Carries out information systems security assessments and analysis. Analyze DIACAP and Risk Management Framework (RMF) Executive Packages, including POA&M, Functional Architecture Diagrams, and Certifying Authority Recommendations.
Conducts reviews to ensure that systems are operating securely and that information systems security policies and procedures are being implemented as defined in security plans. Safeguards the network against unauthorized infiltration, modification, destruction, or disclosure.
Evaluates, communicates and research security policies or plans for data, software applications, hardware, telecommunications, and information systems security education/awareness programs.
Responds to queries and requests for computer security information and reports. Works under some supervision but also expected to utilize independent judgment and initiative Work is reviewed for soundness of technical judgment, overall adequacy, and accuracy.
Provides solutions to a variety of technical problems of moderate scope and complexity. Accurately estimates deadlines and readjusts duties as needed.
Keeps manager and team members informed. Participates actively within the team by sharing information. Displays self-confidence and shows strong initiative.
Demonstrates well-developed communication skills. Structures logical documents and writes sections that require only minor editing. Explains and presents good ideas frequently, effectively, and with confidence.
HS +8 yearstechnical experience, or AA/AS +6 or BA/BS +4
To include at least 2 years IA/IT Security experience
IAM II certification required (CASP, CAP, CISS or equivalent)