Sr. Security & Assurance Analyst

2017-1090
US-DC

Overview

TISTA Science and Technology Corporation, a CMMI Maturity Level 3 company, focuses on delivering information technology (IT) and professional services to Federal and State agencies. TISTA is an Inc. 500 company, a recipient of the 2010 Top 100 Service-Disabled Veteran-Owned Businesses from Diversity Business, recognized in Washington Technology's FAST 50 list of the fastest growing small businesses in government contracting in 2012 & 2013, recognized as the Top 25 Fastest Growing Small Technology companies by the Washington Business Journal in 2014 & 2015, and selected as the Veteran Owned Company of the Year in 2014 by the Montgomery County MD Dept. of Economic Development.

Responsibilities

 

TISTA Science and Technology Corporation is seeking a Sr. Security and Assurance Analyst to work with customer management, engineers, developers and the contractor team to provide input and to solve complex security and assurance challenges in a global enterprise environment. The Analyst will support activities in enterprise risk management (NIST 800-30 and 800-39), configuration management and change control, information assurance (NIST 800-53), POAM management, and related areas. The Analyst will also support Risk Management Framework activities using CSAM, including the development of security packages and security metrics.

 

Responsibilities: 

  • Review architecture and application changes for security impacts and possible recertification
  • Develop security metrics supporting enterprise risk management
  • Actively participate in the enterprise Change Control Board (CCB) 
  • Perform security analysis and write Security Impact Analyses in a timely manner
  • Perform NIST 800-30 qualitative risk assessments to inform recommendations and decision-making
  • Develop, maintain and manage A&A packages in CSAM
  • Conduct research and provide recommendations on methods, software, and technologies to mitigate risk exposures
  • Review vulnerability scans and provide mitigation techniques
  • Develop and write security policies and procedures
  • Maintain detailed familiarity with NIST, OMB, DHS, and related security and assurance guidance
  • Update documents to reflect new security guidelines and impacts

Qualifications

General 

  • Strong problem solving and analysis skills, self-motivated, and able to work and communicate in a team environment
  • Excellent communication (written and verbal) skills
  • Ability to maintain 8AM to 5PM work schedule at customer site

Education/Certification:

  • Bachelor of Science in IT or a related field 
  • More than five years experience in information security and assurance
  • CISSP, CISA, CISM, CAP or related information security certification(s) 

Clearance Requirements: Public Trust

 

Location: Washington, DC

 

 

Here at TISTA Science and Technology we value our Veterans and encourage all to apply!


Equal Opportunity Statement
TISTA is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or protected veteran status.

 

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed