Information Security Analyst (Journeyman) at Broadleaf, Inc. in Aberdeen Proving Ground, Maryland

Job Description:

Broadleaf, Inc has been featured as one of Inc. Magazine's "Top 5000 fastest growing companies". Broadleaf, Inc has established itself as #20 (2021) from #146 (2020), #733 (2019), and #1730 (2018).  www.inc.com/profile/broadleaf

Founded in 2009 and headquartered in Virginia, Broadleaf is a Native Hawaiian Organization (NHO) owned small business. We are a mature 8(a) firm who has achieved Capability Maturity Model Integration (CMMI) Level 3 for Development, CMMI Level 3 for Services, and ISO 9001, ISO 27001, and ISO 14001 certifications. These quality improvement programs directly influence our management and technical solutions.
Unlike other small businesses, our certifications prove that we have mature processes and procedures which will be used to deliver a high-quality service to our clients.
​
What is an NHO?
Native Hawaiian Organization or NHO is a community service organization serving Native Hawaiians in the State of Hawaii which is a not-for-profit organization chartered by the State of Hawaii, is controlled by Native Hawaiians, and whose business activities will principally benefit such Native Hawaiians.

Our NHO’s Mission
NHO is a non-profit organization designed to benefit the Hawaii people through the development and advocacy of Science, Technology, Engineering and Math (STEM) education and by promoting Hawaii’s role as America’s Gateway to the Pacific.
Our NHO supports this missions through an agenda that facilitates community resilience, development, economic prosperity, and strengthens Hawaii’s relationships with its Asia-Pacific neighbors.

• Identify and review common NIST 800-53 Rev4 security controls for the CECOM SEC


• Supports the Government with coordinating RMF Package requirements to include TEMPEST testing, Ports, Protocols, Services Management (PPSM) registration and Security Control Assessor-Validator (SCA-V) / Security Control Assessor-Organization (SCA-O) testing


• Conducts the Federal Information Security Management Act (FISMA) annually required Information System (IS) RMF Security Control Test to include updating existing RMF artifacts


• Configure, conduct, and asses vulnerability scans


• Review and evaluate security impact of changes to authorized networks/systems


• Collect Cybersecurity RMF Metrics across the CECOM SEC


• Shall ensure a Privacy Impact Assessment Form (PIA) (DD Form 2930) is completed for information systems that electronically collect Personal Identifying Information (PII) about DoD personnel and Contractors for systems under their purview

Experience Needed:

• 3 years’ relative experience (with Information Technology related degree)


• OR (if no degree) Army RMF experience with experience in policy writing and strategic planning 
  
  
  
  • +6 years’ relative experience
  
  

Education:

• Bachelor's Degree (computer science, Information Technology or related field)

Clearance Requirement:

• Active Secret Security Clearance

Certification Requirements:

• IAT Level II (Security+) Certified

Benefits:

• Health, Dental, Vision, 401K Matching, AD&D Insurance

EEO Employer F/M/Vet/Disabled