CompQsoft
Senior Information Assurance (IA) Analyst.
CompQsoft, Fort George Meade, Maryland, United States
Apply Description
Title: Senior Information Assurance (IA) Analyst.
Location: Fort Meade MD
Clearance required: Secret Clearance
Certification required by project: IAT Level 2
Requirements
Examine internal IT controls, evaluate the design and operational effectiveness, determine exposure to risk and develop remediation strategies for System Administrator (SA) implementation. Assist SAs in troubleshooting security and network problems. Experience using ACAS or Similar tools is Must Plan, implement, monitor and upgrade security measures for the protection of the organization's data, systems and networks. Test and identify network and system vulnerabilities and assist in creating counteractive strategies to protect the network. Conduct efficient and effective IT audit procedures. Prepare briefings for SUBMEPP management and employees to be delivered in the weekly status report. Perform regular audit testing and provide recommendations to SAs to help resolve findings. Review, evaluate and test application controls. Provide recommendations and guidance on identified security and control risks. Complete and report for Federal Information Security Management Act (FISMA) compliance. Work to ensure entries are maintained in the DoD IT Portfolio Repository (DITPR) Document for quarterly updates. Prepare and submit DoD Risk Management Framework (RMF) packages quarterly depending on the package status Review and monitor system security posture and requirements primarily outlined but not limited to CTOs, TASKORD, OPORD, IAVs, STIGs and other downward directed orders for system hardening
Examine internal IT controls, evaluate the design and operational effectiveness, determine exposure to risk and develop remediation strategies for System Administrator (SA) implementation. Assist SAs in troubleshooting security and network problems. Experience using ACAS or Similar tools is Must Plan, implement, monitor and upgrade security measures for the protection of the organization's data, systems and networks. Test and identify network and system vulnerabilities and assist in creating counteractive strategies to protect the network. Conduct efficient and effective IT audit procedures. Prepare briefings for SUBMEPP management and employees to be delivered in the weekly status report. Perform regular audit testing and provide recommendations to SAs to help resolve findings. Review, evaluate and test application controls. Provide recommendations and guidance on identified security and control risks. Complete and report for Federal Information Security Management Act (FISMA) compliance. Work to ensure entries are maintained in the DoD IT Portfolio Repository (DITPR) Document for quarterly updates. Prepare and submit DoD Risk Management Framework (RMF) packages quarterly depending on the package status Review and monitor system security posture and requirements primarily outlined but not limited to CTOs, TASKORD, OPORD, IAVs, STIGs and other downward directed orders for system hardening