Jacobs Jobs

Job Information

Jacobs Information Assurance Analyst in Herndon, Virginia

Critical Mission Solutions

Your mission is our mission.

We're invested in you and your success. Everything we do - whether Aerospace, Defense, Intelligence, Information Technology, Cybersecurity, Nuclear, Automotive, or Telecommunications - is more than just a project. It's our challenge as human beings, too. That's why we bring a thoughtful and collaborative approach to every one of our partnerships.

It's our promise to challenge the status quo as we redefine how to solve the world's greatest challenges, and transform big ideas into intelligent solutions for a more connected, sustainable world.

Design your career with a company that inspires and empowers you to deliver your best work so you can evolve, grow and succeed –today and into tomorrow.

Your Impact:

Jacobs is seeking an Information Assurance Analyst in Herndon, VA.

  • Maintain a standardized and repeatable process in support of the federal customer throughout the entire security Assessment and Authorization (A&A) program as well as the Continuous Monitoring for Ongoing Authorization program

  • Develop and update security authorization documentation and manage POA&Ms

  • Leverage the Cyber Security Assessment and Management (CSAM) system as the repository for A&A related data and documentation management

  • Maintain current understanding of IT systems and architecture, policies, solution design and development, as well as operational requirements and management

  • Evaluate and recommend improvements to tools and procedures

Duties/Tasks and Responsibilities

  • Perform the collection of system information, categorization of information systems, the selection and tailoring of appropriate security controls, analyzing network scans, updating information system status, all in accordance with current or revised NIST guidance

  • Provide support for new and existing client information systems, in accordance with client Security Authorization & Assessment (SA&A) schedule

  • Assists in the development of NIST / FISMA SA&A documentation for systems and networks undergoing certification and validate the quality of deliverables produced by the team

  • Assess risks, identify mitigation requirements and develop accreditation recommendations; be responsible for tracking SA&A requirements for assigned systems and validate that tasks are on schedule, and ensure the delivery of quality documentation

  • Assist in coordination of vulnerability scans, providing guidance for remediating all valid ‘Critical’ and ‘High’ vulnerabilities and assuring project owners deploy all accepted remediation measures into Production

  • Assist in the creation of Security Authorization Packages (SAP) with the responsibility for gathering information from system owners, applying data to the appropriate templates, and attending meetings in support of the effort

  • Participate in risk assessments of information systems

  • Assist in conducting tests of IA safeguards in accordance with test plans; perform system audits to assess security related factors for systems

  • Assist in management of POA&M monitoring, tracking, and reporting; provide POA&M remediation guidance to technical teams and system stakeholders.

  • Perform other information assurance or administrative tasks

Here’s What You’ll Need:

  • You must be able to obtain and maintain a Public Trust security clearance.

  • US Citizenship required

  • 4+ years of technical experience in cybersecurity

  • 4+ years of experience with Security Authorization & Assessment (SA&A)

  • Experience with applying the NIST Cybersecurity Framework

  • Experience with Federal Risk and Authorization Management Program (FedRAMP)

  • Experience with NIST special publications (SPs) regarding the SA process, including SP 800-53, SP 800-137, SP 800-171, and SP 800-37

  • Demonstrated ability to review and edit draft security artifacts as assigned to ensure compliance with SA&A, and FISMA

  • Ability to effectively manage multiple tasks simultaneously; coordinating and ensuring scheduled goals are met

  • Able to communicate effectively through written and verbal means to co-workers and senior leadership

Desired Qualifications (desired but not required):

  • Understanding of current computer technologies and technical security requirements as applied to the design, development, evaluation, and integration of computer systems and networks to sustain compliance with federal policy as well as best practices

  • Understanding of security concepts and process implementation

  • Experience with developing and managing continuous monitoring and plans of action and milestones (POA&M)

  • Ability to recommend and apply security countermeasures to mitigate identified risks

  • Out-of-box positive thinking that focuses on solutions and excellent oral and written communication skills

  • Self-starter and excellent work ethic with a strong track record

  • Certification Requirements, one or more of the following preferred:

  • A+, Network+, Security+, GCIH, GSEC, GSE, GISP, GSLC, CAP, SCP, CISSP, CISSA, CISA, CRISC, SCNP, SCNA

Essential Functions:

Physical Requirements:

Most work will be done at a desk or computer.

Work Environment:

General Office environment. The work environment is fast-paced and sometimes involves extreme deadline pressures. The nature of the work requires a high degree of teamwork and cooperation with other members of the staff as well as individuals across the Company and Customers.

Equipment & Machines:

General office equipment including PC/laptop, Fax, Copiers, Shredder, Printers, Telephone, and other miscellaneous office equipment.

Attendance:

Attendance is critical at all times. Must be able to work a 40-hour workweek, normally Monday through Friday. However, times and days may vary depending on business requirements. Needs to be available to work overtime during critical peaks and be available to meet last minute requests for overtime should the situation occur.

Other Essential Functions:

Must be able to communicate effectively both verbally and in writing

Grooming and dress must be appropriate for the position and must not impose a safety risk/hazard to the employee or others. Must put forward a professional behavior that enhances productivity and promotes teamwork and cooperation.

Must be able to interface with individuals at all levels of the organization both verbally and in writing. Must be well-organized with the ability to coordinate and prioritize multiple tasks simultaneously. Must work well under pressure to meet deadline requirements. Must be willing to travel as needed. Must take and pass a drug test and background check as well as a motor vehicle records check. Must be a US citizen.

#LI-DD1

#DICEPOST

#CJPOST

Jacobs is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race", color, religion, sex, sexual orientation, gender identity, national origin, disability," veteran status or other characteristics protected by law. Learn more about your rights under Federal EEO laws and supplemental language .

"

At Jacobs, we’re challenging today to reinvent tomorrow by solving the world’s most critical problems for thriving cities, resilient environments, mission-critical outcomes, operational advancement, scientific discovery and cutting-edge manufacturing, turning abstract ideas into realities that transform the world for good. With $13 billion in revenue and a talent force of more than 55,000, Jacobs provides a full spectrum of professional services including consulting, technical, scientific and project delivery for the government and private sector.

DirectEmployers