Information System Security Officer (ISSO)

Information Security Analyst Senior

Transform technology into opportunity as an Information Security Analyst Senior with GDIT. A career in enterprise IT means connecting and enhancing the systems that matter most. At GDIT you’ll be at the forefront of innovation and play a meaningful part in improving how agencies operate.

At GDIT, people are our differentiator. As an Information Security Analyst Senior, you will help ensure today is safe and tomorrow is smarter. Our work depends on Information Security Analyst Senior joining our team to support the Risk Management Framework (RMF) for USSOUTHCOM.

HOW AN INFORMATION SECURITY ANALYST SENIOR WILL MAKE AN IMPACT
•    Support Command Cyber Readiness Inspections (CCRI) and Risk Management Framework (RMF) mission sets
•    Assess and upload RMF documentation into the Enterprise Mission Assurance Support Service (eMASS) portal
•    Develop and sustain RMF Assessment and Authorization (A&A) eMASS packages to maintain Authorization to Operate (ATO) for A&A and Authorization to Use (ATU) for Reciprocity
•    Assess security controls and documents in the Risk Management Framework (RMF) eMASS package, to include: the SSP, SAR, PIA, Categorization Form, Implementation Plan, Network Topology, HW/SW Listing, and Plan of Actions and Milestones (POA&Ms)
•    Correspond with Government customer and system administrators to communicate any unacceptable risks identified and correct deficient RMF POA&M to meet Army and DoD standards
•    Develop and submit Plans of Action and Milestones (POA&Ms)
•    Develop System Security Plans (SSP) for all A&A packages
•    Review and update all SOPs to be used as compelling evidence
•    Support Cybersecurity IT internal and embedded inspection teams
•    Review Assured Compliance Assessment Solution (ACAS) scan reports to ensure security updates are being implemented
•    Ensure DISA STIGs are implemented and enforced
•    Perform enterprise-wide risk analysis and vulnerability assessments

WHAT YOU’LL NEED TO SUCCEED:
• Bachelor’s in Computer Science, Information Management or related field and 3 years of practical computer security experience in secure networks and systems design, analysis, procedure/test generation, test execution and implementation of computer/network security mechanisms -OR- HS/GED and 7 years of practical computer security experience in secure networks and systems design, analysis, procedure/test generation, test execution and implementation of computer/network security mechanisms
• 3+ years of experience with DoD information assurance policy
• 3+ years of experience with developing and presenting technical information and presentations to non-technical audiences and clients
• Experience with RMF process and POA&M tracking and resolution
• Experience with NIST publications, DoD 8500 series, AR 25-2, AR 380-5, AR 380-40, FIPS
• DoD 8140 Compliant, such as CAP, CASP, CISSP, GSLC, or CISM
• Experience with the Enterprise Mission Assurance Support Service (eMASS)

GDIT IS YOUR PLACE:
● 401K with company match
● Comprehensive health and wellness packages
● Internal mobility team dedicated to helping you own your career
● Professional growth opportunities including paid education and certifications
● Cutting-edge technology you can learn from
● Rest and recharge with paid vacation and holidays