Logo
Softworld, a Kelly Company

Information Assurance Security Analyst

Softworld, a Kelly Company, Pensacola, FL, United States

Information Assurance/Security Analyst Opportunity

6 month contract to hire

Onsite in Pensacola, FL

Job Description

Research and Technology Solutions is seeking an Information Assurance and Security Analyst with excellent collaboration skills to support our Unified Cyber Situational Awareness (UCSA) contract with the Defense Information Systems Agency (DISA) at our Pensacola, FL location. This position supports all activities relating to information assurance procedures and systems. Confers with and advises other section leaders regarding administrative policies, internal controls, and security procedures, resolving technical problems, priorities, and methods. Prepares activity and progress reports relating to the information systems audit function. This is an on-site, full-time position.

Duties and Responsibilities

  • Execute and maintain the UCSA Information Security Plan.
  • Categorize and assign security controls in Enterprise Mission Assurance Support Service (eMass).
  • Create and maintain the A&A package in eMass.
  • Coordinate inherited security controls within eMass.
  • Manage and update DoD Information Technology Portfolio Repository entries.
  • Handle Ports, Protocols, & Services Management.
  • Carry out processes required to achieve and maintain all Authority to Operate (ATO) & Interim Authority to Test (IATT) approvals.
  • Report on Federal Information Security Management Act (FISMA) compliance.
  • Oversee Security Technical Implementation Guide (STIG) / Information Assurance Vulnerability Alert (IAVA) compliance.
  • Manage Security Incident Response Cyber Security Service Provider (CSSP).
  • Conduct scanning and compliance activities with Assured Compliance Assessment Solution (ACAS).
  • Perform Continuous Monitoring and Risk Scoring / RMF compliance activities.
  • Support the creation and management of system profiles, plans, and scorecards within eMass, as well as the creation and management of all artifacts tied to security controls within eMass.

Requirements

  • Bachelor’s degree in a related field or equivalent relevant experience.
  • Active DoD 8570 IA baseline security certification for IAT Level II (e.g., Security+ CE, CISSP).
  • Experience with DoD RMF, DIACAP, or NIST Risk Management Framework (RMF).
  • Experience with information assurance, including accreditation, security testing, and implementation of security engineering practices in the Systems and Software Development Life Cycle (SDLC) process.
  • Must be able to work on-site.
  • Experience with HBSS.
  • Knowledge of technical DoD, IC, and national-level system security initiatives supporting LAN, WAN, Cross Domain Solutions (CDS), and Cloud technologies.
  • Knowledge in several areas, including business security practices and procedures, security tools, hardware/software security implementation, communication protocols, encryption techniques/tools, and lab infrastructure technology.
  • Knowledge of Computer Network Defense (CND) policies, procedures, and regulations.
  • Knowledge of boundary protection and enclaving.
  • Familiarity with security tools and systems such as ACAS, HBSS, Nessus, Splunk, etc.
  • Ability to support cybersecurity reviews, including generating security artifacts like security plans, POA&M, and security CONOPS.
  • Knowledge of ITIL processes is desired.

Experience

  • 3-5 years of Risk Management Framework (RMF) experience.
  • Previous role supporting RMF or FedRamp accreditation processes.
  • Experience as an Information System Security Officer (ISSO) or Manager (ISSM).

Clearance Requirements

  • Active Secret clearance with the ability to obtain a Top Secret clearance.
  • U.S. Citizenship is required.