Information Security Analyst at Digital Intelligence Systems, LLC in Chantilly, Virginia

The Information Systems Security Engineer (ISSE) position will serve as an Accreditation & Authorization Subject Matter Expert (SME) in Information Security responsible for task development, planning, monitoring, problem solving and progress reporting. Will manage Authorization & Accreditation (A&A) processes on the classified network utilizing the Intelligence Community Directive (ICD503).

Requirements

Specific Requirements, Skills, Personal Characteristics, Licenses, Physical Abilities, etc.

OVERALL REQUIREMENTS:

• U.S. Citizen


• Submit/Pass a 10-year Dept. of Defense background check, criminal history, drug screening, and fingerprints


• Valid driver's license/Real-ID with clean driver's history


• Applicant must have a strong work ethic, be extremely organized and detail-oriented, be a self-starter with excellent time-management, problem solving, and multitasking skills


• Applicant must have excellent front-facing / face-to-face customer service skills


• Minimum 1 year of customer service experience (call center, retail, or other customer facing role)


• Problem solving skills from active listening to, and educating, customers through resolution and a set of delivery expectations


• Excellent communication skills (in English), both verbal and written, to articulate details in a professional manager


• Position may require ability to sit, stand, walk extended distances, bend, stoop, squat and lift to 35 lbs. from the floor to desktop for extended periods of time


• Experience with a ticketing system like ServiceNow a plus

JOB SPECIFIC REQUIREMENTS AND SKILLS:

• 6 to 10 years of experience performing in the role of Information Systems Security Engineer (ISSE)


• Top-Secret clearance at time of hire. SCI / CI Poly at time of hire, preferred, otherwise obtainable post-hire.


• IAT Level-2 technical certification required, Security+ or CISSP preferred, within 90 days of hire


• Technical bachelor's degree preferred but not required


• Demonstrated experience in responding to, managing and resolving security incidents


• Experience with LAN/WAN networking concepts, IP addressing and routing concepts, Windows/Linux/Unix operating systems, Information Security concepts and best practices


• Experience with Windows/Linux/Unix server administration is a plus


• Experience working with a Security Information and Event Management (SIEM) system is a plus


• Experience working with the following tools is desired: Splunk, DarkTrace, Retina, CarbonBlack


• Security and vendor certifications are a plus

Responsibilities & Duties

List the specific duties required of this job. List in order of importance. Complete sentences.

RESPONSIBILITIES & DUTIES:

• Perform the role of Information Systems Security Engineer (ISSE) interfacing between ISSMs/ISSOs and other system administrators


• Develop and maintain Authorization & Accreditation (A&A) processes on the classified network utilizing the Intelligence Community Directive (ICD503)


• Provide Information Assurance (IA) oversight for unclassified and classified networks and systems


• Analyze IT system concepts, provide recommendations for design and optimization, and facilitate the assessment and authorization process


• Employ best practices and provide recommendations for the implementation of security controls


• Work with stakeholders to define and analyze system security requirements and provide technical solutions to best fit the customers' needs


• Identify and communicate technical risks and mitigation strategies


• Develop and maintain security documentation for corporate policy and standards


• Assist the ISSMs and ISSOs with completing documentation and implementation of information security requirements for IT systems throughout the Risk Management Framework (RMF)


• Assist the ISSMs and ISSOs in creating POA&Ms and provide recommendations for mitigation strategies


• Work with company system administrators to ensure the appropriate controls are implemented


• Perform technical vulnerability test analysis utilizing tools such as Retina, WASSP & SECSCN


• Ensure continuous monitoring is in place for all classified assets