GHG Corporation
  • ASC
  • Centennial, CO, USA
  • NEG/DOE
  • Salary
  • Contract

Yes


Job purpose

The Security Analyst, position is responsible for coordination, oversight, execution and enhancement of consistent security practices for all information systems within the United States Antarctic Program (USAP). The Security Analyst will ensure effective information security controls are documented and delivered to safeguard USAP business operations, prevent unauthorized system access, and to protect sensitive information.

Duties and responsibilities

Provides support for all security compliance initiatives, such as:

  • Evaluates proposed changes to the operational/ business systems and develops system security requirements
  • Conducts security assessments to determine the effectives of planned and implemented security controls
  • Conducts Risk Assessments on identified security weaknesses in control implementation
  • Manages and maintains configuration control over Security Assessment and Authorization (SA&A)
  • Organizes and facilitates contingency planning exercises
  • Responds to and manages FISMA audit requests and creation of deliverables
  • Researches emerging security technologies
  • Performs systems security evaluations, audits, and server logging reviews to verify secure operations
  • Conducts continuous security reviews, recommends mitigations and corrective actions, and generates reports
  • Supports Incident Response activities to mitigate damage, determine impact, and implement corrective actions.

 

This position delivers analysis and assessment of compliance with security and privacy laws, regulations, guidance, and direction, including the Federal Information Security Management Act (FISMA); National Institute of Standards and Technology (NIST) guidance; Federal Information Processing Standards (FIPS); applicable Office of Management and Budget (OMB) memoranda; and United States Antarctic Program (USAP) policies and instructions.

Qualifications

  • Bachelor's degree from an accredited college  in Computer Science, Management Information Systems, or related field., or equivalent experience/combined education, with 9 years of professional experience; or 7 years of professional experience with a related Master's degree. Strong excel and MS word skills. 
  • Current Information Security certification (e.g. CISM, CISSP, CompTIA Security+)
  • Must have experience in system vulnerability assessments and developing security assessment and authorization packages to include: System Security Plans (SSP), Plan of Action & Milestones (POA&M), Security Assessment Reports and Acceptance of Residual Risk documents. 
  • Candidate must have experience with Federal Information Security Management Act (FISMA) requirements and National Institute of Standards and Technology (NIST) Risk Management Framework (RMF).
  • Experience should include security policy development, security education, application vulnerability assessments, risk analysis and compliance testing.
  • Knowledge of NIST information security standards, rules and regulations related to information security and data confidentiality and desktop, server, application, database, network security principles for risk identification and analysis.
  • Strong analytical and problem solving skills.
  • Excellent communication (oral, written, presentation), interpersonal and consultative skills.

Competencies

  • Communication
  • Interpersonal
  • Consultative Skills
  • Written and Oral Skills

Working environment

This job operates in a professional office environment.  This role routinely uses standard office equipment such as computer, phones, photocopiers, filing cabinets and fax machines.

Physical requirements

Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.

Individual must be capable of operating a standard desktop computer; must be able to lift and carry up to 10 pounds. US citizenship or permanent residence is required. 

Position Expectations

This is a full-time position. Day shift 8am-5pm and perform on-call rotations. Anticipate a 40hr. work week

Work is to be performed at the ASC facility at 7400 S. Tucson Way, Centennial, Colorado, during normal business hours.

PERIOD OF PERFORMANCE: August 2017 through July 2018 (~1 year)

No travel is expected for this position.

Equal Opportunity Employer/Veterans/Disabled

GHG Corporation
  • Apply Now

  • * Fields Are Required

    What is your full name?

    How can we contact you?

    By clicking the button above, I agree to ApplicantPro's Applicant Information Use Policy.

  • Sign Up For Job Alerts!

  • Share this Page
  • Facebook Twitter LinkedIn Email
.
Logo Employee Intranet Twitter Linked In News Feed Home Engineering Services About Us Products Services News Center