InfoSec Policy Analyst

Type of Requisition: Regular

Clearance Level Must Currently Possess: None

Clearance Level Must Be Able to Obtain: None

Public Trust/Other Required: None

Job Family: Cyber Security

Job Qualifications:

• Skills: Security Controls, Security Policies, Security Risk, Security Risk Management
• Certifications: None
• Experience: 3+ years of related experience
• US Citizenship Required: No

Job Description:

GDIT is seeking an Information Security Analyst with advanced knowledge of IT security risk management activities under the Risk Management Framework (NIST 800-53, etc.). This role supports GDIT’s contract with the Administrative Office of United States Courts – Administrative Office Technology Office (AOUSC-AOTO) in Washington DC.

The successful candidate will collaborate with the contractor team and government clients to develop and implement security solutions that meet security requirements. Key responsibilities include:

• Developing and analyzing Judiciary information system security plans (SSP) aligned with the Judiciary Information Security Framework (JISF) based on NIST standards.
• Assisting with O&M activities related to the vulnerability management program at AOTO, including stakeholder communication and POA&M management.
• Using CSAM for Security Assessment & Authorization (SA&A) management.
• Applying expertise in computer security controls, principles, and tools for system certification, accreditation, disaster recovery, business continuity, and risk management.
• Ensuring integration of IT programs and developing solutions for interoperability issues.
• Creating and implementing security policies and procedures in compliance with Judiciary and AOTO guidelines.
• Working with various program offices and customers throughout the system lifecycle to incorporate security considerations and training.
• Evaluating security controls through vendor documentation and hands-on assessments, serving as a Subject Matter Expert (SME).
• Staying current with INFOSEC standards, principles, and policies.
• Representing AOTO-IT Security in project meetings and working groups, maintaining knowledge of security architecture and requirements.
• Collaborating with management and teams across departments.
• Serving as an INFOSEC Compliance Analyst to ensure the confidentiality, integrity, and availability of Judiciary information systems.
• Providing expertise on security architecture, emerging technologies, and security concepts.
• Performing additional duties as assigned.

Required Skills:

• At least 3 years of experience at a Federal Agency (preferably Executive Branch) with NIST 800 Series publications as a Risk Management Framework SME.
• At least 8 years of progressive IT experience, including 5 years in IT security policy, certification, and accreditation, preferably supporting the Federal Government.
• Mastery knowledge of security controls, system security plans, and security principles.
• Expertise in applying government standards, including NIST SP 800-37 and NIST 800-53.
• Understanding of security standards such as NIST and Federal requirements.
• Knowledge of hardware, software, and telecommunications security best practices.
• Strong understanding of Judiciary Information Security Framework (JISF) compliance activities.
• Skills in risk management methods and tools for vulnerability assessment.
• Technical knowledge of secure IT program integration across multiple locations and platforms.
• Management and auditing skills for problem-solving and process improvement.
• Judgment and resourcefulness in resolving complex security issues.
• Excellent research, communication, and interpersonal skills.

Education/Certifications:

• Bachelor’s degree required; master’s preferred.
• Industry certifications such as CISSP, GIAC, etc.

The salary range is approximately $121,680 - $149,500, based on experience, location, and contractual factors. This is not guaranteed and may vary.

Scheduled Weekly Hours: 40

Travel Required: None

Telecommuting Options: Remote

Work Location: Washington, DC, USA

Additional Work Locations:

Total Rewards at GDIT:

Our benefits include medical, dental, vision, 401(k), paid time off, disability, life insurance, and more. We value work/life balance and offer flexible work arrangements. Join us to be part of a global leader in technology and professional services, working across various domains to create a safer, smarter world. Stay updated on opportunities at gdit.com/tc.

GDIT is an Equal Opportunity Employer / Protected Veterans / Individuals with Disabilities.