Information Security Analyst w/Active Secret Clearance - Columbus Technologies and Services, Inc
Posted: Thursday, March 8, 2018 2:40 AM
Must be a US Citizen with an Active Secret Clearance
DOJ/DEA/Leidos : Fairfax, VA
W2 with full benefits
1 year contract
Leidos has an opening for an Information Security Analyst in Fairfax, VA. This position is in support of a Federal law enforcement agency. This position will be in an advisory role to the customer in the information assurance area. Ability to work in a professional environment, have problem solving and organization skills is required, as are having good verbal and written communication skills to coordinate with co:workers and the customer. Typical responsibility will be to assess software and hardware vulnerabilities and mitigation efforts, including technical refreshes, modernization, and re:engineering projects.
Selected candidate will be responsible for:
-Recommending best business practices and secure methodologies to maintain and/or improve security posture of Information Systems, the network, and remedy deficiencies.
-Awareness of vulnerabilities and newest patches, and verifying that the agency has applied appropriate patches, STIGs, and control mechanisms as per directives.
-Assisting in the development and tracking of POA and Ms and work with engineering team to remediate and test related security controls.
-Will use IA expertise to provide recommendations to address gaps in compliance and work with to bring systems into compliance.
-Generating compliance assessment reports for the customer based on compliance data and scanning results gathered from existing tools.
-Providing expertise to customer to resolve vulnerability compliance, assessing vulnerabilities due to evolving technologies, and security engineering services with recommendations throughout project lifecycles.
-Provide Documentation Updates including Configuration Management Plans, Incident Response Plans, Security Operating Procedures, Vulnerability Management, Contingency Plan, System Security Plans
-BS degree and 8 : 12 years of prior relevant experience or Masters with 6 : 10 years of prior relevant experience. Additional years of experience and/or relevant certifications will be considered in lieu of degree.
-Able to perform end:to:end Security Control Assessments, in:depth experience with NIST 800:53 and NIST 800:37 rev1
-Experienced in Asset Management, Vulnerability Scanning (Tenable Nessus, Hailstorm, AppDetective), Vulnerability Remediation (BigFix, SCCM), Secure Configurations support (i.e. DISA STIGS), Security Advisory notifications and OMB data calls
-Working skills in Splunk/Arcsight (reporting and analysis), ELMS CSAM (Security Assessment Repository); or equivalent tools.
-Familiar with creating security diagram overlays and updates, determine security requirement, security mitigation implementation, perform Security liaison and advisory to internal and external parties
-Familiar with analysis of affected machines, reporting, containment and eradication support
-Familiar with account request review and approvals, account provisioning and deprovisioning, periodic account review and clean
• Location: Northern Virginia
• Post ID: 47057527 nova