Back to all Jobs See more jobs

Information Assurance Analyst

  • Full-Time
  • Fairfax, VA
  • NiyamIT
  • Posted 2 years ago – Accepting applications
Job Description

Niyam IT prides itself on being a small, close-knit team of experts. Around here, you have the freedom to work how you want, with opportunities to offer new ideas, expand your skillset and make your mark on the IT industry.

We are a growing organization, recently ranked by Inc. Magazine on their 2020 Inc. 5000 list. We are looking for talented professionals to rise to the challenge, enhance skills, and work with smart minds. Come join our team and grow with us!

Niyam is seeking Information Assurance Analyst to join our team in Fairfax, VA in support of our work with The Department of Homeland Security (DHS) Federal Emergency Management Agency (FEMA). We offer competitive compensation and benefits. Position currently allows remote work but may require on-site work when COVID-19 restrictions are lifted.

Role and Responsibilities

  • Support a Security Agile team to prioritize security tasks based on risk for the program.
  • Establish acceptance criteria/definition of done to include security requirements.
  • Support static code security scans on all application code.
  • Support runtime security scans on all applications.
  • Support database security scans on all application databases.
  • Support Network and Operating System (OS) level scans on the Risk MAP infrastructure.
  • Support agile teams in understanding and triaging security scan results and remediation actions
  • advise on security best practices.
  • Support and maintain security documentation.
  • Create and manage Risk MAP Change Requests (CR) using the FEMA FootPrints system.
  • Support Plan of Action and Milestones (POAM) for security tasks.
  • Support Security Audits.

Qualifications and Education Requirements

  • Bachelor’s Degree or higher and/or >5 years
  • Experience with cybersecurity in Agile delivery
  • Understand risk management and vulnerability remediation
  • Experience running static, runtime, infrastructure, and database security scans.
  • Knowledge of A&A and DHS security processes
  • Experience supporting external audits or control assessments
  • Security and compliance documentation experience
  • Security+ Certification or similar
  • Basic Knowledge of Cloud security (AWS, Azure)

Preferred:

  • Cloud security experience
  • Experience with Rational Team Concert (RTC), Fortify, WebInspect, and AppDetectivePro

Job Type: Full-time

Apply to this Job