Information Security Analyst
Location: San Diego, CA
Clearance Required: Active Department of Defense Secret Clearance
Compensation: $90,000 – $120,000 (based on experience)
Employment Type: Full-time, Hourly Exempt

The Information Security Analyst will monitor the security status of an organization’s computer systems and develop increased protection against intrusion as necessary.

Key Responsibilities

• Conduct research into the latest hacking strategies to anticipate and prevent future security breaches. 
• Work closely with other members and with upper management to create and implement plans for the best disaster recovery system of protection and recovery possible
• Remain on call outside of normal working hours in the event of unexpected security demands

Required Qualifications

• Secret Security Clearance
• 5 years of experience working on cybersecurity and accreditation in DoD environment
• Certified Information Assurance Technical or Management Level II in accordance with DoD 8570.1 Working knowledge of Risk Management Framework (RMF)
• Recent experience testing and implementing cybersecurity controls to establish and maintain an Information System Authority to Operate (ATO) with NETWARCOM
• Experience with the Federal Information Security Management Act (FISMA) policy
• Recent experience performing annual cybersecurity reviews and documenting review results for DoD program
• Experience with all steps of RMF process preparing artifacts, documenting ATO progress in eMass, testing security controls and recording test results
• Experience working on ATO certification for the program hosted in Data Center; understanding the specifics of cybersecurity controls inheritance
• Familiar with FISMA and the relevant guidance issued by the National Institute of Standards and Technology (NIST) (i.e. SP 800-37, SP 800-26, SP 800-53, SP 800-53A, and SP 800-34) as well as Federal Information Processing Standards (FIPS) Publications
• Experience with mediation of security vulnerabilities within computer systems and experience using network vulnerability scan tools and the Defense Information Systems Agency Vulnerability Management System (VMS)
• Experience developing and reviewing System Security Plans, Security Categorization, Business Impact Analysis, Contingency Plans, Security Assessment Reports, Security Test and Evaluation Plans, Impact Assessments, Configuration Management Plans, and POA&M activities
• Experience with Microsoft Office Suite of Program tools. Knowledge of Authority to Operate certification process under RMF procedures and Software development process

C2 Essentials is an Equal Opportunity Employer.