DirectViz Solutions,(DVS) is a Service Disabled, Veteran-owned, Small Business (SDVOSB). We provide strategic IT services to meet mission requirements for our government clients. We are looking to hire a full-time Information Assurance Security Analyst. The work location will be White Sands Missile Range, N.M. This position requires an active Secret clearance.

JOB SUMMARY:
Provide Cyber / Information Assurance functions for unclassified and classified operations at the Center for Countermeasures (CCM), in Area of Responsibility (AOR) and in accordance with NIST RMF processes. Position will work alongside and report to the CCM designated Information
System Security Manager (ISSM).

ESSENTIAL DUTIES AND RESPONSIBILITIES:

• Categorizes, assess, select, and implement security controls.
• Provides authorization of information systems in AOR and provide continuous monitoring.
• Develops, maintain, and track the security plan for mission systems.
• Registers Information systems with appropriate DoD RMF Offices, and in accordance with RMF and eMASS directives.
• Performs RMF Lifecycle functions for mission systems.
• Selects and documents the security controls for the information systems in the system security plan.
• Conducts initial remediation actions on security controls based on the findings and recommendations of the security assessment reports.
• Reassess remediated controls as appropriate.
• Prepares Plans of Actions and Milestones (POA&Ms), based on the finding and recommendations of the security assessment reports.

• Conducts remediation actions based on the results of ongoing monitoring activities, perform ACAS scans and reports for uploading to eMASS.

• Assesses risk and outstanding items in the POA&Ms, update the system security plans, security assessment reports, and POA&Ms based on the results of continuous monitoring processes.

• Assembles security authorization packages and submit them to the Authorizing Official (AO)
• Provides network monitoring and scanning functions.
• Develops, edits and revises internal IA/Cyber documents/policies such as SSPs, ATOs, Waivers, ISAs, etc.
• Provides network vulnerability scanning to ensure IAVA compliance and remediation.
• Provides antivirus patch management using antivirus tools, prioritizing, deploying, and automating patches.

• Implements system security policies, scans and IAVAs for CCM.
• Provides Cybersecurity reporting requirements to appropriate authorities.
• Performs Security Technical Implementation Guides (STIGing) of systems as needed, in
• AOR, including documenting results, producing reports, and communicating with other technical personnel.Provides Tier 2 assistance for personnel / users needing information/assistance with Information Assurance (IA) and Cyber Security related issues.

• Works with team members to identify IA trends and suggests long-term strategies to help mitigate IA issues.
• Analyzes and evaluates risk and makes recommendations that are in compliance with all policies, rules and regulations governing IA functions.

REQUIRED KNOWLEDGE:

• Demonstrated knowledge of COTS software/hardware, and network products, including
• Windows OS, MS Office, Remedy, Firewalls, etc.
• Working knowledge of IAVA tools, including, ACAS, WSUS, HBSS, etc.
• Extensive knowledge of Information Assurance policies and procedures.
• Knowledge of RMF and eMASS controls to maintain required documentation such as appointment orders, Authority to Connect (ATC) and Authority to Operate (ATO) documentation, library of Army and other regulations relating to Information Assurance, etc.

REQUIRED EXPERIENCE/CERTIFICATIONS/CLEARANCE:

• Must be a U.S. Citizen.
• Must have Active Secret clearance on hire date and be eligible to submit for a TS/SCI.
• S degree in Information Technology or related field,relevant and equivalent experience may be substituted for degree requirement.

• 5-7 years of direct related Cyber/IA experience. 3-5 Years of ISSO experience is preferred.
• IAM Level II Certified Preferred, if not must be obtained within 6 months of hire date. The following certifications are acceptable: CAP/CASP+CE/CISM/CISSP/GSLC/CCISO/HCISPP.
• CompTIA Security+ at time of start if working on IAM Level II certification.
• Computing environment training, in accordance with DoD 8570.01.

DirectViz Solutions, LLC provides equal employment opportunity to all individuals regardless of race, color, creed, religion, gender, age, sexual orientation, national origin or ancestry, disability, genetic information, veteran status, gender identification or any other characteristic protected by state, federal or local law.