SMS Data Products Group, Inc.
Information Assurance Security Analyst
SMS Data Products Group, Inc., San Antonio, Texas, United States, 78208
SMS is seeking an Information Assurance Security Analyst for our CCSD contract at Lackland AFB, San Antonio, TX to perform computer security incident response.
SMS is a recognized systems integrator delivering solutions to the federal government for over 45 years, supporting mission‑critical operations across the United States.
Responsibilities
Perform Computer Security Incident Response activities for a large organization; coordinates with other government agencies to record and report incidents in accordance with DoD, Air Force, and Local Operating Policies and Instructions.
Ensure that CCSD networked systems, RDT&E, and standalone systems and programs comply with AFI 17-101 and appropriate local Operating Instructions, which provides lifecycle management for Information Assurance (IA) and other critical systems.
Analyze complex network and IA systems in unclassified and classified environments for compliance with DoD and industry best practice security configuration requirements.
Write Standard Operating Procedures (SOP), COOP, Configurations, and other documentation in support of RMF as required.
Provide technical evaluation of proposed system(s) and application approaches.
Validate Information Assurance (IA) Controls.
Assist the Government with various IA, Security, EMSEC and other inspections.
Assist with the destruction of classified media.
Qualifications
Three to five years of progressively responsible IT security consulting experience on government contracts.
Must have eMASS experience.
Must have experience creating RMF packages that demonstrate compliance with RMF controls.
Must have strong understanding of NIST SP 800-37 (RMF for IT Systems).
Must have demonstrated STIG analysis experience (candidate must be able to interpret them, assess systems for compliance, and document findings in the ATO packages) and knowledge of STIG tools.
Qualified candidates must have high degree of skills with the MS Office toolsets.
Knowledge and experience in the certification and accreditation processes that require knowledge of DoD Guidance (DoDD 8500.1, DoDI 8500.2, 8520, AR 25‑2), DITSCAP, RMF, Air Force Best Business Practices (BBP) and information assurance and auditing.
Knowledge and experience in C&A workflow in accordance with RMF requirements, preparation of system‑related RMF artifacts, system security engineering, preparation of security test plans and their execution, remediation of system vulnerabilities, and preparation of IA documentation including PPS matrix, POA&M and system security plans.
Candidate must possess refined critical thinking skills, should be a self‑starter, may direct the activities of other team members, diplomatic, multitask capable, adaptive to a dynamic environment, dependable and reliable.
Strong verbal and written communication skills as well as the ability to work independently as required.
Clearance
DoD Top Secret/SCI is required.
Required Certification
CompTIA Security+CE
SMS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
#J-18808-Ljbffr
SMS is a recognized systems integrator delivering solutions to the federal government for over 45 years, supporting mission‑critical operations across the United States.
Responsibilities
Perform Computer Security Incident Response activities for a large organization; coordinates with other government agencies to record and report incidents in accordance with DoD, Air Force, and Local Operating Policies and Instructions.
Ensure that CCSD networked systems, RDT&E, and standalone systems and programs comply with AFI 17-101 and appropriate local Operating Instructions, which provides lifecycle management for Information Assurance (IA) and other critical systems.
Analyze complex network and IA systems in unclassified and classified environments for compliance with DoD and industry best practice security configuration requirements.
Write Standard Operating Procedures (SOP), COOP, Configurations, and other documentation in support of RMF as required.
Provide technical evaluation of proposed system(s) and application approaches.
Validate Information Assurance (IA) Controls.
Assist the Government with various IA, Security, EMSEC and other inspections.
Assist with the destruction of classified media.
Qualifications
Three to five years of progressively responsible IT security consulting experience on government contracts.
Must have eMASS experience.
Must have experience creating RMF packages that demonstrate compliance with RMF controls.
Must have strong understanding of NIST SP 800-37 (RMF for IT Systems).
Must have demonstrated STIG analysis experience (candidate must be able to interpret them, assess systems for compliance, and document findings in the ATO packages) and knowledge of STIG tools.
Qualified candidates must have high degree of skills with the MS Office toolsets.
Knowledge and experience in the certification and accreditation processes that require knowledge of DoD Guidance (DoDD 8500.1, DoDI 8500.2, 8520, AR 25‑2), DITSCAP, RMF, Air Force Best Business Practices (BBP) and information assurance and auditing.
Knowledge and experience in C&A workflow in accordance with RMF requirements, preparation of system‑related RMF artifacts, system security engineering, preparation of security test plans and their execution, remediation of system vulnerabilities, and preparation of IA documentation including PPS matrix, POA&M and system security plans.
Candidate must possess refined critical thinking skills, should be a self‑starter, may direct the activities of other team members, diplomatic, multitask capable, adaptive to a dynamic environment, dependable and reliable.
Strong verbal and written communication skills as well as the ability to work independently as required.
Clearance
DoD Top Secret/SCI is required.
Required Certification
CompTIA Security+CE
SMS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
#J-18808-Ljbffr