Current jobs related to Information Systems Security Analyst - Falls Church - CTAC
-
Information Systems Security Analyst
4 weeks ago
Falls Church, United States CTAC Full timeJob TitleInformation Systems Security Analyst# of Hires Needed1Date Needed By1/30/2026CategoryInformation TechnologyEducationBachelor's DegreeCareer LevelExperienced (Non-Manager)Job TypeFull-timeLocationCTAC HQ - Falls Church, VA 22042 US (Primary)Travel0 - 10%Job DescriptionCTAC is seeking an experienced Information Systems Security Analyst to support a...
-
Information Systems Security Analyst
22 hours ago
Falls Church, United States CTAC Full timeJob Description CTAC is seeking an experienced Information Systems Security Analyst to support a federal program focused on achieving and sustaining an Authority to Operate (ATO) for a complex, multi-tenant AWS cloud environment. This role is a key member of CTAC’s federal delivery team and is responsible for executing Risk Management Framework (RMF)...
-
Senior Information Security Analyst
2 weeks ago
Falls Church, United States Mindlance Full timeA consulting firm in Falls Church, Virginia, seeks an experienced Information Security Analyst to consult on complex initiatives and challenges. The role requires a strong understanding of Information Security Analysis concepts, with at least 4 years of related experience. Successful candidates will collaborate closely with client personnel to resolve...
-
Information Systems Security Engineer
15 hours ago
Falls Church, United States ClearanceJobs Full timedivh2Senior Level Career In It Security/h2pTS/SCI with Favorable Polygraph is required for this position. In this role, you will ensure security guidelines and configurations are followed in the design and implementation of IT services. You will provide solutions to complex information systems based upon the user, policy, regulatory, and resource...
-
Falls Church, United States Pinnacle Government Solutions LLC Full timeWe are looking for an Information Systems Security Engineer to support our client in defining security requirements, and advise on, execute, and oversee cybersecurity, information assurance (IA) programs, authority to operate (ATO), accreditation and authorization (A&A), User Activity Monitoring (UAM), and system security plans. Responsibilities: Lead...
-
Hybrid Oracle ERP Security
1 week ago
Falls Church, United States Apex Systems Full timeA prominent technology firm is seeking a skilled Risk and Compliance Systems Analyst to enhance security and compliance within their Finance Technology Security and Controls team. Candidates should have expertise in Oracle ERP Fusion Security and hands-on experience with Risk Management Cloud. The ideal candidate will be responsible for user access reviews,...
-
Information System Security Engineer
7 days ago
Falls Church, United States ClearanceJobs Full timedivh2Isse For A Dod Program In Mclean, Va/h2pCdt is seeking an experienced and skilled Isse for a dod program in mclean, va. This position is hands-on technical and will provide on-site security engineering, systems administration, and information assurance support to the program. Clearance requirements: an active secret is required, top secret is preferred....
-
Healthcare Systems Analyst
7 days ago
Falls Church, United States Aegis Corps Full timeJoin to apply for the Healthcare Systems Analyst role at Aegis Corps, Inc. 1 year ago Be among the first 25 applicants Join to apply for the Healthcare Systems Analyst role at Aegis Corps, Inc. Get AI-powered advice on this job and more exclusive features. ACI is seeking a Health Care Systems Analyst to join our team. We provide data analytics using daily,...
-
Security Systems Engineer
1 week ago
Falls Church, VA, United States BAE Systems USA Full timeJob Description Design, prototype and support security-related infrastructure and applications. Identify and mitigate security risks to network and systems. Architect, develop and engineer enterprise security tools which may be COTS or open source. Possess the ability to learn new technologies to adapt to the threat landscape. Engineering duties and...
-
Security Systems Engineer
2 weeks ago
Falls Church, VA, United States BAE Systems USA Full timeJob Description Design, prototype and support security-related infrastructure and applications. Identify and mitigate security risks to network and systems. Architect, develop and engineer enterprise security tools which may be COTS or open source. Possess the ability to learn new technologies to adapt to the threat landscape. Engineering duties and...
Information Systems Security Analyst
20 hours ago
Information Systems Security Analyst – CTAC CTAC is seeking an experienced Information Systems Security Analyst to support a federal program focused on achieving and sustaining an Authority to Operate (ATO) for a complex, multi‑tenant AWS cloud environment. This role is a key member of CTAC's federal delivery team and is responsible for executing Risk Management Framework (RMF) activities across the full NIST lifecycle, with a strong emphasis on control validation, documentation, evidence development, and assessor engagement. Key Responsibilities Execute and support the full NIST RMF lifecycle (Categorize, Select, Implement, Assess, Authorize, Monitor) for ORNL's AWS multi‑tenant platform. Perform control‑by‑control gap analysis against NIST SP 800‑53, identifying incomplete, partially implemented, or undocumented controls. Develop, update, and maintain RMF artifacts, including System Security Plan (SSP), control implementation narratives, POA&M, continuous monitoring documentation, and objective evidence mappings. Partner closely with cloud architects and engineers to validate technical control implementations and support remediation activities within AWS. Support assessment and authorization activities, including direct engagement with assessors, auditors, and ORNL security stakeholders. Track, document, and manage risks, findings, and remediation activities in accordance with federal RMF expectations. Ensure security documentation accurately reflects the operational state of the environment and remains audit‑ready throughout the engagement. Support the use of governance, risk, and compliance (GRC) tools (eMASS, Kion, or equivalent) to manage controls, evidence, and reporting. Contribute to sprint planning and execution by aligning RMF activities with engineering and documentation deliverables. Assist in the development or refinement of security policies, procedures, and standards where gaps exist. Provide subject matter expertise on federal security requirements, best practices, and emerging guidance relevant to cloud‑hosted systems. Job Requirements Bachelor's degree in Information Security, Cybersecurity, Information Technology, or a related discipline (or equivalent experience). 10+ years of progressive experience in cybersecurity, information assurance, or RMF‑focused security roles supporting federal systems. Demonstrated hands‑on experience supporting ATO packages for federal cloud or hybrid environments. Deep working knowledge of NIST SP 800‑53, NIST SP 800‑37, FISMA requirements, and federal A&A processes. Strong experience developing and maintaining SSPs, POA&Ms, and RMF evidence. Experience working with cloud (Amazon Web Services) security environments, including validation of technical control implementations. Ability to clearly document complex technical and compliance concepts for both technical and non‑technical audiences. Proven ability to collaborate across engineering, security, and program management teams. Strong analytical, organizational, and communication skills. Ability to obtain and maintain a Public Trust (or higher) clearance. Preferred Qualifications Master's degree in Cybersecurity, Information Systems, or a related field. Active CISSP and/or CISM certification. Experience supporting multi‑tenant cloud platforms and control inheritance models. Familiarity with Infrastructure as Code (IaC) concepts and how automation supports compliance. Experience supporting federal research, scientific, or mission‑driven environments. Prior experience working in agile or sprint‑based delivery models for RMF execution. CTAC is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, sexual orientation, gender identity, national origin, disability, or protected veteran status. VEVRAA Federal Contractor #J-18808-Ljbffr
