Information Systems Security Analyst
3 weeks ago
This is a hybrid role based in Washington, DC. Candidates must be eligible for a Public Trust clearance.
Duties & Responsibilities:
- Develop and maintain IT security controls per NIST SP 800-53 and Agency Security Policy standards.
- Collect and validate control implementation statements from subject matter experts.
- Consult with experts to ensure work instructions align with agency security standards.
- Conduct risk assessments for security issues and propose resolutions.
- Communicate and document control deficiencies for POA&M consideration.
- Support Continuous Security Monitoring for compliance with agency security policy.
- Assist in developing security policies to ensure compliance.
- Conduct security reviews for changes impacting hardware, software, baselines, connections, or applications.
- Review and assess POA&M outputs and recommend additional work or closure.
- Support IT Governance, Risk, and Compliance activities, including standards management.
- Provide information for status reports, briefings, schedules, and project plans in written and oral form.
- Stay updated on IT trends and security standards.
- Provide high-quality deliverables with minimal edits, quick review, and feedback on federal security doctrine.
- Experience with NIST Risk Management and Cybersecurity Framework, FISMA, NIST 800-53, and IT control processes.
- Familiarity with GRC frameworks/tools (RSAM, CSAM) and SA&A tools (Xacta).
- Experience working in a technical environment with IT platforms such as Microsoft Office 365, Azure, Cisco, Oracle, etc.
- Knowledge of cyber-attack patterns, Tactics, Techniques, and Procedures.
- Ability to adapt security processes and tools to evolving landscapes and risk scenarios.
- Understanding of PKI, encryption, hashing techniques, and OMB circulars A-123, A-130.
- Fluency in spoken and written English for technical content.
- Experience working in a fast-paced environment.
- Possess outstanding customer service skills.
- Ability to explain complex policies in simple terms.
- Excellent analytical thinking and problem-solving skills.
- Bachelor degree with five years relevant IT experience or
- Graduate degree with three years relevant IT experience.
- One of the following security certifications (CISSP, CISM, Security+).
- All candidates must be eligible to obtain a Public Trust Clearance.
- Updated resume including MM/YYYY for each employer.
- Best times/dates to interview (plus phone # you can best be contacted at).
- Availability to start once given formal offers.
Summit Technologies Inc. appreciates your interest. We will contact the best matching prospects and will consider you for future opportunities. We will not submit your resume without your prior knowledge and consent. We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, national origin, disability or veteran status.
-
Information Security Analyst
5 days ago
Washington, United States Super Systems Inc Full timeThis role is hybrid - 2x a week onsite-3x a week REMOTE The Senior Information Systems Security Analyst will support IT management with control assessment, development, and maintenance, and risk assessment and response development. Specifically, this job requires the following: - Develop and maintain IT security controls per NIST SP 800-53 and Agency...
-
Information Systems Security Analyst
4 weeks ago
Washington, United States Summit Technologies, Inc. Full timeJob DescriptionJob DescriptionSummit Technologies Inc. is seeking an Information Systems Security Analyst to support our government client. The Information Systems Security Analyst will support IT management with control assessment, development, and maintenance, and risk assessment and response development.This is a hybrid role based in Washington, DC....
-
Information System Security Engineer
1 month ago
Washington, United States Information Protection Solutions Full timeJob DescriptionJob DescriptionRESPONSIBILITYAnalyze science, engineering, business, and other data processing problems to implement and improve computer systems. Analyze user requirements, procedures, and problems to automate or improve existing systems and review computer system capabilities, workflow, and scheduling limitations. May analyze or recommend...
-
Senior Information Systems Security Officer
10 hours ago
Washington, United States Information Protection Solutions Full timeJob Description Job Description Information systems security officers (ISSO) research, develop, implement, test and review an organization's information security in order to protect information and prevent unauthorized access. Officers inform users about security measures, explain potential threats, install software, implement security measures and monitor...
-
Senior Information Systems Security Officer
1 month ago
Washington, United States Information Protection Solutions Full timeJob DescriptionJob DescriptionInformation systems security officers (ISSO) research, develop, implement, test and review an organization's information security in order to protect information and prevent unauthorized access. Officers inform users about security measures, explain potential threats, install software, implement security measures and monitor...
-
Information Security Analyst
1 week ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
1 week ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
7 days ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
1 week ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
1 week ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
6 days ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
4 days ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
7 days ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Washington, United States SUMMiT Technologies Full timeSummit Technologies, Inc. is seeking a Senior Information Systems Security Analyst to support our government client. Senior Information Systems Security Analyst support IT management with control assessment, development, and maintenance, and risk assessment and response development.This is a hybrid role based in Washington, DC. Candidates must be eligible...
-
Information Security Analyst
5 days ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
6 days ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Systems Security Manager/Officer
2 weeks ago
Washington, United States Watershed Security Full timeCOMPANY OVERVIEW Watershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment. We are growing fast and strive to deliver our vision every day: “To inspire trust and respect with our...
-
Information Systems Security Manager/Officer
4 weeks ago
Washington, United States Watershed Security Full timeJob DescriptionJob DescriptionCOMPANY OVERVIEWWatershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment. We are growing fast and strive to deliver our vision every day: “To inspire trust...
-
Information Security Analyst
1 day ago
Washington, Washington, D.C., United States RightDirection Technology Solutions Full timeRightDirection Technology Solutions LLCDescription:An Information Security Analyst is needed to support the Dept of State customer base and will work as a member of the Global Talent Management (GTM Help Desk) in Washington, DC. This role is full-time, standard work week and hours, and hybrid (one week a month onsite).The User Security team will establish,...
-
Washington, United States Associates Systems LLC Full timeInformation System Security Engineer (ISSE) Washington Navy Yard, DC Secret Clearance required Job details Perform, and/or review, technical security assessments of enclaves within network to identify points of vulnerability, non-compliance with established IA standards and regulations and recommend mitigation strategies. Validate and verify system security...