Job Location(s): Charleston, SC
George Consulting is looking for an Information Assurance (IA) Analyst with an understanding of FedRAMP to support a Department of Defense (DoD) research lab.
Roles and Responsibilities
The successful application will have familiarity with FedRAMP and NIST Special Publication 800-53. Duties include but are not limited to:
- Conduct Security Control Assessments that include writing assessment plans, conducting assessment interviews, conducting security control testing, reviewing security policies and procedures, and writing assessment reports
- Perform vulnerability scans utilizing tools such as SCAP Compliance Checker, STIG Viewer, and ACAS
- Validate security configuration of networks and computing assets against NIST guidance utilizing STIGs and other applicable policies
- Document security and configuration defects, and working with system integrators to provide a path to resolution
- Generate reports to provide senior and executive-level leadership with a complete and accurate picture of the security posture of their assets
- Assist senior team members with completing their duties, and provide guidance and instruction to junior team members on proper use of tools
- Able to collaborate with other contractor teammates and customers on a daily basis
- Able to work closely with customers to ensure deliverables meet their expectations and arrive in a timely manner
- Attend and actively participate in team meetings
THIS POSITION REQUIRES AN ACTIVE DEPARTMENT OF DEFENSE SECRET SECURITY CLEARANCE.
The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.
Required Skills & Experience:
- Bachelor’s Degree in Computer Science, Information Assurance, Information Security, or related field (or equivalent combination of education and experience) is required
- DoD 8570 IAT Level II (GSEC or Security+ce or SSCP or CCNA-Security) required to start work. CISSP desirable. Certification(s) must be current and candidate must be in good standing with the certifying organization
- Three (3) years minimum experience as an information assurance professional, with involvement in all facets of certification and accreditation including system design/review, STIG selection and application, vulnerability scanning, POA&M management, and creating/editing related documentation and reports
- Strong familiarity with FedRAMP and able to learn and adjust to new or modified requirement quickly
- Certified or possess formal course completion certificates in one or more of the following: CISCO CCENT, Routing and Switching, CCNP, CCNP Security, CCNA, CompTIA Linux+ or Server+, LPIC-1, LPIC-2, Microsoft Server 2008, Windows 7 Configuration (70-680 or 70-685), Exchange Server 2010, Server 2012, Oracle 11g Administrator, VMware Certified Professional, HBSS Administrator (provided by DISA)
- Working knowledge of standard DoD analysis tools such as SCAP Compliance Checker and STIG Viewer, in addition to manual STIG checklists
- Hands-on understanding of mandatory IA technologies such as HBSS and ACAS is desired
- Familiarity with navigating and inputting/updating data in online DoD/USN repositories such as eMASS and DITPR-DON/DADMS is desired
- Proficiency with MS Visio and network diagrams is strongly desired
George Consulting is committed to creating a diverse environment and is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.