Post Job

Information Security Analyst Jobs in Dothan, AL

- 159 Jobs
All
Information Security Analyst
Information Systems Security Officer
Cyber Security Analyst
Senior Security Analyst
Information Assurance Engineer
  • Secret Cleared Information Security Analyst

    Zachary Piper 4.0company rating

    Information Security Analyst Job In Alabama

    Zachary Piper Solutions is seeking a secret cleared Information Security Analyst based out of Ft. Novosel, AL. The Information Security Analystis responsible for providing compliance checks and vulnerability scans in ACAS supporting a DoD base. Responsibilities of the Information Security Analyst includes:Conduct compliance checks and vulnerability scans in ACAS across network infrastructure Analyze results from scan and report findings to stakeholders Assist in policy and procedures for vulnerability scans Ensure NIST compliance is achieved and maintained Support System Security Plans (SSP) documentation for compliance Qualifications for the Information Security Analyst includes:3+ years of information security/ACAS scanning experience Active Secret clearance IAT II Certification is required Ability to obtain CYSA+ within 2-3 months of hire Compensation for the Information Security Analyst includes:Salary: $65,000 - $70,000 **depending on experience**Benefits: Full benefits: Cigna Healthcare, Dental, Vision, 401k, PTO plan, Palo Alto paid training This job opens for applications on 01/31/2025. Applications for this job will be accepted for at least 30 days from the posting date#LI-AC2 #LI-OnsiteACAS, DOD, Army, Navy, Air Force, USAF, Alabama, military, IT, information security, vulnerability, scans, network, cybersecurity, security, compliance, NIST, SSP, network infrastructure
    $65k-70k yearly 6d ago
  • Advanced Acquisition Analyst/Cyber Security Analyst/CompTIA Certified

    Qed Analytics, Inc.

    Information Security Analyst Job 252 miles from Dothan

    Support the Missile Defense Agency (MDA) with development and analysis of programmatic data for program management support, to include monitoring and reporting against the acquisition program baselines, and assistance with program oversight and execution briefings. Alternative responsibilities may encompass development and execution of acquisition strategies/plans, contract requirements packages (e.g., writing SOWs, CDRLs, special provisions, source selection evaluation plans) and supporting prime contract monitoring/management activities. CompTIA Certification Preferred. Certified Authorization Professional (CAP) certification (or ability to attain within 90 days after employment) Provide interpretation and execution of MDA Acquisition policy, directives, guidance, and instructions Provide program management support in developing, maintaining, and reporting against program baselines, gathering and analyzing programmatic data for internal Agency oversight reviews of programs (e.g., MDAR, DPR, PER, PMRs, internal reviews) Prepare briefings and correspondence in response to internal taskings and external RFIs (e.g., GAO/Congressional/DoDIG/DoD oversight organizations) Analyze acquisition requirements and provide recommendations during pre-solicitation phase through contract execution Support program and contract management processes through the preparation and/or review of acquisition and program management documentation, briefings, white papers, reports, metrics Provide support through all phases of the acquisition cycle with an emphasis on cybersecurity throughout the process Requirements Prior MDA experience preferred. Advanced level - Master's degree required and/or 15 years' experience Intermediate level - Bachelor's degree required and/or 10 years' relevant experience Knowledge and experience in acquisition, procurement, and contracting highly desirable Solid background in MS Office tools suite (e.g., Word, Excel, PowerPoint, Access) essential Must possess exceptionally strong communications and analytical skills, be a self-starter, detail oriented, work well with a team, interacts with multiple levels and functional areas and able to manage customer and contractor relationship SECRET or above Security Clearance required.
    $64k-87k yearly est. 21h ago
  • Cyber Analyst - CSSP

