Information Security Analyst, Journeyman (PMA-271)

Position Title: Information Security Analyst, Journeyman (PMA-271) 

Position Type: Exempt

Requisition #: 130

Location: Pax River, MD (on-site 90%)

Clearance Level Required: A minimum of SECRET, with the ability to obtain Top-Secret Security Clearance 

Davis Defense Group, Inc. has secured a stellar reputation as one of the premier Women-Owned Small Business (WOSB) in the aerospace and defense industry, steadfastly supporting the Department of Defense since 2002. A critical combination of vision and dedication to excellence has helped our customers achieve numerous significant milestones on schedule and within budget. Today we employ over 700 personnel around the globe in a mix of analytical, advisory, technical, and support positions. The common thread across our organization is our commitment to our customers and an unwavering dedication to our principle motto: “Services you need. Integrity you can count on.”

Functional Description: 

As an Information Security Analyst, ensure the compliance with DoD cybersecurity policy and technical cybersecurity solutions. Work within USSTRATCOM or Nuclear, Command, Control, and Communications (NC3) cybersecurity methodologies. Lead or participate on teams to achieve and maintain system ATO and other applicable cybersecurity policy. Regularly interact with senior leadership, information technology professionals, IPT Leads, and other stakeholders. The Information Security Analyst works in a fast-paced office environment that demands attention to detail, professionalism, and leadership.

• Support the certification process and testing in accordance with the Risk Management Framework (RMF) and National Institute of Standards and Technology (NIST) policy.
• Provide the analysis and evaluation to design, implement, test and field secure systems, networks, and architectures. 
• Enforce information systems security policies ensuring system security requirements are addressed during all phases of the Information System (IS) life cycle. 
• Evaluate and recommend actions in the prioritization and deconfliction of system security engineering requirements. 
• Identify vulnerabilities and deficiencies and provide recommended actions and risk mitigation steps. 
• Implement and ensure information systems security policies and security requirements are addressed during all phases of the acquisition and Information System (IS) lifecycle. 
• Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. 
• Assess system vulnerabilities for security risks and propose and implement risk mitigation strategies. 
• Assist the government in preparing documentation supporting Authority to Operate (ATO) requirements for developmental hardware, software, and facilities. Support system security engineering, integration management solutions, mitigation strategies to reduce cyber-attacks risk. 
• Track and monitor Plan of Action and Milestones (POA&Ms) for IT system accreditations.

Responsibilities: 

• Responsible for computer network, systems, and information security. 
• Assess new technologies for integration into multiple enterprise systems. 
• Prepare RMF documentation for HW, SW, and facilities. 
• Assess system vulnerabilities and develop strategies to mitigate risk. 
• May respond to computer security breaches and viruses. 

Required Experience: 

At least 3 years of combined experience described in the functional description. 

Desired Experience: 

• Experienced in the design, analysis and fielding of secure system architectures, software and networks. 
• Advanced knowledge of DOD Risk Management Framework (RMF). 
• Advanced knowledge of DOD cybersecurity policy or technical cybersecurity solutions. 
• Experience with CISCO routers and switches. Experience with Windows and Linux operating systems. 
• Demonstrated work Experience with usage of Assurance Compliance Assessment Solution (ACAS).
• Demonstrate work experience with mitigating STIG findings and/or assistance with mitigation statements.  
• Experience with Enterprise Mission Assurance Support System (eMASS). 
• Experience with Vulnerability Remediation Asset Manager (VRMAM).
• Experience with Microsoft Office Tools including Word, Excel, PowerPoint and Visio.

Education Requirements:

• Minimum of 3 years of combined experience performing duties described in the functional description. 
• BA/BS degree.
• Four (4) years additional work experience performing duties described in the functional description of the labor category may be substituted for a Bachelor’s Degree.
• Level 2 certifications (IAM II and or IAT II) under DoD 8570 and DoD 8140 (or ability to obtain within 6 months of filling the position).

When we review candidates' information, we are looking for the best matches for the position based on the qualifications listed in the job posting. If your skills and experience appear to match an open position, a recruitment services professional or a hiring manager may contact you. 

Davis Defense Group, Inc. is committed to maintaining the highest standards of professionalism, integrity and efficiency in our recruitment and hiring processes. As part of our dedication to these values, DDG does not engage with or entertain the services of third-party recruiting agencies for our staffing needs. Thank you for your understanding and cooperation. 

Davis Defense Group, Inc. is an Equal Employment Opportunity and Affirmative Action employer. It is the policy of the company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation and gender identity or expression, national origin or protected veteran status and will not be discriminated against on the basis of disability. If you are a qualified disabled veteran or individual with a disability and need reasonable accommodation to use or access our online system, please contact our Human Resources department at (540) 548-5950.