Job was saved successfully.
Job was removed from Saved Jobs.
Job Details
Leidos
Information Security Analyst
Description
Job Description:
Leidos Defense Group Modeling Simulation & Training Division has several openings for Information Security Analysts (all levels) for a new program in Huntsville, Al. This position will support a new program award in support of the US Army providing full life cycle M&S and Live / Virtual / Constructive Training engineering development and sustainment.
Responsibilities:
- Support the implementation and administration of information security policies, procedures, and technologies to ensure the protection of systems, applications, and data on production and development networks
- Provide the necessary support to monitor and ensure compliance with information security policies, procedures and regulatory requirements including assistance with internal auditing, reporting, technical reviews, and identification of security risks
- Assist with drafting, reviewing, editing, and recommending guidance for Standard Operating Procedures (SOP), Plan of Action and Milestones (POA&M), and Federal Information Security Management Act (FISMA)
- Management of Plan of Action and Milestones (POA&Ms) to completion through the vulnerability management lifecycle, while working with operations on solidifying a plan to mitigate
- System and applications vulnerability assessment with tools such as Nessus, BigFix, SCCM, Jamf, Satellite, or the RISCS tools
- Provide configuration management for security-relevant information system software
- Contribute to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system operations
- Analyze and document results of security compliance & vulnerability scanning in order to identify vulnerabilities and coordinate associated remediation efforts
- Create Security Test Plans
- Communicate and work closely with System Engineering and operations teams to ensure that the hardware and software implementation meets the security requirements for processing classified information
- Develop technical solutions for security-related vulnerabilities using solid security standards and best practices.
- Evaluate, review, and/or test security-critical software
- Interface with and support Help desk team
- Excellent communications skills
- Ability to work in a team environment
Qualifications:
- Bachelor’s degree with 3 - 10+ years of relevant experience, Master’s degree, or a PhD. Additional experience may be considered in lieu of a degree
- Active Secret level clearance
- Experience working with external audit teams
- Excellent verbal and written communication skills
- Experience meeting with clients and management to specify and negotiate application security requirement, reviews current policies and procedures for applicability, and system OS security patch levels, and ensures safe transition of application to production
- Experience in providing risk analysis for vulnerabilities, incidents and change request
- Experience in being an active member in technical workgroups to recommend effective security configurations and architecture
- Experience in developing documentation to support ongoing security systems operations, maintenance and specific problem resolution
- Ability for oral and written communications with the highest level of management
Preferred Qualifications:
- Security +, CISSP Certifications
- Demonstrated experience within the DOD network infrastructure
- Experience meeting with clients and management to specify and negotiate application security requirement, reviews current policies and procedures for applicability, and system OS security patch levels, and ensures safe transition of application to production
- Experience providing risk analysis for vulnerabilities, incidents and change request
- Experience in being an active member in technical workgroups to recommend effective security configurations and architecture
- Experience in developing documentation to support ongoing security systems operations maintenance and specific problem resolution
- Ability for oral and written communications with the highest level of management