    Colsa Corporation 4.8company rating

    Information Security Analyst Job 252 miles from Dothan

    Performs system monitoring and analysis support for the detection of cyber incidents and provides recommendations on how to correct findings. Principal Duties and Responsibilities (*Essential Functions): * Analyzes network data to include packet capture analysis, network flow analysis. * Reviews and recommends changes for a wide range of Cyber security issues including architectures, firewalls, electronic data traffic, and network access * Familiar with encryption technology, penetration and vulnerability analysis of various security technologies, and information technology security research. * Provides network and security operations technical analysis, assessment, recommendations, and verifies acceptable mitigation of security incidents through Incident Reports. * Conducts daily audits to ensure information systems security policies and procedures are implemented as defined in security plans and best practices, documenting findings in an Argus Report, and providing subscribers with a summary of those findings along with the report. * Conducts daily review of open vulnerabilities using both Network and Endpoint based security solutions, adding findings that meet pre-determined criteria to Incident Reports and tracking mitigation efforts until resolved. * Establishes strict program control processes and policies to ensure mitigation of risks, including the enforcement of quarantine tasking, and supports obtaining certification and accreditation of systems. * May interface with external entities (e.g. law enforcement, intelligence/government agencies, etc.) * Supports customers in preparation for upcoming cyber security posture assessment. At COLSA, people are our most valuable resource and centered at our core value. We invite you to unite your talents with opportunity and be a part of our "Family of Professionals!" Learn about our employee-centric culture and benefits here. Required Experience Required Qualifications * Bachelor's degree or higher in a related field * Minimum of 1-4 years of related experience * Active DoD 8570/8140 IAT Level II (e.g., Security+CE) * Strong written and verbal communication skills * US Citizenship Required; must be able to obtain an interim DoD Secret clearance prior to start. * Familiar with network cyber-defense capabilities and basic understanding of network threats, potential network exploitation, and methods to defend against potential malicious activity. * Basic knowledge of Computer Network Defense activities to include standard cyber-defense Intrusion Detection Systems (IDS), Intrusion Protection Systems (IPS), network monitoring, packet capture analysis, network flow analysis, network proxy operation, firewalls, and anti-virus capabilities, and vulnerability management solutions. Preferred Qualifications * Network Analysis experience * Microsoft Excel Experience * Experience in creating dashboards in Excel, JIRA, etc. * Experience working with Security Technical Implementation Guides (STIGs) * Vulnerability Assessment experience * CSSP Analyst (CEH or CySA+CE) certification * TOP SECRET Clearance Applicant selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. COLSA Corporation is an Equal Opportunity Employer, Minorities/Females/Veterans/Disabled. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin. This position will be posted for a minimum of 3 business days. If a candidate has not been selected at that time, it will continue to be posted until a suitable candidate is selected or the position is closed. COLSA offers a comprehensive and customizeable benefits program which includes Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, Accidental Death & Dismemberment, Supplemental Income Protection Programs, 401(k) with company match, Flexible Spending Accounts, Employee Assistance Program, Education & Certification Reimbursement, Employee Discount Program, Wellness Program, Paid Time Off and Holidays.
    $63k-80k yearly est. 2d ago
  • Cyber Security Analyst

