Systems Security Analyst, Senior

Overview

AbleVets, LLC, A Cerner Company, provides healthcare information technology services and resources to help the Veterans Affairs (VA) and Department of Defense (DoD) improve the lives of the people they serve. AbleVets has an opportunity available for a motivated Systems Security Analyst Senior to support our VA customer. The position is located in Chantilly, VA with telework options available at manager’s discretion.

Responsibilities

The Systems Security Analyst, Senior will be responsible for providing Information Assurance and Cybersecurity support to the VA. Duties and responsibilities may include, but are not limited to:

  • Knowledge of taskings and delivering assignments to the team
  • Responsible for managing and leading a cross functional team
  • Implement the Cyber Security requirements of IT systems and applications documenting them in formal security engineering documents using the Risk Management Framework and supporting artifacts associated with risk assessments.
  • Ability to perform a security analysis to determine gap, compensating/mitigating controls, and residual risk
  • Identify security risks through the security impact analysis, system risk assessments and technology security risk report.
  • Implement IT security solutions and assures successful implementation
  • Apply knowledge of security principles, policy, and regulations to daily tasking
  • Conduct security compliance evaluations on IT products using all-source analysis, test lab, and apply test results to create secure configuration guidelines and baselines.
  • Analyze security evaluation tools results from Tenable Nessus, Nmap, Wireshark and Metasploit
  • Assess operating system and security configuration guideline into images for IT products initialization and deployment within the infrastructure
  • Apply knowledge of security principles, policy, and regulations to daily tasking
  • Experience working in the FedRAMP cloud environment understanding IaaS, PaaS, and SaaS regarding cloud service provider security control responsibilities and customer responsibilities
  • Organize, develop, and present security briefings, written summaries, and written reports incorporating narrative, tabular and/or graphic elements on security assessments, whitepapers relating to computer and network security technologies and tools.
  • Effectively and efficiently communicate and collaborate with external and internal customers of any hardware and software configuration changes that adversely affect any current system security and their configurations or violates policy

Qualifications

  • Bachelor’s Degree in Computer Science, Electronics Engineering, or other engineering or technical discipline and at least (10) years of related experience.  An additional six (6) years of experience may be substituted for degree requirement.
  • At least five (5) years of related experience, including experience with:
    • Networking concepts, protocols and security methodologies
    • NIST 800-53rev4, NIST 800-37; FISMA, and FedRAMP requirements
    • Resource management principles and techniques to meet deliverables deadlines efficiently to provide quality products.
    • DISA Security Requirements Guides (SRGs), Security Technical Implementation Guide (STIGs), and Center for Internet Security (CIS) Benchmarks
  • Must have technical knowledge using network security scanners, SCAP scans, and vulnerability scanners.
  • Experience with Risk Management Framework RMF and Assess & Authorize A&A vs C&A
  • One or a combination of the following experience in administration/engineering of operating systems, database systems, and network systems
  • Expert technical knowledge of risk management, and information security concepts and technologies
  • Experience with Cyber Security document management and familiar with security and privacy rules
  • Excellent verbal communication skills
  • Excellent written skills for preparing reports and briefings
  • Excellent analytical and problem-solving skills
  • Ability to facilitate and coordinate efforts with key government and non-government stakeholders
  • Self-starter that can work under general direction in a highly collaborative, team-based environment
  • Ability to obtain a Public Trust clearance
PREFERRED/DESIRED SKILLS:
  • Cloud experience is desired, AWS or Azure
  • Previous Government contracting work experience
  • CISSP, ISSEP, CCSP certification

EEO Statement

AbleVets LLC appreciates your interest in our company as a place of employment.  We are proud to be an equal opportunity/affirmative action employer and are committed to hiring and retaining a diverse workforce.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability, veteran status, or any other protected class.  AbleVets is a VEVRAA Federal Contractor. 


See Inside the Office of AbleVets


Back to top