Sr Analyst, Info Security - TS/SCI Required

Job Description
Experience in secure coding principles
Familiarity with UNIX/LINUX Operating System concepts
Familiarity with TCP/IP Protocols and concepts
Knowledge of agile software/system development
Experience delivering operational mission systems
Experience with security trade studies and use case development
Ability to identify system design and operational vulnerabilities, and make recommendations to address deficient areas
Comply with customer security standards, community best practices and published benchmarks.
Experience organizing, as well as contributing to, the Assessment and Authorization (A&A) of information systems under a NIST compliant Risk Management Framework (e.g. DCID 6/3, ICD 503).
Familiarity with Risk Management Framework-based security controls and requirements.
Experience deriving security controls/requirements to provide technical criteria to system developers for successful implementation within the software/system development lifecycle
Hands-on experience with and ability to direct system administrators to securely configure systems per customer security standards, community best practices and benchmarks
Draft Certification Test Plans (CTP) with the ability to trace security controls to security test cases to demonstrate functional security compliance
Experience leading and conducting security testing activities using automated vulnerability assessment tools (i.e. ACAS/Nessus/SCAP compliant) and CTP to verify security requirement compliance
Experience drafting and updating security artifacts such as: CTP, Xacta, SSP, Security CONOP, Security Architecture, Privileged User's Guide (PUG), POA&M, SRTM, ISA, RMM etc.
Experience securing virtualization technologies to include virtual software, machines and appliances
Demonstrated leadership and project execution skills with ability to work under pressure and meet deadlines
Excellent written and oral communication skills, to include leading presentations and briefings to customer and/or program personnel
GDIT duties also include:
Performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction.
1. Performs Computer Security Incident Response activities for a large organization, coordinates with other government agencies to record and report incidents.
2. Monitor and analyze Intrusion Detection Systems (IDS) to identify security issues for remediation.
3. Recognizes potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information.
4. Evaluate firewall change requests and assess organizational risk.
5. Communicates alerts to agencies regarding intrusions and compromises to their network infrastructure, applications and operating systems.
6. Assists with implementation of counter-measures or mitigating controls.
7. Ensures the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices.
8. Performs periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and external Web integrity scans to determine compliance.
9. Prepares incident reports of analysis methodology and results.
10. Provides guidance and work leadership to less-experienced technical staff members.
11. Maintains current knowledge of relevant technology as assigned.
12. Participates in special projects as required.
Education
Bachelors Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.
Qualifications
5-8 years of related experience in data security administration.
Current Security + and or DoD 8570 security certification required
Current CISSP or CASP or GIAC security certification desired
As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors.With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.GDIT is an Equal Opportunity/Affirmative Action Employer - Minorities/Females/Protected Veterans/Individuals with Disabilities.
Options

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.

More Jobs

Cyber Security Auditor TS SCI Required Colorad...
Colorado Springs, CO General Dynamics Information Technology
Systems Integrator - TS/SCI required
Aurora, CO General Dynamics Information Technology
Systems Administrator - TS/SCI Required - Colo...
Colorado Springs, CO General Dynamics Information Technology
SCIS Security Officer - TS/SCI
Colorado Springs, CO Securitas Critical Infrastructure Services...
Info Security Analyst 2
Englewood, CO Wells Fargo