Title: Cyber Security Compliance Analyst

Location: Reston, VA or Washington, DC

Clearance: TS/SCI with the ability to obtain and maintain a CI polygraph

Responsibilities:

• Perform System Security Authorization and related IA continuous monitoring tasks across multiple customers owned and managed systems
• Work closely with internal and external cyber security in maintaining continued FISMA compliance; sustained ATO and effective system security posture
• Perform documentation support services
• Provide Cyber Security operations support services to the Command, Control & Communications Engineering Center
• Develop project plans and identify work breakdown structures for client compliance activities
• Conduct compliance reviews for federal and IC clients in order to gain a better understanding of their business processes, identify associated compliance, financial, operational and strategic risks, and evaluate the effectiveness of controls to determine risks; develop recommendations
• Develop, document, and execute internal audit programs, to include FISMA, to ensure that audits, inspections, and assessments appropriately address risks and management concerns
• Maintain and coordinate remediation efforts through plans of action and milestones (POA&M)
• Lead and facilitate walkthroughs with external auditors, explaining the various processes, improvements, and responses
• Analyze system weaknesses identified during system security assessments and the related mitigation plans
• Analyze IAVA bulletins, Cyber Security TASKORDs, security and vulnerability assessment results and providing leadership details on any required actions and related timelines and create mitigation plans

 Requirements:

• Bachelor's degree in cybersecurity or a related technical discipline required, with 5+ years of hands-on technical experience; Master's degree in a technical field preferred
• An additional 5 years of IA/IT experience may be substituted in lieu of a degree
• Must possess current DoD 8570 IAM II certification 
• Experience in the use of the IACS (XACTA), ACAS, EMASS and HBSS security tools; working knowledge of the Open System Interconnect (OSI) model
• Experience with federal policies and procedures to acquire and maintain an Information System's Authority to Operate (ATO) under FISMA Act following NIST 800-53 guidelines and NIST-800-53a security controls assessment practices
• Excellent written and oral communication skills, with the ability to work independently or as a member of a team
• TS/SCI with the ability to obtain and maintain a CI polygraph

Equal Opportunity Employer/Veterans/Disabled