Triumph Enterprises--Corporate Headquarters

Returning Candidate?

Information Security FISMA Analyst - Senior

Information Security FISMA Analyst - Senior

Job ID 
2018-2083
Location 
US-MD-Bethesda
Posted Date 
1/25/2018
Category 
Government/Defense

More information about this job

Job Description

ATTENTION:   Information Security FISMA Analyst - Senior

 

Triumph Enterprises is currently looking for an Information Security FISMA Analyst - Senior.

 

The ideal candidate for this position is a security professional with experience in implementing and communicating Federal Information Security Modernization Act (FISMA) compliance for the Federal government.  The Analyst is responsible for helping to build and mature the agency’s Information Security Program by focusing on the Risk Management and Security Authorization activities in accordance with the applicable National Institute of Standards and Technology (NIST) 800 series guidelines and the Federal Information Processing Standards (FIPS).  The Analyst will report to the Team Lead and perform and manage tasks related to the entire Assessment and Authorization (A&A) lifecycle.

 

Beyond your technical expertise (outlined below), you must be resourceful, detail-oriented, and 100% client focused, with a continuing passion for your profession. The rewards of joining Triumph Enterprises will include competitive compensation, exceptional benefits, matching 401K, and professional/training development allowances that exceed many companies of larger size and stature.

 

This position will support a valued client with an important mission.  Apply today!

Responsibilities

  • Develop and update the information systems security documentation templates (e.g. System Boundary development, System Security Plan (SSP), Contingency Plan, Contingency Plan Test, Business Impact Analysis, FIPS-199, eAuthentication, Privacy Threshold Analysis, etc.) based on changing NIST and federal guidance
  • Train and Assist System Owners, ISSOs and other Stakeholders in understanding documentation requirements.  Review completed templates to ensure completeness and accuracy
  • Assist in coordinating remediation of Plan of Action and Milestones (POA&M) findings with various organizations within the enterprise
  • Respond to multiple customer inquiries regarding A&A utilizing a ticketing system; ensure timely and complete responses occur
  • Develop and process waivers and exceptions for information system weaknesses and vulnerabilities
  • Work with the clients to develop capabilities briefings and presentations in support of the program
  • Coordinate with ISSOs across the organization to ensure timely compliance with Federal and organizational policies and procedures
  • Produce required reporting for various management levels
  • Guide/teach/train less-experienced staff

Qualifications / Requirements

Required:

  • Ability to obtain a public trust clearance
  • Bachelor's degree in Computer Science, Information Systems, or Engineering
  • Minimum of 10 years experience, of which at least 8 years must be specialized. Specialized experience must be related to IT security. General experience should be in IT.
  • Candidate must have significant experience performing security assessments, security program development, and risk management
  • Candidate must possess an IT security certification
  • Strong customer-service attitude, ability to multi-task and work independently
  • Strong in-person, written and verbal communication skills
  • Detailed knowledge of NIST security standards and compliance measurements
  • Working experience in the application of FISMA guidelines including the NIST special publications 800-18, 800-30, 800-37, 800-39, 800-53, 800-53A, and 800-60
  • High aptitude for learning (self-study and as a part of a team)
  • Ability and willingness to guide/teach/train less-experienced staff
  • Ability and willingness to work independently with minimal supervision

 

Preferred:

  • Understanding of the NIST guidance for Ongoing Authorization
  • Experience with Archer A&A Module

Company Overview

Founded in 2005, Triumph Enterprises, Inc. (Triumph) is a Service-Disabled Veteran-Owned Business. We are headquartered in McLean, Virginia. Triumph offers the federal Civilian and Defense markets personalized knowledge-based professional services.  Our company provides world-class solutions leveraging the following core disciplines:

  • Program Management Support
  • Engineering Support Services
  • Training and Exercise Support Services
  • IT Security (Cyber Operations and Risk Management Services)
  • Sustainment and Life Cycle Logistics Services
  • Data Management and Analytical Services

Our pursuit of excellence is driven by an emphasis on Client Focus, Integrity, Imagination, and Employee Engagement – the Core Values that motivate and inspire our leadership, business practices, and company culture.

 

Triumph participates in e-Verify. We provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS) with information from each new employee’s I-9 Form to confirm work authorization. Triumph is an equal opportunity employer and gives consideration for employment to qualified applicants without regard to race, color, religion, sex, national origin, disability, protected veteran status or any other status defined by law. Go to www.triumph-enterprises.com to learn more about Triumph.