, contingency plans, incident response plans, configuration management plans, security control requirements and assessments, Plan of Action and Milestones (POA&M), and training requirements

-Experience in applying NIST SP 800-37 Risk Management principles, interpreting requirements, and developing implementation guidance

-Experience with performing information system continuous monitoring of security controls to ensure that they continue to be implemented correctly, operating as intended, and producing the preferred outcome with respect for meeting the security requirements

-Experience with federal privacy requirements, including Privacy Impact Assessments (PIA) and Personally Identifiable Information (PII)

-Ability to evaluate approved security product capabilities and develop solutions

-Ability to design, develop, and implement FISMA compliant solutions that meet current and future business requirements and enhance and optimize the existing security architecture

-BA or BS degree

Additional Qualifications

-Experience with working as an ISSO in an environment with multiple levels of systems

-IT Certifications, including CISSP, CISA, CISM, and GIAC preferred

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

CB15

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.