Information Security Analyst (JOURNEYMAN) - iQuasar
Alexandria, VA
About the Job
Responsibilities:
Information Security Analyst - Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. May ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure. May respond to computer security breaches and viruses.
JOURNEYMAN: Possesses and applies expertise on multiple complex work assignments. Assignments may be broad in nature, requiring originality and innovation in determining how to accomplish tasks. Operates with appreciable latitude in developing methodology and presenting solutions to problems. Contributes to deliverables and performance metrics where applicable
Job Description:
Certification Requirement, one or more of the following:
- Electronic Commerce Council Certified Ethical Hacker (ECC)
- GIAC Systems and Network Auditor (GSNA)
- ISC2 Certified Authorization Professional (CAP)
- ISC2 Certified Information System Security Professional (CISSP)
- ISACA Certified Information System Auditor (CISA)
Information Security Analyst - Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. May ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure. May respond to computer security breaches and viruses.
JOURNEYMAN: Possesses and applies expertise on multiple complex work assignments. Assignments may be broad in nature, requiring originality and innovation in determining how to accomplish tasks. Operates with appreciable latitude in developing methodology and presenting solutions to problems. Contributes to deliverables and performance metrics where applicable
Job Description:
- 4+ years of technical experience in cybersecurity
- 4+ years of experience with certification and accreditation (C&A) or A&A
- 4+ years of experience as a security control assessor or validator
- Experience with applying the NIST Cybersecurity Framework
- Experience with Federal Risk and Authorization Management Program (FedRAMP)
- Experience with NIST special publications (SPs) regarding the SA process, including SP 800-53, SP 800-137, SP 800-171, and SP 800-37
- Experience with developing and managing continuous monitoring and plans of action and milestones (POA&M)
- Experience with assessing systems and applications deployed in cloud environments following federal, healthcare industry, and broader cybersecurity community guidelines and best practices
- Supporting the implementation of comprehensive security controls consistent with risk
- Ability to work with collateral engineers, analysts and managers on related programs
- Ability to effectively manage multiple tasks simultaneously; coordinating and ensuring scheduled goals are met
- Able to communicate effectively through written and verbal means to co-workers and senior leadership
Certification Requirement, one or more of the following:
- Electronic Commerce Council Certified Ethical Hacker (ECC)
- GIAC Systems and Network Auditor (GSNA)
- ISC2 Certified Authorization Professional (CAP)
- ISC2 Certified Information System Security Professional (CISSP)
- ISACA Certified Information System Auditor (CISA)
Source : iQuasar