Security Compliance Analyst - ASC SecureInfo
THIS JOB HAS EXPIRED Job Description:
GENERAL JOB SUMMARY:
The Security Compliance Analyst (SCA) provides expert advice and guidance to management and other specialists on governance, risk and compliance of federal information systems. Must be able to obtain a Public Trust clearance.
ESSENTIAL JOB FUNCTIONS:
Creates and updates policies, procedures, standards and guidelines for use throughout the USAP related to information security processes
Performs maintenance of compliance documentation, including system security plans, risk assessments, and contingency plans to federal standards, on USAP designated general support systems, business systems, and operations systems
Assists in the submission of yearly Information Security compliance deliverables such as the recurring FISMA requirements and NSF deliverables
Audits security controls to determine adequacy and effectiveness. Recommends mitigations to resolve security control problems in a timely manner
Support annual security control assessments and audits
Support the security awareness program, including course development, tracking and reporting of compliance
Performs other duties as assigned
No Supervisory Responsibilities
Experience and Skills:
KNOWLEDGE, SKILLS AND ABILITIES REQUIRED:
Knowledge of governance, risk and compliance frameworks, especially NIST Special Publications
Strong written and verbal communication skills
Customer focused attitude
Effective critical thinking and complex problem solving abilities
EDUCATION AND EXPERIENCE:
Bachelors Degree in Computer Science or related field and four years experience in information security. With a Master's Degree in Computer Science or related field 3 years experience in information security is required. With an Associates Degree in Computer Science or related field 6 years information security experience is required. With 10 years information security experience no degree is required.
Appropriate professional certifications, such as Certified Information Systems Security Professional (CISSP), Certified Authorization Professional (CAP), or Systems Security Certified Practitioner (SSCP) preferred.
Generally, the work environment characteristics are representative of those of an employee encounters while performing essential functions of the job in a typical office/workstation situation. However, must be able to physically qualify for deployment to Antarctica for periods up to 120 days. Able to work sitting or standing at desk and operate a computer via standard input devices such as using a keyboard and reading information on a monitor.
Job Level: Mid Career (2+ years)
Number of Openings: 1
Years of Experience: At least 3 Years
Level of Education: Some College
||Centennial, CO |
THIS JOB HAS EXPIRED