Sierra7

Apply for this job

Information Security Analyst - Senior (Project Management)



Sierra7 is seeking a Information Security Analyst - Senior!

Position responsibilities:
Able to work mostly independently with support and guidance from contractor program manager.Maintain and update all report and document templates on an as needed basis or annually at a minimum.Conduct Information Systems (IS) security analysis to determine the appropriate security requirements are integrated during the design stage of an application and comply with all laws and regulations.Document findings from the authorization process in the form of a briefing to be presented to the CBP Authorizing Official which will include security evaluation findings and residual risks.Assist the Government in preparing a written justification, when appropriate, to the Director, STP Group for approval by the Assistant Commissioner, OIT or the DHS CISO to obtain a written waiver of policy for mandated security features.Compile data for reporting on various system metrics for FISMA compliance updates.Monitor and communicate timelines and due dates for all ATO milestones to the assigned system ISSO to ensure project deadlines are met.Ensure that assigned systems/applications meet the minimum DHS/CBP SA standards before a recommendation is made to the CBP CISO for Authorization. Once Authorization recommendation is accepted by CBP CISO, the Contractor shall upload all relevant SA artifacts onto the DHS-approved repositories.Recommend improvements for the authorization process where practical to lessen processing time and the amount of paperwork and/or resources required, to include benchmarking and other process improvement activities.Review domestic and international Interconnection Security Agreements (ISAs) for interconnections between DHS and non-DHS IT systems. Support liaison activities between and among CBP, DHS, and other Government agencies including law enforcement agencies, the international trade community and private firms as they relate to security compliance issues, security programs, policies, issues and information technology (IT) products.

Apply

Apply Here done