SME - Information Security Analyst - iQuasar
Alexandria, VA
About the Job
Responsibilities:
Information Security Analyst - Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. May ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure. May respond to computer security breaches and viruses.
SUBJECT MATTER EXPERT (SME): Provides technical/management leadership on major tasks or technology assignments. Establishes goals and plans that meet project objectives. Has domain and expert technical knowledge. Directs and controls activities for a client, having overall responsibility for financial management, methods, and staffing to ensure that technical requirements are met. Interactions involve client negotiations and interfacing with senior management. Decision-making and domain knowledge may have a critical impact on overall project implementation. May supervise others.
Job Description:
Information Security Analyst - Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. May ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure. May respond to computer security breaches and viruses.
SUBJECT MATTER EXPERT (SME): Provides technical/management leadership on major tasks or technology assignments. Establishes goals and plans that meet project objectives. Has domain and expert technical knowledge. Directs and controls activities for a client, having overall responsibility for financial management, methods, and staffing to ensure that technical requirements are met. Interactions involve client negotiations and interfacing with senior management. Decision-making and domain knowledge may have a critical impact on overall project implementation. May supervise others.
Job Description:
| - 7+ years of technical experience in cybersecurity - 7+ years of experience with certification and accreditation (C&A) or A&A - 7+ years of experience as a security control assessor or validator - Experience with applying the NIST Cybersecurity Framework - Experience with Federal Risk and Authorization Management Program (FedRAMP) - Experience with NIST special publications (SPs) regarding the SA process, including SP 800-53, SP 800-137, SP 800-171, and SP 800-37 - Experience with developing and managing continuous monitoring and plans of action and milestones (POA&M) - Experience with assessing systems and applications deployed in cloud environments following federal, healthcare industry, and broader cybersecurity community guidelines and best practices - Supporting the implementation of comprehensive security controls consistent with risk - Ability to work with collateral engineers, analysts and managers on related programs - Ability to effectively manage multiple tasks simultaneously; coordinating and ensuring scheduled goals are met - Able to communicate effectively through written and verbal means to co-workers and senior leadership Certification Requirement, one or more of the following: - Electronic Commerce Council Certified Ethical Hacker (ECC) - GIAC Systems and Network Auditor (GSNA) - ISC2 Certified Authorization Professional (CAP) - ISC2 Certified Information System Security Professional (CISSP) - ISACA Certified Information System Auditor (CISA) |
Source : iQuasar