    Pmu Recruitment

    Information Security Analyst Job In Alabama

    Cyber Security Analyst - (2400000X) Description AL-KHOBAR, KINGDOM OF SAUDI ARABIA Cyber Security Analyst Department Information Technology Institution Prince Mohammad bin Fahd University Reports to Manager - Cyber Security introduction The Cyber Security Analyst at Prince Mohammad bin Fahd University protects the university's digital assets, network, and data by identifying vulnerabilities, monitoring threats, and enforcing security measures. This role ensures compliance with security policies, supporting a safe environment for research and academic activities. Job Purpose The Cyber Security Analyst role is to safeguard the university's IT infrastructure by proactively monitoring, identifying, and addressing security threats. This position involves implementing security measures, responding to incidents, and ensuring compliance with security policies to protect data and maintain the integrity of university systems. The analyst plays a key role in supporting a secure environment for all digital and academic activities. Duties and Responsibilities Major Duties/ Responsibilities: · Monitor all networks and computer systems to prevent, detect, and investigate security breaches. · Perform penetration testing to ensure the company's networks are free of bugs that malware authors can take advantage of. · Design and implement multilevel security strategies to protect networks and data resources. · Plan computer and network security upgrades and test hardware and software related to the upgrade. · Stay up to date on new information technologies and apply those innovations in the company's security standards and best practices. · Lead analysis of current architecture, risk exposure and defining mitigation measures in order to develop suitable recommendations. · Highlight Cyber Security threats and prepare the official reports. · Lead assessments of company's security posture including benchmarking/maturity assessments. · Lead design of cyber security solutions and development of detailed technical specifications for the approved designs. · Lead implementation, integration and testing of approved security solutions. · Provide specialist technical support and address technical problems related to applications and production equipment to ensure any complex/escalated issues are handled with no or minimal downtime. · Oversee/perform preventive maintenance as per schedule to ensure relevant security systems/processes remain fit for purpose. · Provide subject matter expertise for cyber security related projects throughout its lifecycle to ensure delivery is as per plan/budget and client/TCC expectations. · Prepare and deliver technical presentations for successful project delivery · Lead cybersecurity evaluation and configuration review services · Anticipate future problem areas by monitoring workflows and network traffic patterns. · Prepare and perform cyber security awareness activities. · Prepare work papers documenting procedures performed and that fully support audit findings. · Assist IT operational audits in accordance with the annual audit plan. · Follows up the action plan progress (such as penetration tests, vulnerability scans) and ensures that recommendations are implemented in a timely manner · Assist staff members when they need help with security products and processes. Job-Specific Skills: · Working experience in a SOC or NOSC environment · Must have strong working knowledge of information technology, including applications, networks and systems. · Knowledge in performing IT Audit reports · Experience in performing Risk Assessments reports. · Experience in developing Business Continuity Plans and Disaster Recovery Plans · Knowledge in the usage of vulnerability assessment and penetration testing tools · Knowledge of security attacks techniques, familiar with MITRE ATT@CK framework · Experience in using MS Office, MS Visio, Project Management tool. · Experience in project management, problem-solving, training/coaching, presentation skills, and conflict resolution skills. · General knowledge of ISO 27001, ITIL or other control frameworks · Experience in writing SOP's - operation manuals · Independent, motivated, and ambitious personality Qualifications & Experience (Required) Bachelor's degree in computer science, technology or computer engineering 5 to 8 years of experience in progressively more complex and responsible operational roles within a dynamic Enterprise function Certified CompTIA Security+, CEH, CCNA, CCNP, CISSP (preferred) Experience in Cisco ASA, WatchGuard, Juniper, CheckPoint Firewall Knowledge of network and web protocols, and an in-depth knowledge of Linux/Unix tools and architecture Experience in Patch Management and vulnerably assessment. Knowledge and understanding of relevant legal and regulatory requirements. Knowledge of common information security management frameworks. Experience in Information Security and NCA controls implementation. Having experience in IT, Operational IT, Cybersecurity, incident detection, incident response, and forensics. Maintain quality service delivery by adhering to company standards and best practices. Strong attention to detail with an analytical mind and outstanding problem-solving skills. Familiarity with information technology concepts such as infrastructure, cyber security, and application controls. Great awareness of cybersecurity trends and hacking techniques. On-call network troubleshooting Knowledge, Skills and Abilities (Required) · Strong written and verbal communication skills · Strong focus on first time quality · Desire to grow technical skills and ability to learn new technologies swiftly · High attention to detail, self-starter, result driven · Ability to work in a cross-functional team · Professional, polite, and attentive while also being accurate · Always prepared and responsive, willing to meet each challenge directly · Teamwork · Problem solving, Leadership · Perseverance and motivation · Ability to work under pressure, Confidence · Managing ambiguity, Resilience · Analytical skills, IT skills Disclaimer PMU reserves the right to alter, amend and add responsibilities to this position in line with the institutional needs. Changes and amendments to this job description shall be within the academic framework and the general employment conditions. Primary Location: Al-KHOBARJob: AnalystOrganization: Information Technology DepartmentSchedule: Regular StandardJob Type: Full-time Job Posting: Nov 11, 2024, 8:58:02 AM
    $64k-87k yearly est. 9d ago
  • Sr. Information Systems Security Officer (ISSO)

