Configuration Management Analyst/ISSO for i3 in Huntsville, AL (salary not disclosed) STIG
Job Description
Job Description
Overview i3 is seeking a Configuration Management Analyst/ISSO to support regular audits on computer systems and networks to determine if they are operating securely and that data is protected from both internal and external threats. The selected candidate will make assessments of assigned systems to determine the system security status and ensures compliance to security policies, procedures, and standards with regards to Risk Management Framework (RMF). Additionally, the Configuration Management Analyst/ISSO will support compliance with software assurance cybersecurity policies and procedures to include coordination of approval efforts with various Army and DoD organizations and approval authorities.
Responsibilities
* Generate new user account requests and assist new users with completing DoD and Army training requirements and maintain accurate records using the Army Training and Certificate Tracking System (ATCTS).
* Facilitate access forms for users requesting accounts on various systems.
* Manage and maintain the Configuration Management Process, to include change requests and Change Control Boards.
* Create, configure, and maintain SharePoint lists, libraries, sites and subsites, calendars, and calendar overlays.
* Assist with physical security.
* Responsible for supporting the Cyber Security Program to include but not limited to Cyber Security policy, Configuration Management Policy, procedures, and regulations to assist with identifying and correcting potential Cyber Security issues.
* Monitor, evaluate, and maintain systems and procedures to safeguard information systems, networks, and databases. Implements, enforces, communicates, and develops security policies or plans for data, software applications, hardware, telecommunications, and information systems security education / awareness programs.
* Serve as part of an ISSO team in managing RMF accreditation packages, documentation, and continuous monitoring practices.
* Maintenance of authorization package within eMASS, account management, security auditing and configuration management reporting.
* Generate and maintain system documentation such as RMF Artifacts, SSP, SCTM, POA&M, Policies and SOPs.
* Conduct and/or participate in Technical/Cyber meetings with organizational team members.
* Establishes and satisfies system-wide information security requirements based upon the analysis of user, policy, regulatory, and resource demands.
* Conducts system scans and remediation to meet Army, DISA, DoD, and MDA compliance requirements.
* Perform security reviews and create reports on compliance and patch levels utilizing tools such as STIGViewer, ACAS, HBSS/ENS, EvalStig, Splunk, and others.
* Other duties as assigned.
Qualifications
* Bachelor's degree in related field. Additional experience may be substituted in lieu of a degree.
*Minimum of 6 years related experience.
* Ability to obtain a DoD 8570/8140 Information Assurance IAM-I level certification (Security+).
* Experience determining and assessing vulnerabilities including planning, testing, and documenting (DoD) accreditation packages for Information Technology (IT) systems and networks, specifically within RMF.
* Experience applying DISA STIGS, conducting vulnerability audits, security configuration checks, and system configuration scans to meet Cyber Security requirements.
* Preferred working knowledge of eMASS, ACAS, HBSS/ENS, DISA STIGS and STIG-Tools.
* Position requires good communication skills with users and co-workers and ability to adapt to a dynamic customer-oriented environment.
* Knowledge of Information Security and Auditing.
* Knowledge of Federal and DoD Guidance DoDD 8500.1, DoDI 8500.2, DoDI 8510.01 SP 800-57, SP 800-53, CNSSI 1253.
* Ability to obtain and maintain DoD SECRET Security Clearance. Secret Clearance preferred.
*U.S. Citizenship is required.
About i3 Headquartered in Huntsville, AL, i3 is a national leader in providing innovative technical and engineering solutions to a broad customer base across the U.S. DoD. Specializing in missile and aviation engineering and logistic services, electronic warfare and electromagnetic affects analysis, UAS system integration and flight operations, full lifecycle C5ISR engineering services, engineering analysis, cybersecurity and IT/IA innovative solutions and virtual training, simulation & serious game development and implementation.
We were founded in 2007 with the intent to do business differently.
* Our focus is to leave our team members, our customers and our communities better than we found them.
* Our ultimate goal is to strengthen our Nation and our warfighter. Perks and Benefits at i3:
* 100% team member owned
* Outstanding insurance coverage
* 401(k) match * Health and wellness incentives
* Tuition and certification reimbursement
* Generous PTO
* Fun culture with company activities
* Countless opportunities to give back to the community through our charitable organization, i3 Cares
For more Info: https://hubs.la/Q02D4Jpt0