View all jobs
Security Analyst
Washington, DC ยท Information TechnologyASSYST is seeking a Mid-level Security Analyst to support our government customer Project based in Washington, DC.
This position is contingent upon contract award
Hybrid - Rockville, MD / Washington D.C
Responsibilities:
ASSYST is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, disability, military status, national origin or any other characteristic protected under federal, state, or applicable local law
This position is contingent upon contract award
Hybrid - Rockville, MD / Washington D.C
Responsibilities:
- Review and update security documentation to ensure compliance with NIST, FISMA, Federal regulations, and agency policies.
- Support RMF, continuous monitoring, and remediation of security weaknesses through POA&Ms.
- Provide consulting services and serve as a security SME for ESS LoB customers and internal OIS counterparts.
- Collaborate with ESS LoB staff and customers to deliver security documentation, assessments, and SA&A artifacts.
- Conduct annual security control assessments and contingency plan tabletop exercises.
- Prepare and deliver customer status reports, project plans, and meeting minutes.
- Adapt to changing ESS LoB customer priorities and support engagements using ESS processes, guidance, and methods.
- Demonstrated 5-8 years of IT security experience in the IT security Federal arena specifically with writing and interpreting security documentation and directives;
- Possess applicable certifications and credentials such as Security+ or Network+ or equivalent by a recognized and reputable organization.
- In-depth knowledge of laws, directives, orders, etc., pertaining to IT security and directing Federal government agencies.
- Understanding of security requirements in various environments to include secured and non-secured. .
- Familiarity with IT security products (hardware, software, and services), technologies, protocols, and best practices.
- Prior experience writing documentation to satisfy NIST (National Institute of Standards and Technology) guidance, FISMA (Federal Information Security Management Act), FISCAM (Federal Information System Controls Audit Manual).
- Proficient written and oral communications skills.
- Knowledge and experience with the NIST 800-53 Rev 5 or latest revision and ability to properly document security control implementation statements
ASSYST is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, disability, military status, national origin or any other characteristic protected under federal, state, or applicable local law