    Exeter Government 4.1company rating

    Information Security Analyst Job 179 miles from Dothan

    Sr. ISSO Employment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building in Washington, DC. The scope of this position includes full life-cycle Assessment and Authorization (A&A) management through all 6 Steps of the RMF process in support of the Government ISSM.In this role, you'll conduct security assessment, and information system security oversight activities in accordance with NIST 800.53 that support systems from the perspective RMF requirements. CGS brings motivated, highly skilled, and creative people together to solve the government's most dynamic problems with cutting-edge technology. To carry out our mission, we are seeking candidates who are excited to contribute to government innovation, appreciate collaboration, and can anticipate the needs of others. Here at CGS, we offer an environment in which our employees feel supported, and we encourage professional growth through various learning opportunities. Skills and attributes for success: - Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades. - Maintain responsibility for managing cybersecurity risk from an organizational perspective. - Identify organizational risks, prioritize those risks, and maintain a risk registry for escalating and presenting those risks to senior leadership. - Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST) RMF, DoC, and local security policies. - Providing configuration management (CM) recommendations for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO). - Maintain vulnerability scanning tool compliance, such as HBSS or ACAS, and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, manage system changes, and assess the security impact of those changes. - Support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoC RMF. - Provide subject matter expertise for cyber security and trusted system technology. - Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems. - Research, write, review, disposition feedback, and finalize recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes. - Conduct research and write risk assessment reports to include risk thresholds, evaluation, and scoring. - Support analysis of the findings and provide expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems. Qualifications: - Bachelor's Degree. - A minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role in ATO package development, including generating security documentation for requirements, security control assessment, STIG and IAVA compliance, Standard Operating Procedures, test results, etc. - eMASS experience. - Professional security certification such as: CCNA Security, CySA+, GICSP, GSEC, CompTIA Security+ CE, SSCP, or higher. - Strong desktop publishing skills using Microsoft Word and Excel. - Experience with industry writing styles such as grammar, sentence form, and structure. - Ability to multi-task in a deadline-oriented environment. Ideally, you will also have: - CISSP, CASP, or a similar certificate is preferred. - Master's Degree in Cybersecurity or related field. - Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking. - Demonstrated ability to work well independently and as a part of a team. - Excellent work ethic and a high commitment to quality. Our Commitment: Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources. We combine cutting-edge technology with world-class personnel to deliver customized solutions that fit our client's specific needs. We are committed to solving the most challenging and dynamic problems. For the past seven years, we've been growing our government contracting portfolio, and along the way, we've created valuable partnerships by demonstrating a commitment to honesty, professionalism, and quality work. Here at CGS we value honesty through hard work and self-awareness, professionalism in all we do, and to deliver the best quality to our consumers mending those relations for years to come. We care about our employees. Therefore, we offer a comprehensive benefits package. Health, Dental, and Vision Life Insurance 401k Flexible Spending Account (Health, Dependent Care, and Commuter) Paid Time Off and Observance of State/Federal Holidays Contact Government Services, LLC is an Equal Opportunity Employer. Applicants will be considered without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Join our team and become part of government innovation! Explore additional job opportunities with CGS on our Job Board: ************************************* For more information about CGS please visit: ************************** or contact: Email: ******************* $118,560 - $171,253.33 a year
    $118.6k-171.3k yearly Easy Apply 4d ago
  • Cyber Security Analyst 2

    Us Tech Solutions 4.4company rating

    Information Security Analyst Job 179 miles from Dothan

    + This position provides support to the Grid Operations and Planning Research area within client Company's Research & Development. + The engineer will support projects and in time lead efforts to deploy and evaluate the performance of emerging technologies in this arena. + The position is focused on cyber-physical security research for Transmission and Distribution. + The engineer will support cyber-physical security projects with power system and cyber modeling, simulation, and analyses to identify and characterize threats, and vulnerabilities and develop mitigation approaches. + Data from various sources and analytics tools will be leveraged to develop models to characterize normal power system and cyber data to facilitate the identification of anomalous events. + Working knowledge of intrusion detection, risk assessment frameworks, databases, data structures, computer networking is required as well as an aptitude to apply engineering analysis to solve problems. **Description:** + This position supports the Schatz Grid Visualization and Analytics Center (SGVAC) within client Company's Research & Development department. + The SGVAC is an innovation center that facilitates the research, pre-operational development and assessment and demonstration of situational awareness technologies for Transmission and Distribution. + Areas of focus include synchrophasor technology, next generation control center functionalities, cyber security testing, new visualization approaches, DERMS platform evaluation, data analytics as well as modeling and simulation including via a Real Time Digital Simulator (RTDS) with hardware-in-the-loop testing capability. **Qualification Requirements** + Experience in cybersecurity, including cyber security modeling and simulation + Experience with intrusion detection and risk assessment frameworks is required + Experience in power system modeling and simulation + Experience with data analytics including machine learning required + Experience with computer programming (Python, C#, SQL) desired **Job Responsibilities:** + Develop research plan to evaluate new technology + Manage multiple tasks at one time + Provide documentation of study assumptions and methods used to arrive at results + Provide informative reports and presentations on projects + Some overnight travel may be required but this is not extensive. **Other Knowledge, Skills & Abilities** + Must demonstrate good communication skills, both internal and external to the company + Must have excellent organizational skills + Must possess analytical skills as well as the ability to manage multiple projects simultaneously + Must work well in a team environment + Must have the ability to manage your own work schedule and work with limited direction + Must have strong initiative - a self-starter + Must be great at problem solving **Education:** + Bachelors in computer science, computer engineering, cyber security, information systems, electrical engineering or related field required + Advanced degree in EE, computer science or other related fields strongly preferred. **About US Tech Solutions:** US Tech Solutions is a global staff augmentation firm providing a wide range of talent on-demand and total workforce solutions. To know more about US Tech Solutions, please visit *********************** (*********************************** . US Tech Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
    $67k-89k yearly est. 60d+ ago
  • Information Systems Security Officer, Classified Cybersecurity

