Jacobs Information Assurance Analyst in Herndon, Virginia
Critical Mission Solutions
Your mission is our mission.
We're invested in you and your success. Everything we do - whether Aerospace, Defense, Intelligence, Information Technology, Cybersecurity, Nuclear, Automotive, or Telecommunications - is more than just a project. It's our challenge as human beings, too. That's why we bring a thoughtful and collaborative approach to every one of our partnerships.
It's our promise to challenge the status quo as we redefine how to solve the world's greatest challenges, and transform big ideas into intelligent solutions for a more connected, sustainable world.
Design your career with a company that inspires and empowers you to deliver your best work so you can evolve, grow and succeed –today and into tomorrow.
Jacobs is seeking an Information Assurance Analyst in Herndon, VA.
Maintain a standardized and repeatable process in support of the federal customer throughout the entire security Assessment and Authorization (A&A) program as well as the Continuous Monitoring for Ongoing Authorization program
Develop and update security authorization documentation and manage POA&Ms
Leverage the Cyber Security Assessment and Management (CSAM) system as the repository for A&A related data and documentation management
Maintain current understanding of IT systems and architecture, policies, solution design and development, as well as operational requirements and management
Evaluate and recommend improvements to tools and procedures
Duties/Tasks and Responsibilities
Perform the collection of system information, categorization of information systems, the selection and tailoring of appropriate security controls, analyzing network scans, updating information system status, all in accordance with current or revised NIST guidance
Provide support for new and existing client information systems, in accordance with client Security Authorization & Assessment (SA&A) schedule
Assists in the development of NIST / FISMA SA&A documentation for systems and networks undergoing certification and validate the quality of deliverables produced by the team
Assess risks, identify mitigation requirements and develop accreditation recommendations; be responsible for tracking SA&A requirements for assigned systems and validate that tasks are on schedule, and ensure the delivery of quality documentation
Assist in coordination of vulnerability scans, providing guidance for remediating all valid ‘Critical’ and ‘High’ vulnerabilities and assuring project owners deploy all accepted remediation measures into Production
Assist in the creation of Security Authorization Packages (SAP) with the responsibility for gathering information from system owners, applying data to the appropriate templates, and attending meetings in support of the effort
Participate in risk assessments of information systems
Assist in conducting tests of IA safeguards in accordance with test plans; perform system audits to assess security related factors for systems
Assist in management of POA&M monitoring, tracking, and reporting; provide POA&M remediation guidance to technical teams and system stakeholders.
Perform other information assurance or administrative tasks
Here’s What You’ll Need:
You must be able to obtain and maintain a Public Trust security clearance.
US Citizenship required
4+ years of technical experience in cybersecurity
4+ years of experience with Security Authorization & Assessment (SA&A)
Experience with applying the NIST Cybersecurity Framework
Experience with Federal Risk and Authorization Management Program (FedRAMP)
Experience with NIST special publications (SPs) regarding the SA process, including SP 800-53, SP 800-137, SP 800-171, and SP 800-37
Demonstrated ability to review and edit draft security artifacts as assigned to ensure compliance with SA&A, and FISMA
Ability to effectively manage multiple tasks simultaneously; coordinating and ensuring scheduled goals are met
Able to communicate effectively through written and verbal means to co-workers and senior leadership
Desired Qualifications (desired but not required):
Understanding of current computer technologies and technical security requirements as applied to the design, development, evaluation, and integration of computer systems and networks to sustain compliance with federal policy as well as best practices
Understanding of security concepts and process implementation
Experience with developing and managing continuous monitoring and plans of action and milestones (POA&M)
Ability to recommend and apply security countermeasures to mitigate identified risks
Out-of-box positive thinking that focuses on solutions and excellent oral and written communication skills
Self-starter and excellent work ethic with a strong track record
Certification Requirements, one or more of the following preferred:
A+, Network+, Security+, GCIH, GSEC, GSE, GISP, GSLC, CAP, SCP, CISSP, CISSA, CISA, CRISC, SCNP, SCNA
Most work will be done at a desk or computer.
General Office environment. The work environment is fast-paced and sometimes involves extreme deadline pressures. The nature of the work requires a high degree of teamwork and cooperation with other members of the staff as well as individuals across the Company and Customers.
Equipment & Machines:
General office equipment including PC/laptop, Fax, Copiers, Shredder, Printers, Telephone, and other miscellaneous office equipment.
Attendance is critical at all times. Must be able to work a 40-hour workweek, normally Monday through Friday. However, times and days may vary depending on business requirements. Needs to be available to work overtime during critical peaks and be available to meet last minute requests for overtime should the situation occur.
Other Essential Functions:
Must be able to communicate effectively both verbally and in writing
Grooming and dress must be appropriate for the position and must not impose a safety risk/hazard to the employee or others. Must put forward a professional behavior that enhances productivity and promotes teamwork and cooperation.
Must be able to interface with individuals at all levels of the organization both verbally and in writing. Must be well-organized with the ability to coordinate and prioritize multiple tasks simultaneously. Must work well under pressure to meet deadline requirements. Must be willing to travel as needed. Must take and pass a drug test and background check as well as a motor vehicle records check. Must be a US citizen.
Jacobs is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race", color, religion, sex, sexual orientation, gender identity, national origin, disability," veteran status or other characteristics protected by law. Learn more about your rights under Federal EEO laws and supplemental language .
At Jacobs, we’re challenging today to reinvent tomorrow by solving the world’s most critical problems for thriving cities, resilient environments, mission-critical outcomes, operational advancement, scientific discovery and cutting-edge manufacturing, turning abstract ideas into realities that transform the world for good. With $13 billion in revenue and a talent force of more than 55,000, Jacobs provides a full spectrum of professional services including consulting, technical, scientific and project delivery for the government and private sector.