Delaware Nation Industries
Information Assurance Analyst-Senior
Delaware Nation Industries, Arlington, Virginia, United States, 22201
Overview
DNI is providing Manpower and IT Support for the Navy Joint Strike Fighter Program in Arlington, VA (Crystal City). We are currently interviewing for an Information Assurance/Security Specialist to support this initiative in an enterprise-level work environment.
Responsibilities
Senior ISSO for classified systems, reporting directly to IA Lead.Assist with the following: All client RMF operations, to include; network Security Categorizations, development of the Cybersecurity Program, and implementation of the Continuous Monitoring ProgramDevelopment of the Security Control Traceability Matrix (SCTM) including negotiation with SCA/AO organizations regarding SC tailoring and overlays, System Security Plan (SSP), Security Assessment Plan (SAP), Cybersecurity Plan of Actions and Milestones (POA&M) Risk Assessment Report (RAR), and Continuous Monitoring (ConMon) strategyDevelopment of various policy documents (SOPs/CONOPs) as required by the client. This may include policies regarding IS Sanitization, Media Security, Password Policy, Business Continuity, Continuity of Operations, Incident Response, Disaster Recover, Security Assessments, and relatedConducting Independent Validation and Verification (IV&V) testing on the client network, utilizing automated ACAS scans, automated and manual DISA STIG reviews, and collating the output into an actionable POA&MWorking with System Administrators/Engineers to conduct remediation and validation operations in accordance with the POA&MConducting application security reviews to determine feasibility/suitability of candidate applications for addition to the networkServes as the lead and/or member of Incident Response team, and will be responsible for coordination with the Command Incident Response Manager (CIRM)Developing and leading the Inspection Readiness Program with the objective of preparing the client network for any upcoming SAP InspectionsAdvising the ISSM and Program Manager regarding IA policyCollaborate with other command security personnel, such as Physical Security, Personnel Security, and Program Security in developing command security program/policyQualifications
Minimum of 8 years of experience.Bachelor's Degree
Master Degree in CS related field a plus
Minimum of 6 years experience conducting IV&V assessment, using tools such as Retina, Gold Disk, ACAS, Tenable Nessus, and DISA STIGsMinimum of 6 years experience conducting DoD Certification & Accreditation (C&A) support with specific experience with DIACAP, PIT, NIST RMF, DoD RMF, JSIG, or FISMADoDD 8570.01-m certification IAM II (CISSP, CISM, CASP, CAP, GSLC)
CEH, CISA, or OS certifications desired
DNI is providing Manpower and IT Support for the Navy Joint Strike Fighter Program in Arlington, VA (Crystal City). We are currently interviewing for an Information Assurance/Security Specialist to support this initiative in an enterprise-level work environment.
Responsibilities
Senior ISSO for classified systems, reporting directly to IA Lead.Assist with the following: All client RMF operations, to include; network Security Categorizations, development of the Cybersecurity Program, and implementation of the Continuous Monitoring ProgramDevelopment of the Security Control Traceability Matrix (SCTM) including negotiation with SCA/AO organizations regarding SC tailoring and overlays, System Security Plan (SSP), Security Assessment Plan (SAP), Cybersecurity Plan of Actions and Milestones (POA&M) Risk Assessment Report (RAR), and Continuous Monitoring (ConMon) strategyDevelopment of various policy documents (SOPs/CONOPs) as required by the client. This may include policies regarding IS Sanitization, Media Security, Password Policy, Business Continuity, Continuity of Operations, Incident Response, Disaster Recover, Security Assessments, and relatedConducting Independent Validation and Verification (IV&V) testing on the client network, utilizing automated ACAS scans, automated and manual DISA STIG reviews, and collating the output into an actionable POA&MWorking with System Administrators/Engineers to conduct remediation and validation operations in accordance with the POA&MConducting application security reviews to determine feasibility/suitability of candidate applications for addition to the networkServes as the lead and/or member of Incident Response team, and will be responsible for coordination with the Command Incident Response Manager (CIRM)Developing and leading the Inspection Readiness Program with the objective of preparing the client network for any upcoming SAP InspectionsAdvising the ISSM and Program Manager regarding IA policyCollaborate with other command security personnel, such as Physical Security, Personnel Security, and Program Security in developing command security program/policyQualifications
Minimum of 8 years of experience.Bachelor's Degree
Master Degree in CS related field a plus
Minimum of 6 years experience conducting IV&V assessment, using tools such as Retina, Gold Disk, ACAS, Tenable Nessus, and DISA STIGsMinimum of 6 years experience conducting DoD Certification & Accreditation (C&A) support with specific experience with DIACAP, PIT, NIST RMF, DoD RMF, JSIG, or FISMADoDD 8570.01-m certification IAM II (CISSP, CISM, CASP, CAP, GSLC)
CEH, CISA, or OS certifications desired