Security Analyst

Spry Methods (Arlington VA, USA) 2 days ago

Spry is a certified Small Business (SB) headquartered in McLean, VA. Spry provides Enterprise, C4IT, Management, and Cyber Solutions to the federal government and commercial entities. Founded in 2001, Spry Methods was built on the foundation of combining industry knowledge with unmatched responsiveness to produce results for our customers. Our goal is to build a business dedicated to the maximization of value for all stakeholders starting with our employees, our customers, and our community. We recognize that talented and dedicated employees are our most valued assets and the foundation of our success. Guided by these principles, we have established an impressive track record of proven past performance serving our customers within the Commercial, Federal Civilian, DoD, and Intelligence Communities. A CMMI Level 3 certified and ISO 9001:2008 registered company, Spry is committed to quality and continuous improvement.

  • Will be part of a team responsible for supporting our Department of Interior Information System Security Line of Business (ISSLoB) under the OCIO
  • Project include the following: Risk Management Frameowrk (RMF) Development and Integration, Assessment and Authorization (A&A) Services, Continuous Monitoring Strategy Development, Technical Testing and Penetration Testing (optional tasks), NIST SP 800-53 Rev 3 to Revision 4 updates, FedRAMP documentation development and preparation, PCI Compliance and Testing, Plan of Actions and Milestones (POA&M) support, and Cyber Security Assessment and Management (CSAM) Tool Support

  • Must have excellent written and oral communication skills
  • Must be able to multi-task, and work independently and within a team environment
  • All personnel must pass a DOI background investigation before start date
  • Must have a solid, hands-on experience with NIST guidelines and FISMA requirements
  • Direct experience with Tools such as but not limited to Nessus
  • Must understand the A&A process and support high-level security-related briefings

  • Analysts will have thorough understanding of the following: A&A services to included: System Security Plan, Configuration Management Plan, Patch management, Contingency Planning, Incident Response, and Continuous Monitoring support
  • Deep understanding of Security Testing guidelines
  • Certifications: CISSP, CAP, or CEH

At Spry, we believe talented and dedicated employees are our most valued assets and the foundation of our success. We are committed to crafting a diverse and inclusive workplace that endorses engagement, creativity, quality and innovation.

We are proud to be an Affirmative Action and Equal Opportunity Employer and as such, we evaluate qualified candidates in full consideration without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, age, disability status, protected veteran status, and any other protected status.

More from Spry Methods
FISMA Specialist
Spry Methods 21 days ago