You haven't searched anything yet.
The Information Systems Security Analyst applies current technologies to the design, development, evaluation and integration of computer information systems and networks to maintain system security. May work with commercial computer product vendors in the design and evaluation of state-of-the-art secure COTS applications, operating systems, networks and database products and technology. Provides security engineering and integration services to internal customers. Involved in a wide range of issues including secure architectures, secure electronic data traffic, network security, information security and privacy. Uses encryption technology, penetration, risk management and vulnerability analysis of various security technologies and information technology security research. Develops security systems for any manual or automated systems environments. Responsible for ensuring the protection of company data against unauthorized disclosure, accidental or intentional loss of data, or unauthorized modification. May prepare security reports.
Clearance Requirement:
•Must be a U.S. Citizen
•Must have an active current DoD Top Secret clearance
•Must be able to obtain DHS suitability prior to starting employment.
Required Skills:
•Strong written and verbal communication skills
•Ability to convey system risks/assessments/vulnerabilities to all technical levels to include administrative staff, management staff and subject matter expert technical staff
•Validate security posture for the program to ensure information systems security policies, standards, and procedures are established and followed
•Assist with the management of security aspects of the information system and perform day-to-day security risk analysis on the system
•Evaluate security posture to ensure security requirements for processing in a unclassified and classified information are being maintained
•Perform vulnerability/risk assessment analysis to support certification and accreditation
•Prepare and review documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, etc. This includes System Test and Evaluation (ST&E) and Pre and Post Deployment Security, Vulnerability and Risk (PDSV) assessments of new technological deployments in the test, preproduction and production environments.
•Experience and/or familiarity with NIST and DHS Authorization and Accreditation (A&A)
•Experience and/or familiarity with the following network protection devices: firewalls, intrusion detection and prevention systems (IDS/IPS), log analysis, malware analysis, network traffic flow and packet analysis
•Experience and/or familiarity with Secure Technical Implementation Guides (STIGs), ISVM, DCID 6/3, Federal Information Security Management Act (FISMA) and other tools using NIST Framework
•Experience with operation and maintenance of Information Assurance Tools to including configuration and maintenance
•Acts as SME for Windows Platforms (Knowledge of LINUX/Network/Databases would be beneficial)
Desired Skills:
•Perform analysis on large data sets
•Provide security services for Authorization and Accreditation (A&A) requirements, including developing and maintaining information assurance documentation for all network components
•Support continuous monitoring and FISMA compliance
•Conduct Information Assurance Vulnerability scanning to include Adhoc and specialized request scans and assist team members in to reconcile results, and report all findings
•Understand and utilization of SPLUNK would be beneficial
•Understanding and utilization of HBSS/McAfee ePO to analyse risk assessments within the application and network
•Experience with the following:
◦Acunetix WVX
◦App Detective Pro
◦Burp Suite Professional
◦Core Impact Pro
◦HexRay and IdaPro
◦IBM Appscan Source
◦Metasploit Pro
◦Nexpose
◦Nessus
◦Red seal
◦Microfocus HP WebInspect
◦Fortify
Desired Certification(s): CISSP, Security , Network , Cisco Certified Network Professional (CCNP), Cisco Certified Security Professional (CCSP) or similar certification
Our Company Overview:
Business Computers Management Consulting Group, LLC (BCMC) is a small business specializing in Information Technology (IT), Cybersecurity, Information Assurance (IA), SOA, Big Data Management, Program Management, and more for Federal, State, and Local agencies. We possess highly skilled engineers, providing innovative solutions backed by strong past performances. We are ISO 9001:2015, ISO 27001:2013, 20000:2018, and CMMI L3 certified and registered promising highest quality and services o all of our clients.
Benefits
Extremely competitive salary
95% employer paid for employee medical, dental, & vison coverages
100% employer paid for employee life, STD & LTD disability coverages
401k with company match and profit sharing
Flexible Spending Account (FSA) for dependent & health care
11 standard holidays & 3 w
Full Time
IT Outsourcing & Consulting
$74k-89k (estimate)
01/14/2023
04/04/2023
bcmcgroup.com
FALLS CHURCH, VA
50 - 100
2007
KALVIN LEE
<$5M
IT Outsourcing & Consulting
SBA certified SDB, appraised CMMI Level 3 company providing IT services to the federal government. Specializing in cyber security, enterprise architecture, service oriented architecture, business intelligence, and large data management. Our services span throughout the federal government, mainly concentrated in Department of Homeland Security and Defense Information Systems Agency.
The job skills required for Information Systems Security Analyst include Information Security, Analysis, Cybersecurity, Risk Management, Security Systems, Information Assurance, etc. Having related job skills and expertise will give you an advantage when applying to be an Information Systems Security Analyst. That makes you unique and can impact how much salary you can get paid. Below are job openings related to skills required by Information Systems Security Analyst. Select any job title you are interested in and start to search job requirements.
The following is the career advancement route for Information Systems Security Analyst positions, which can be used as a reference in future career path planning. As an Information Systems Security Analyst, it can be promoted into senior positions as a Systems/Application Security Analyst that are expected to handle more key tasks, people in this role will get a higher salary paid than an ordinary Information Systems Security Analyst. You can explore the career advancement for an Information Systems Security Analyst below and select your interested title to get hiring information.