Information Assurance (IA) Security Analyst: Veris Group

Veris Group, an IT security consulting firm, has an immediate position available for an Information Assurance (IA) Security Analyst/Engineer to join our IA team. Our company provides very competitive salaries and a bonus plan, along with an excellent, comprehensive benefits program that includes health, dental, life, disability, AD&D insurance and a tax-deferred investment plan.

We recruit and retain the most qualified consultants by offering a unique and flexible professional environment that is challenging, creative and respectful of ideas and people. We are project-oriented, with a focus on career paths for our consultants. Our company has a strong reputation and established industry partnerships. We can offer great opportunities for advancement and are looking for people who are interested in long-term growth in their careers.

Required Skills Include:

Information Assurance Standards –

At least 3-5 years of in-depth knowledge of federal information security requirements, including FISMA, NIST Special Publication (SP) 800-37, 800-53, 800-53A, 800-30, 800-34, E-Authentication, and Privacy Impact Assessments (PIAs)

Certification & Accreditation (C&A) Experience –

At least 3-5 years of direct experience with and implementation of C&A process standards; writing, analyzing, evaluating and updating all related C&A documentation. Managing and facilitating the C&A process.

System Security Plan (SSP) Development –

At least 2-4 years of experience developing system security plans utilizing NIST SP 800-18, SP 800-37, NIST 800-53, etc. guidelines and requirements. Selecting proper information types utilizing FIPS 199 and NIST SP 800-60 security categorizations and data sensitivity levels. Experience evaluating, selecting, and implementing appropriate and corresponding NIST SP 800-53 security controls. Experience developing detailed system components, description, technical environment, and overall accreditation boundary.

Vulnerability and Risk Assessments –

At least 2-4 years of experience conducting vulnerability/risk assessments, determining impact and likelihood, overall risk levels, and recommending appropriate risk mitigation strategies.

Security Testing & Evaluation (ST&E) –

At least 2-3 years of experience developing detailed and ST&E plans. Evaluating, selecting and utilizing appropriate assessment procedures (test cases) utilizing NIST SP 800-53A, as well as tailored assessment procedures specific to system components.

Qualifications:

U.S. Citizenship

Minimum of Public Trust clearance

Bachelor’s degree or higher

Excellent analytical, writing, and presentation skills

Preferred skills:

Relevant Certifications (e.g. CISSP, CISA, CISM, GIAC)

Knowledge of MS Windows, UNIX, Mainframe, network, and/or web/database environments

If you want to achieve your potential and be part of an innovative company that helps clients address their greatest challenges, contact us today.

To apply for this position, please email your resume to jobs@verisgroup.com .