Title: Information Security Analyst
Position Location: Northern VA / NCR
Clearance Required: Secret (DHS suitability)
Working independently, the incumbent will perform the following tasks:
Security Architecture Reviews (SAR). Upon receipt of project manager tasking, the incumbent will review existing high-value asset (HVA) architecture and design and identify areas which warrant improvement or strengthening in order to enhance the overall security posture of the HVA. The SAR assessment team consists of 1-2 Government lead assessors and one contractor. The team will conduct an initial on-site inbriefing and technical exchange meeting (TEM) to identify the existing system architecture. The incumbent will review the TEM findings and all provided documentation, including architecture diagrams and risk assessment products, to perform analysis of the HVA. A report of findings will be completed for each SAR.
Information System Continuous Monitoring (ISCM) Assessment. Upon receipt of project manager tasking, the incumbent will perform a staff-assistance visit to evaluate the overall effectiveness of the agency ISCM program. Assessment processes include both document review and personnel interviews. The purpose of the assessment is to validate an agency’s ISCM program and to provide assistance in remediating ISCM gaps.
Federal Incident Response Evaluation (FIRE). Upon receipt of project manager tasking, the incumbent will perform an agency incident response evaluation using the guidelines published in the FIRE Assessor workbook.
Methodology Updates. Upon completion of assessments and as directed, the incumbent will perform process reviews and updates