SENIOR INFORMATION SECURITY ANALYST
Company: Sparksoft
Location: Washington
Posted on: September 30, 2024
Job Description:
Join us at Sparksoft, where we're not just another tech company
we're a catalyst for change. Our mission isn't just to offer IT
solutions; it's to revolutionize the way you work. Here, passion
isn't just a buzzword; it's the fuel behind groundbreaking ideas
and transformative technologies. We serve a wide range of
government clients, delivering impact that's felt across the
nation. Our true strength lies in our people. They're the
problem-solvers and innovators consistently delivering
extraordinary outcomes. With Sparksoft, you're not stepping into a
routine job; you're joining a team committed to innovation and
excellence. Our innovation extends beyond just delivering projects.
Through our specialized Innovation Centers, we continuously refine
our methods, ensuring we remain industry leaders. We are Sparksoft!
ROLE & RESPONSIBILITIES:
Create/Update all client security
deliverables and artifacts (SSP, CP, ISRA, PTA/PIA, etc.) Work with
team members to ensure security functions are implemented for the
program(s) that are under their care. Act as a trusted advisor for
security matters for their programs and provide training on
security items when needed. Act as a bridge between client security
teams and project teams to bridge the gap between compliance and
technical security issues and both teams. Ensure proper testing
occurs and manage the vulnerability process in the scope of the
program. Translate technical security findings (pen tests, ACT,
fortify, Tenable, etc.) to practical issues, and guide teams to
appropriate preventative and corrective action. Review program
procedures and outputs and implement corrective action when needed.
Act as a liaison for the program to client security teams. Support
corporate security as needed. REQUIRED EXPERIENCE:
Experience in multiple aspects of
FISMA Security 10+ years Experience in an agile CI/CD development
environment with a focusing on the testing and assessment functions
(technical assessment and understanding (dev/sec/ops) Experience in
Agile development and operations support, in respect to FISMA SP
800-53 guidelines Excellent writing and communication skills
Experience in understanding and accurately interpreting security
reports Experience in managing an audit for a program (CSRAP/ACT,
A-123, IRS 1070, etc.) Experience with cloud-based systems (e.g.,
AWS, Salesforce) Experience in creating and maintaining the
deliverables for an Authority to Operate (ATO) Experience in the
performing application-level testing (CP functional and tabletop
testing required) Experience in performing risk assessments.
Experience running meetings and holding team members to deadlines.
Infrequent Travel to Columbia, MD for meetings when/if required
Candidates must be able to obtain and maintain a Public Trust
clearance Candidates must have lived in the United States 3 out of
the past 5 years PREFERRED EXPERIENCE:
10 years with privacy and data
protection Dynamic and Static code testing Experience working in
CMS/HHS Federal Healthcare environments EDUCATION & CERTIFICATIONS:
10+ years of experience in the
required skill set (note CISSP requires 5 years in the required
skill sets.) Current/Active CISSP required (note that CASP, CISM,
and GSEC do not qualify) Bachelor s Degree is preferred If you need
accommodation seeking employment with Sparksoft Corporation, please
email or call . Accommodations are made on a case-by-case basis. At
Sparksoft Corporation, we take security and protection of personal
information very seriously. We will never ask you to send private
personal information over email. Accordingly, we ask you to
immediately contact our security team via email at upon receiving a
suspicious request. Senior Information Security Analyst
Keywords: Sparksoft, Germantown , SENIOR INFORMATION SECURITY ANALYST, Professions , Washington, Maryland
Didn't find what you're looking for? Search again!
Loading more jobs...