Job Title: Information Security Analyst
Job Description
Candidate shall have a technical background, and have a thorough understanding of federal security requirements and guidelines (e.g., 800-53 Rev 5 and M-22-09) and be able to clearly explain how each information security control measure should be implemented using industry’s best practices. Be responsible and accountable for the security well-being of operating environments, and must be able to proactively manage security compliance and collaborate with system owners, developers, and other stakeholders to ensure secure system design and operation. Independently conduct regular security assessments and audits, and provide documented assessment results and recommendations to the senior management team. Develop, update, and maintain security documents including System Security Plans (SSPs), Risk Assessment, PTA/PIA and other security documentation. Develop management level security reports and presentation, and present security status to customer stakeholders on a regular basis. Familiarity with Cyber Security Assessment and Management (CSAM), including POAM management and maintenance of controls under NIST SP 800-53 Rev. 5. Develop incident response exercise scenarios and lead the execution of the exercise. Lead incident response team and conduct investigations in the event of a security breach. Lead security authorization activities in compliance with FISMA and federal agency’s security authorization requirements. Lead Continuous Monitoring in the hybrid multi-cloud environment for potential security threats and vulnerabilities. Stay updated with the latest security trends, threats, and mitigation techniques. Possible ISSE Duties (In addition to ISSO duties above): Independently use security tools such as Tenable Nessus and web security scanners to conduct security scans, analyze results and identify false positives vs. risks. Evaluate security solutions to ensure they meet security requirements for processing sensitive and PII data. Coordinate with the agency CISO and other security personnel to enhance the security posture of the environment. Perform and/or review technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations and recommend mitigation strategies. Validate and verify system security requirements definitions and analysis and establish system security designs. Design, develop and integrate IA and security systems and system components including those for networking, computing, and cloud environments. Assist architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions. Contribute to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations.
Hard Skills
- Understanding of federal security requirements and guidelines (e.g., 800-53 Rev 5 and M-22-09)
- Experience with cloud technology like AWS and AZURE
- Risk management and vulnerability analysis
- Familiarity with Cyber Security Assessment and Management (CSAM)
- Use of security tools such as Tenable Nessus and web security scanners
- Conducting security scans and analyzing results
Soft Skills
- Proactive management of security compliance
- Collaboration with system owners, developers, and stakeholders
- Developing and presenting security reports
- Leading incident response teams
- Staying updated with latest security trends
Job Type
This is a contract position with a duration of 26 Weekly.
Work Environment
Office environment
About Actalent
Actalent is a global leader in engineering and sciences services and talent solutions. We help visionary companies advance their engineering and science initiatives through access to specialized experts who drive scale, innovation and speed to market. With a network of almost 30,000 consultants and more than 4,500 clients across the U.S., Canada, Asia and Europe, Actalent serves many of the Fortune 500.
Diversity, Equity & Inclusion
At Actalent, diversity and inclusion are a bridge towards the equity and success of our people. DE&I are embedded into our culture through:
- Hiring diverse talent
- Maintaining an inclusive environment through persistent self-reflection
- Building a culture of care, engagement, and recognition with clear outcomes
- Ensuring growth opportunities for our people
The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
If you would like to request a reasonable accommodation, such as the modification or adjustment of the job application process or interviewing process due to a disability, please email actalentaccommodation@actalentservices.com for other accommodation options.