Chenega Corporation Sr Info Assuranc Analyst in Washington DC, District Of Columbia

CHENEGA IT ENTERPRISE SERVICES, LLC

Company Job Title:

Senior Information Assurance Analyst

Clearance:

TS/SCI

Location:

Washington, DC

Reports To:

Program Manager

FLSA Status:

Exempt, Full Time, Regular

Summary:

  • The Senior Information Assurance Analyst shall support the White House Information Security (WHIS) to detect and prevent harmful activity related to data loss and compromise of data integrity; identify account compromise; and perform in-depth custom application monitoring and analytics.

Essential Duties and Responsibilities:(Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this position)

  • Carries out the Information Assurance (IA) Assessment and Authorization (A&A) program objectives;

  • Provides expert technical IA support and guidance;

  • Ensures A&A priorities are properly aligned, and IA policies and federal security regulations are met;

  • Enhances the effectiveness and efficiency of the IA A&A and vulnerability management

programs to provide sufficient guidance and expertise in the following: technical security and vulnerability assessments; tolerances in system, application, and network security remediation; system scanning and best industry standard hardening techniques; IA guidance in the design, development, acquisition, and integration of new technologies.

  • Executes A&A projects or tasks with limited instruction (assignments are made with broadly stated objectives on content, schedule and priorities);

  • Develops and maintains IA security policies, procedures and guidelines and enforces the

protection of the information systems, services, and applications as well as the safeguarding and preserving of data stored, processed and transmitted across the PITC enterprise;

  • Evaluates components of the IT infrastructure for possible security impact to the PITC computer environment; recommends and implements safeguards to minimize information security risks and threats;

  • Provides variety of written documents, including A&A documentation as prescribed by the National Institute of Standards and Technology (NIST), preliminary security engineering surveys, hardware and software security assessment reports, as well as IA related memoranda, educational materials and policy statements;

  • Leads tasks and functions to ensure organization-level compliance with Federal Information Security Management Act of 2002 (FISMA, 44 U.S.C. 3541, et. Seq.);

  • Provides technical vulnerability assessments consistent with established standards: NIST Special Publication (SP) 800-70 - National Checklist Program for IT Products; Guidelines for Checklist Systems; A Security Lifecycle Approach; Federal Desktop Core Configuration (FDCC); and NIST IR-7511 Security Content Automation Protocol (SCAP) Validation Program Test Requirements;

  • Manages vulnerability scans of systems, applications, and network; recommends course of actions;

  • Manages patch management compliance;

  • Works with security engineers to install hardware and software systems in order to provide risk assessments;

  • Contributes to IA dashboard to report key performance indicators;

  • Manages authorized list of privileged user accounts;

  • Triages service tickets.

Non-Essential Duties:

  • Other duties as assigned

Supervisory Responsibilities:

  • NONE

Minimum Qualifications:(To perform this job successfully, an individual must be able to perform each essential duty satisfactorily.)

  • High School Diploma/GED required; Bachelor’s Degree preferred

  • 7 years IA experience performing duties described above.

  • Experience with IA software, such as Nessus, Rapid7/Metasploit, or Fortify;

  • TS/SCI clearance required

Knowledge, Skills and Abilities:

  • Department of Defense (DoD) 8570/8140-certified at the Information Assurance Technical (IAT) level II or above.

  • Demonstrated knowledge of system, application and database security;

  • Demonstrated knowledge of Defense Information Systems Agency (DISA) Security

Technical Implementation Guidance (STIG) for Mac & Windows systems, and the

associated hardening of said systems;

  • Demonstrated knowledge of traditional attack vectors and mitigation strategies on

networks, systems, applications, and databases;

  • Excellent written and verbal communications and customer service skills.

  • Ability to work independently and as a team member

  • Ability to work shift work.

  • Knowledge and skill in applying analytical and evaluation methods and techniques.

  • Ability to handle controversial situations with tact and diplomacy.

Diversity:

  • Shows respect and sensitivity for cultural differences; Educates others on the value of diversity; Promotes a harassment-free environment; Builds a diverse workforce.

Ethics:

  • Treats people with respect; Keeps commitments; Inspires the trust of others; Works with integrity and ethically; Upholds organizational values.

Physical Demands:

  • The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

  • While performing the duties of this Job, the employee is regularly required to sit and talk or hear. The employee is frequently required to walk; use hands to finger, handle, or feel and reach with hands and arms. The employee is occasionally required to stand; climb or balance and stoop, kneel, crouch, or crawl. The employee must occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision

Work Environment:

  • The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job.

  • The employee will normally work in a temperature-controlled office environment, with frequent exposure to electronic office equipment.

  • During visits to areas of operations, may be exposed to extreme cold or hot weather conditions. Is occasionally exposed to fumes or airborne particles, toxic or caustic chemicals, and loud noise.

Chenega Corporation and family of companies is an EOE.

Equal Opportunity Employer Minorities/Women/Veterans/Disabled/Sexual Orientation/Gender Identity

Native preference under PL 93-638.

We participate in the E-Verify Employment Verification Program.

Organization: Chenega IT Enterprise Services, LLC

Title: Sr Info Assuranc Analyst

Location: District of Columbia-Washington DC

Requisition ID: 1800003394