SME Information Security Analyst

Need Top secret clearance 10 years of proven experience performing security controls. The SME Information Security Analyst is responsible for leading the RMF assessment, authorization, and monitoring steps for systems following NIST and ICD 503 standards and best practices. The SME Information Security Analyst must maintain ongoing knowledge of Federal policies and practices related to cyber security; possess excellent verbal and written communication skills; have knowledge, skills, abilities, and experience with common assessment & authorization (A&A) application platforms (e.g. eMASS, CSAM, Xacta is preferred) for performing tasks in Section 6.3. and strong architecture, network and infrastructure security, or next gen security expertise (agile/hybrid agile, cloud). The SME Information Security Analyst must have extensive experience working with various security methodologies and processes, compliance controls related to cloud security, performing assessments in cloud computing environment, extensive experience providing analysis and trending of vulnerability data form a large number of heterogeneous devices, and must possess expert knowledge in risk and vulnerability management. The SME Information Security Analyst requires an active clearance up to TS/SCI security clearance. Responsibilities: Risk Management Assessment: This involves evaluating systems to identify potential security risks and vulnerabilities. Authorization: This involves approving systems for use based on the assessment results and ensuring they meet security standards. Monitoring: This involves continuously monitoring systems for security threats and taking appropriate action. Compliance: Ensuring that the systems comply with federal policies and practices related to cybersecurity. Knowledge Management: Staying up-to-date on the latest cybersecurity trends and best practices. Communication: Effectively communicating security information to both technical and non-technical audiences. Assessment Tool Expertise: Familiarity with common assessment and authorization tools like eMASS, CSAM, and Xacta. Technical Expertise: Strong understanding of network, infrastructure, and cloud security. Vulnerability Analysis: Analyzing vulnerability data from a large number of devices. Risk and Vulnerability Management: Identifying and managing risks and vulnerabilities. Qualifications: Experience: 10 years of experience in performing security controls. Security Clearance: Active TS/SCI security clearance. Technical Skills: Knowledge of security methodologies, compliance controls, cloud security, and assessment tools. Communication Skills: Excellent verbal and written communication skills.