CyberSecurity Analyst Job# JSYTR0135
Location: NW Washington, DC
Clearance: Active Secret
Job Type: Full-Time (no consultants)
Agency: Dept of Treasury
Seeking a security analyst to be a member of the Office of the Chief Information Officer (OCIO) CyberSecurity team. This is supporting the Information System Security Manager and multiple Information System Security Officers (ISSO) to maintain FISMA compliance across nine (9) HR Line of Business systems (both government and contractor operated). Day-to-day activities included reviewing/updating Security Assessment and Authorization package documentation, tracking system and application weaknesses through established vulnerability/POA&M management process; performing Security Impact Analyses of proposed changes, and developing/updating security policies and procedures.
The security analyst must possess a detailed knowledge of security NIST analysis methodologies of threats and vulnerabilities. The security analyst will be able to expertly develop and document customer security requirements and policies. Skills will also include analysis of Information Systems architecture, identification of security flaws, and review of system data to identify security events and trends. The security analyst will also have an in-depth of federal and commercial regulations governing information security (FISMA, NIST Special Publications, HIPAA, Sarbanes-Oxley, etc.).
Education & Experience: Individual must have a BA/BS degree in a related discipline and six (6) years direct experience. Nine (9) years direct experience along with industry-recognized certifications such as CISSP, GCIA, etc. may be substituted for educational requirements. Advanced degrees related to computer science may also be substituted for some educational and tenure requirements.
System Accreditation Process, Risk Management Framework
Develop System Security Plans
Track Plan of Actions and Milestones (PO&AM)
Oversee All Aspects Accreditation Activities