1872 Consulting
GRC Analyst
1872 Consulting, Santa Monica, California, United States, 90403
GRC AnalystDoD / DIA / Government Focus -
Top Secret Clearance is RequiredSanta Monica, CA - Hybrid onsite 2-3 days per week
Summary:The GRC Analyst is responsible for helping to provide compliance and oversight of all our Corporation's Authorization and Accreditation (A&A) requirements as it relates to our government business including but not limited to DIA, DoD, DCSA, etc.
Additionally, the position manages the Sensitive Compartmentalized Information (SCI) and Special Access Program (SAP) Information Systems (IS) to ensure that all classified IS remain accredited by partnering with Security, IT and other teams.
Responsibilities:
Implements, monitors, and maintains the ICDs, our Security Manual and procedures, DoD and other applicable government sponsor regulations for SCI/SAP and collateral systemsEnforces corporate policies to support ICD, and other CI standardsEnforces compliance with current Security Technical Implementation Guides (STIGs) for all applicable systemsInterfaces with and supports clients in the operation and security of the classified systemsAssist the ISSM in establishing, communicating, and improving the collateral and SCI/SAP Information Systems (IS) Security ProgramResponsible for the preparation and sustainment for internal self-inspections, DIA and other government inspectionsAssesses changes by performing periodic self-inspections, tests and reviews of the classified IS program to ensure that systems are operating as authorized/accredited and that conditions have not changedParticipates in the planning, installation, implementation, upgrade, problem determination and resolution involving software programs, operating systems, computers, printers, scanners, etc. for collateral and SCI/SAP systems. Provides budget requirements to the ISSM for the sustainment of the collateral SCI/SAP systems.Ensures protocols are followed for the investigation(s) and resolution of security incidentsPerforms weekly audits and ensures administrative inquiries/investigations into anomalies found during audit trail analysis are reported to the ISSM for follow on actionsCollaborates with the system and network administrators to ensure audit features are configured and enabled correctlyDevelops and implements the System Security Plans (SSP) and addendums for the facilityPerforms other duties as assigned
Requirements:
Must hold and maintain a Top-Secret security clearance and SCI/program eligibility4+ years' experience in Information Technology, preferably in a classified environmentMust have and maintain a DoD 8570.01-M - IAM level 1 certification (Security+, GSLC, CISM, or CISSP)Possesses working knowledge of the DoD, DISA, ICDs and associated IC security regulations, policies, STIGs and laws
Nice to haves:
Knowledge of DIA and other federal government network security processes and proceduresFamiliarity with encryption technologies, forensics, penetration and vulnerability analysis of various security technologies and information technology security research
Top Secret Clearance is RequiredSanta Monica, CA - Hybrid onsite 2-3 days per week
Summary:The GRC Analyst is responsible for helping to provide compliance and oversight of all our Corporation's Authorization and Accreditation (A&A) requirements as it relates to our government business including but not limited to DIA, DoD, DCSA, etc.
Additionally, the position manages the Sensitive Compartmentalized Information (SCI) and Special Access Program (SAP) Information Systems (IS) to ensure that all classified IS remain accredited by partnering with Security, IT and other teams.
Responsibilities:
Implements, monitors, and maintains the ICDs, our Security Manual and procedures, DoD and other applicable government sponsor regulations for SCI/SAP and collateral systemsEnforces corporate policies to support ICD, and other CI standardsEnforces compliance with current Security Technical Implementation Guides (STIGs) for all applicable systemsInterfaces with and supports clients in the operation and security of the classified systemsAssist the ISSM in establishing, communicating, and improving the collateral and SCI/SAP Information Systems (IS) Security ProgramResponsible for the preparation and sustainment for internal self-inspections, DIA and other government inspectionsAssesses changes by performing periodic self-inspections, tests and reviews of the classified IS program to ensure that systems are operating as authorized/accredited and that conditions have not changedParticipates in the planning, installation, implementation, upgrade, problem determination and resolution involving software programs, operating systems, computers, printers, scanners, etc. for collateral and SCI/SAP systems. Provides budget requirements to the ISSM for the sustainment of the collateral SCI/SAP systems.Ensures protocols are followed for the investigation(s) and resolution of security incidentsPerforms weekly audits and ensures administrative inquiries/investigations into anomalies found during audit trail analysis are reported to the ISSM for follow on actionsCollaborates with the system and network administrators to ensure audit features are configured and enabled correctlyDevelops and implements the System Security Plans (SSP) and addendums for the facilityPerforms other duties as assigned
Requirements:
Must hold and maintain a Top-Secret security clearance and SCI/program eligibility4+ years' experience in Information Technology, preferably in a classified environmentMust have and maintain a DoD 8570.01-M - IAM level 1 certification (Security+, GSLC, CISM, or CISSP)Possesses working knowledge of the DoD, DISA, ICDs and associated IC security regulations, policies, STIGs and laws
Nice to haves:
Knowledge of DIA and other federal government network security processes and proceduresFamiliarity with encryption technologies, forensics, penetration and vulnerability analysis of various security technologies and information technology security research