Enable job alerts via email!

Senior Information Security Analyst Fairfax, VA

JOB HR

Mississippi

On-site

USD 60,000 - 80,000

Full time

30+ days ago

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

Join a forward-thinking company as a Senior InfoSec Advisor, where you'll leverage your expertise to guide security initiatives and compliance efforts. In this role, you'll collaborate with senior-level stakeholders to enhance information security practices and lead validation efforts on security authorizations. Your leadership will drive the success of the InfoSec program, ensuring adherence to standards while fostering a culture of security awareness. If you're passionate about cybersecurity and ready to make a significant impact, this opportunity is perfect for you.

Qualifications

8 years of relevant IA experience, with a Bachelor's degree in IT or related field.
3+ years in a leadership role with excellent communication skills.

Responsibilities

Advise senior stakeholders on InfoSec initiatives and compliance.
Lead validation efforts on security authorization packages.

Skills

Leadership

Written Communication

Verbal Communication

Risk Management

Attention to Detail

Data Analysis

Problem Solving

Education

Bachelor’s degree in information technology

Advanced level cybersecurity certification

Tools

Telos Xacta

CSAM

RSA Archer

Job Responsibilities:

Advising senior-level stakeholders on InfoSec initiatives including compliance, awareness and training, and security operations.
Leading Independent Validation and Verification (IV&V) efforts on security authorization/ATO packages to ensure compliance with agency requirements.
Leveraging the existing Governance, Risk, and Compliance (GRC) tool, Telos Xacta (or an alternate like CSAM or RSA Archer), to track and reconcile findings from assessments, audits, and vulnerability scans.
Coordinating government data calls (FISMA, FMFIA, BDR, etc.) and monthly reports.
Assessing the effectiveness of the InfoSec and privacy training program and leading the collection, analyzing, and presentation of enterprise-level InfoSec performance metrics.
Managing InfoSec Program POA&Ms, including advising on remediation efforts.
Working closely with senior agency security officials, system owners, information system security officers (ISSOs) and other stakeholders to advise and implement security solutions.
Identify opportunities for efficiencies in work process and innovative approaches.
Participating in team problem solving efforts and offer ideas to solve client issues.
Conducting relevant research, data analysis, and developing reports.
Preparing and assisting in the development of policy and procedures.
Implementing processes and procedures to monitor risk across programs / projects.
Preparing briefings to the executive team to debrief the results of studies, analyses, and plans.
Assisting the client leadership in reviewing monthly project progress, documenting issues, and monitoring resolution.

Required Qualifications:

Bachelor’s degree in information technology or related field and 8 years of relevant IA experience. May substitute security certification (e.g. CISSP) for 2 years of experience.
3+ years in a leadership role.
Excellent written and verbal communication skills.
Possess in-depth knowledge of applying, selecting and testing the NIST 800-53 Rev 4 security controls.
Possess in-depth knowledge of NIST 800-37 Risk Management Framework.
Experience with a Governance, Risk and Compliance tool (e.g., Xacta, RSA Archer, CSAM or eMASS).
Excellent attention to detail.
Ability to handle and prioritize multiple tasks and deadlines.

Desired Qualifications:

Advanced level cybersecurity certification (e.g., CompTIA CISM, ISC2 CISSP).
In-depth knowledge of applying, selecting and testing the NIST 800-53 Rev 5 security controls.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.