Information Security Analyst - Chenega Corporation

Overview

Come join a company that strives for Extraordinary People and Exceptional Performance! Eagle One Solutions, Inc., a Chenega Professional Services’ company, is looking for a Information Security Analyst to support a large federal IT organization.  The ISA will provide information security expertise in support of the Information System Owner (ISO), including planning and execution of security processes within the Systems Engineering Life Cycle (SELC), preparing SELC security documents, ensuring appropriate security controls are applied, providing continuous monitoring during operations, and reviewing and providing recommendations for security policy. This is a highly visible position and will require a self-motivated, well-versed, and knowledgeable candidate to support the organization.

Our company offers employees the opportunity to join a team where there is a robust employee benefits program, management engagement, quality leadership, an atmosphere of teamwork, recognition for performance, and promotion opportunities. We actively strive to channel our highly engaged employee’s knowledge, critical thinking, innovative solutions for our clients.

Responsibilities

• Lead efforts to research and analyze emerging information security vulnerabilities and threats. Collaborate with external organizations within the intelligence community and share findings with the enterprise.
• Assist the ISO in monitoring the security posture and vulnerability landscape of multiple systems. Report findings to the Information System Security Officer (ISSO) for necessary remediation.
• Serve as a domain expert and improve vulnerability management, security configuration assessment, and penetration testing programs.
• Support the ISO in planning and executing SELC processes, ensuring that appropriate security controls are applied, and perform continuous monitoring.
• Ensure the procedures are followed to safeguard computer files against unauthorized modifications, destruction, or disclosure, and to meet emergency data processing needs.
• Assist with the preparation and renewal of Authorization to Operate (ATO) packages and monitor, track, and control Plan of Action and Milestones (POAMs).
• Review violations of IT security procedures, providing recommendations for corrective actions.
• Assist in drafting computer security policies, procedures, and emergency measures, ensuring they are current and effective.
• Monitor the use of data files and report findings to the ISO and ISSO to safeguard information integrity.
• Coordinate the implementation of computer system plans with internal personnel and external vendors.

Qualifications

• 5 years of relevant federal work experience.
• Bachelor’s degree in information technology or related field.
• Possess valid and current IAM III certification; ISACA Certified Information Security Manager (CISM) preferred.
• Experience in Federal Risk Management Framework (RMF), FISMA, NIST, and Zero Trust Architecture (ZTA).
• Participated in a DoD, Command Cyber Readiness Inspection (CCRI).
• Experience in DISA Security Technical Implementation Guidance (STIG) implementation.
• Experience in DISA ACAS scanning.
• Experience in remediation of DISA cybersecurity findings.
• Excellent written and verbal communication with a commitment to high-quality output.
• Ability to obtain a Public Trust clearance and higher-level clearance as required.

Knowledge, Skills and Abilities:

• Detail-oriented, highly organized, and the ability to work efficiently and effectively with others.
• Self-motivated and proactive, both with respect to managing workload and own professional development.
• People oriented, with the ability to remain objective and communicate well with a range of personalities and audiences.
• Strong written and verbal communication skills.
• Effective communicator in a wide range of audiences and personality types.
• Strategic-oriented, always looking for opportunities for the customer to streamline, gain efficiencies.
• Understanding of Agile/SAFe methodologies, Software Development Life Cycle (SDLC) or (SELC) processes, and security vulnerability remediation process.
• Computer skills to include but not limited to, skills in operating Microsoft Office software, with emphasis on Word, OneDrive, SharePoint, Excel, Power Point, and Visio; network monitoring, network security, and transaction security.

Final salary determination based on skill-set, qualifications, and approved funding.

Many of our jobs come with great benefits – Some offerings are dependent upon the role, work schedule, or location, and may include the following:

Paid Time Off

            PTO / Vacation – 5.67 hours accrued per pay period / 136 hours accrued annually 

            Paid Holidays - 11

            California residents receive an additional 24 hours of sick leave a year

Health & Wellness

            Medical

            Dental

            Vision

            Prescription

            Employee Assistance Program

            Short- & Long-Term Disability

            Life and AD&D Insurance

Spending Account

            Flexible Spending Account

            Health Savings Account

            Health Reimbursement Account

            Dependent Care Spending Account

            Commuter Benefits

Retirement

401k / 401a

Voluntary Benefits

            Hospital Indemnity

            Critical Illness

            Accident Insurance

            Pet Insurance

            Legal Insurance

            ID Theft Protection

Teleworking Details

Estimated Salary/Wage