Enterprise Solutions and Management (ESM) is a rapidly growing government contractor that provides strategic IT services that meet mission needs for Defense and Federal customers. We are hiring a
Senior Information Security Analyst for an exciting opportunity located in
Washington DC. This work will be performed Remotely. Job Description and Responsibilities ESM is looking for a full-time
Senior Information Security Analyst who demonstrates the following capabilities and satisfies the Minimum Qualifications, Clearance, and Certification requirements. Employee responsibilities include:
- Expertise in Federal Information Security Modernization Act (FISMA) compliance and Risk Management Framework (RMF) implementation.
- Develop and maintain Cybersecurity Policy program documentation to include, process, workflows, standard operating procedures, communication, and program management plan, etc. This includes organizational-wide communication and awareness support for all Cybersecurity policies, instructions, technical standards, and implementation guidance in sufficient detail for Department stakeholders to understand how to implement Cybersecurity requirements, standards, and policies within their respective environments.
- Develop, implement, manage, coordinate, manage, lead, and conduct any and all actions to support existing or new monthly Department Cybersecurity Policy Working Groups (PWGs). This includes the facilitation between Department groups, committees, and critical stakeholders to foster, develop, and design strategies, use case concepts, etc. to increase actions that advance Cybersecurity policy development across the Department's enterprise.
- Align with NIST 800-100, SP 800-53r5 (or newer/as amended), proactively review, update, maintain, coordinate, disseminate, and if required - develop new enterprise-wide cybersecurity policies, instructions, standards, technical standards, and implementation guidance for the design, and implementation of Cybersecurity controls within Department information systems.
- Provide support to Cybersecurity strategic planning roadmap tasks and the development of documents, plans, and program artifacts intended to mature the enterprise cyber and policy development program. Integrate existing strategies identified in the existing documentation and guidance such as the Department's Cybersecurity Strategy and Implementation Plan, Information Resource Management Plan, Information Security Continuous Monitoring Roadmap (ISCM), and the Modernization Plan IT Infrastructure.
Required Knowledge, Skills and Abilities (KSA) - 10+ years of experience performing roles in drafting/developing/interpreting policies, program strategy, methodology, and/or procedures, with two years specializing in Risk Management, IT acquisitions, and/or Cybersecurity Risk Assessments.
- Knowledge of NIST (National Institute of Standards and Technology) standards, Federal Information Processing Standards (FIPS), Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) Directives, Executive Orders (EOs), Continuous Diagnostics and Mitigation (CDM), Identity, Credential, and Access Management (ICAM), multi-factor authentication (MFA)/Data and Rest (DAR)/Data in Transit (DIT), and Information Security Continuous Monitoring (ISCM) capabilities.
Desired KSA - Be a positive, self-motivated, and proactive person with the ability to adapt to change and tolerate stressful situations.
- Candidate must communicate effectively with team members, team lead, management, and government customer.
- Must have the ability and desire to research and develop creative solutions to unique problems with minimal supervision.
Minimum Training, Education, and Certifications - One of more of the following Professional Certifications: CISSP, CISM, CISA, CDPSE, CRISC
Minimum Clearance - Ability to obtain and maintain Public Trust clearance.
Physical Requirements - Required to stand, walk and sit; communicate verbally both in person and by telephone; use hands to finger, handle or feel objects or controls; reach with hands and arms. May occasionally be required to stoop, kneel, bend, crouch and lift up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, color vision and the ability to adjust focus.
Additional Requirements - Other duties as assigned.
ESM provides equal employment opportunity to all individuals regardless of race, color, creed, religion, gender, age, sexual orientation, national origin or ancestry, disability, genetic information, veteran status, gender identification or any other characteristic protected by state, federal or local law.