Information Security Analyst Advisor

About The Position

Requirements

• Computer Security
• Information System Security
• Security Information
• Security Requirements
• System Security
• 10 + years of related experience
• US Citizenship Required
• Ten (10) years experience as an ISSO on programs and contracts of similar scope, type, and complexity is required. Experience is to include at least two (2) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools.
• Bachelor's degree in Computer Science or related discipline from an accredited college or university is required.
• DoD 8570 compliance with Information Assurance Management (IAM) Level I or higher is required. Four (4) years of additional experience as an ISSO may be substituted for a bachelor's degree.
• Clearance Level Must Currently Possess: Top Secret SCI + Polygraph
• Clearance Level Must Be Able to Obtain: Top Secret SCI + Polygraph

Responsibilities

• Provides support for a program, organization, system, or enclave's information assurance program.
• Provides support for proposing, coordinating, implementing, and enforcing nformation systems security policies, standards, and methodologies.
• Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed.
• Assists with the management of security aspects of the information system and performs day-to-day security operations of the system.
• Evaluate security solutions to ensure they meet security requirements for processing classified information.
• Performs vulnerability/risk assessment analysis to support certification and accreditation.
• Provides configuration management (CM) for information system security software, hardware, and firmware.
• Manages changes to system and assesses the security impact of those changes.
• Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).
• Supports security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework (NIST RMF).
• Provide support to senior ISSOs for implementing, and enforcing information systems security policies, standards, and methodologies.
• Assist with preparation and maintenance of documentation.
• Assist in the evaluation of security solutions to ensure they meet security requirements for processing classified information.
• Assist with the CM for information system security software, hardware, and firmware (U) Maintain records on workstations, servers, routers, firewalls, intelligent hubs , network switches, etc. to include system upgrades.
• Propose, coordinate, implement, and enforce information systems security policies, standards, and methodologies.
• Develop and maintain documentation for C&A in accordance with ODNI and DoD policies.
• Provide CM for security-relevant information system software, hardware, and firmware.
• Develop system security policy and ensures compliance.
• Evaluate security solutions to ensure they meet security requirements for processing classified information.
• Maintain operational security posture for an information system or program.
• Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational IA posture for a system, program, or enclave.
• Develop and update the system security plan and other IA documentation.
• Assist with the management of security aspects of the information system and perform day-today security operations of the system.
• Administer the user identification and authentication mechanism of the Information System (IS).
• Obtain C&A for ISs under their purview.
• Provide support for a program, organization, system, or enclave's information assurance program.
• Plan and coordinate the IT security programs and policies.
• Manage and control changes to the system and assessing the security impact of those changes.
• Serve as the Approval Authority for ISs under their control.

Benefits

• Full-flex work week to own your priorities at work and at home
• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional growth opportunities including paid education and certifications
• Cutting-edge technology you can learn from
• Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.