Information Assurance (IA) Analyst

About The Position

Requirements

• Examine internal IT controls, evaluate the design and operational effectiveness, determine exposure to risk and develop remediation strategies for System Administrator (SA) implementation.
• Assist SAs in troubleshooting security and network problems.
• Plan, implement, monitor and upgrade security measures for the protection of the organization’s data, systems and networks.
• Test and identify network and system vulnerabilities and assist in creating counteractive strategies to protect the network.
• Conduct efficient and effective IT audit procedures.
• Prepare briefings for SUBMEPP management and employees to be delivered in the weekly status report.
• Perform regular audit testing and provide recommendations to SAs to help resolve findings.
• Review, evaluate and test application controls.
• Provide recommendations and guidance on identified security and control risks.
• Complete and report for Federal Information Security Management Act (FISMA) compliance.
• Work to ensure entries are maintained in the DoD IT Portfolio Repository (DITPR) Document for quarterly updates.
• Prepare and submit DoD Risk Management Framework (RMF) packages quarterly depending on the package status
• Review and monitor system security posture and requirements primarily outlined but not limited to CTOs, TASKORD, OPORD, IAVs, STIGs and other downward directed orders for system hardening
• Secret Clearance
• IAT Level 2 Certification

Responsibilities

• Examine internal IT controls, evaluate the design and operational effectiveness, determine exposure to risk and develop remediation strategies for System Administrator (SA) implementation.
• Assist SAs in troubleshooting security and network problems.
• Plan, implement, monitor and upgrade security measures for the protection of the organization’s data, systems and networks.
• Test and identify network and system vulnerabilities and assist in creating counteractive strategies to protect the network.
• Conduct efficient and effective IT audit procedures.
• Prepare briefings for SUBMEPP management and employees to be delivered in the weekly status report.
• Perform regular audit testing and provide recommendations to SAs to help resolve findings.
• Review, evaluate and test application controls.
• Provide recommendations and guidance on identified security and control risks.
• Complete and report for Federal Information Security Management Act (FISMA) compliance.
• Work to ensure entries are maintained in the DoD IT Portfolio Repository (DITPR) Document for quarterly updates.
• Prepare and submit DoD Risk Management Framework (RMF) packages quarterly depending on the package status
• Review and monitor system security posture and requirements primarily outlined but not limited to CTOs, TASKORD, OPORD, IAVs, STIGs and other downward directed orders for system hardening