Principal Information Security Analyst

Plan and execute A&A process for both existing and new systems.? Facilitate initial briefings and subsequent meetings of the A&A core team.

Recommend security requirements based on appropriate guidance, including controls and measures may be appropriate to mitigate these system vulnerabilities.

Develop, review and evaluate A&A documentation including the System Security Authorization Agreement (SSAA), System Security Plan (SSP), Business Impact Analysis, Risk Assessment, Security Test and

Evaluation (ST&E) plan and report, and independent reviews of the information resource.?

Prepare the A&A Evaluation Report and Plan of Action and Milestones (POA&M).? Escalate security concerns or forward the A&A Evaluation Report and supporting A&A documentation package to the certifier.?

Manages POA&M to ensure necessary security controls and processes are implemented.??

Familiar with DoDI 8510.01 and DoDI 8500.2.

  • Thorough understanding of the A&A processes and direct experience with the following A&A programs:
    • Director of Central Intelligence Directive (DCID) 6/3 or JFAN 6/3
    • DoD Risk Management Framework
    • DoD Information Assurance Certification and Accreditation Process (DIACAP)
    • National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53
    • Intelligence Community Directive (ICD) 503 (Desired)
    • Security Control Selection, Implementation, and Testing,
  • Experience using security scanning software (e.g. Nessus) and risk framework management software (e.g. Telos Xacta)
  • Knowledge and understanding of the DoD vulnerability assessment and remediation process
  • Develop and maintain documentation including policies and standard operating procedures (SOP)

8-10 years of related experience in data security administration.

IAM Level II Certification Required

ITILv3 Preferred

For more than 50 years, General Dynamics Information Technology has served as a trusted provider of information technology, systems engineering, training and professional services to customers across federal, state, and local governments, and in the commercial sector. Over 40,000 GDIT professionals deliver enterprise solutions, manage mission-critical IT programs and provide mission support services worldwide. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.


Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.

More Jobs

Principal Information Security Analyst
Lorton, VA General Dynamics Information Technology
Principal Information Security Analyst
Fairfax, VA General Dynamics Information Technology
Principal Information Security Analyst
Fairfax, VA General Dynamics Information Technology
Senior Security Engineer/Information Security ...
Springfield, VA SAIC
Senior Information Security Analyst
Richmond, VA Dominion Energy