    Lockheed Martin 4.8company rating

    Information Security Analyst Job In Alabama

    The Cyber Security Specialist will partner with the security team, program, and government customers to perform as an Information Systems Security Officer (ISSO) for Special Access Programs located at the LM Waterton facility in Littleton, CO. Classified Cybersecurity Analysts help secure lifesaving products and critical state-of-the-art engineering and manufacturing systems by applying cutting edge cybersecurity principles. Rising to the challenge of building a more secure world for the warfighter, space exploration, climate sustainability, and commercial use. The work that Cybersecurity Analysts do can include: • You will have a direct impact to national security, ultimately contributing to protecting your loved ones - this is dynamic, gratifying and impactful work! • You will have the opportunity to engage in all aspects of the cyber discipline • You can enjoy a work-life balance that allows for flex hours and a family-first culture • You get to be a part of a company widely recognized as a top employer for women, people of color and veterans - a highly inclusive culture and ranked #11 in Forbes 2022 "World's Best Employers" Key Responsibilities of this role includes: • Oversee day-to-day information system security operations including hardware and software implementations. • Carry out technical administration of IS in accordance with internal LM and customer security requirements, primarily Risk Management Framework (RMF). • Upkeep, monitor, analyze, and respond to network and security events. • Document compliance actions within the approved automated compliance tracking system or develop a plan of actions and milestones (POA&M) with the Information Systems Security Manager (ISSM) to address non-compliance in the allotted time frame. • Ensure systems are operated, maintained, and disposed of in accordance with internal security policies and practices outlined in the security plan. • Balance competing priorities amongst multiple customers and programs. • Auditing is a large part of this role's responsibility. By applying to this job, you are expressing interest in this position and could be considered for other career opportunities where similar skills and requirements have been identified as a match. Should this match be identified you may be contacted for this and future openings. Lockheed Martin is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status. The application window will close in 90 days; applicants are encouraged to apply within 5 - 30 days of the requisition posting date in order to receive optimal consideration.
    $59k-78k yearly est. 18d ago
  • Cyber Security Analyst

    Howard Industries, Inc. 4.0company rating

    Information Security Analyst Job 159 miles from Dothan

    ABOUT HOWARD TECHNOLOGY SOLUTIONS Howard Technology Solutions is a premier retailer of brand name computers, consumer electronics, computer-related accessories, technology supplies and complete technology solutions. Our talented team is our driving force behind our world class customer service, our continuous growth, and our increasing success. With the backing of our parent company, Howard Industries Inc., which includes over 4000 team members and generates $1 billion in revenue, and partnering with great brands such as HP, Lenovo, Cisco, Microsoft and Epson, we have rapidly gained market share in the industry and are looking to expand our team to help us take our company into the future. Howard Technology Solutions remains a leader within our market segments thanks to the dedication, integrity, and talent within our organization. SUMMARY OF POSITION As a Corporate Sales Trainer at Howard Technology Solutions, you will play a crucial role in enhancing the skills and knowledge of our sales professionals to drive exceptional performance and meet organizational goals. You will design, develop, and deliver comprehensive training programs that align with the company's sales strategies and objectives. This position requires a combination of strong sales acumen, training expertise, and the ability to inspire and motivate individuals to excel in their roles. Responsibilities * 1. Training Program Development: * Design and develop training programs to improve the sales skills and product knowledge of the sales team. * Create engaging and interactive training materials, including presentations, workshops, and e-learning modules. 2. Sales Techniques and Methodologies: * Instruct sales representatives on effective sales techniques, objection handling, and negotiation strategies. * Stay abreast of industry trends and incorporate best practices into training programs. 3. Product Knowledge Enhancement: * Collaborate with product teams to ensure a deep understanding of the company's products and services among sales teams. * Conduct ongoing product training sessions to keep the sales team informed about new features and updates. 4. Performance Analysis: * Evaluate the effectiveness of training programs through assessments, feedback, and performance metrics. * Identify areas for improvement and adjust training strategies accordingly. 5. Onboarding: * Facilitate the onboarding process for new sales hires, ensuring a smooth transition into their roles. * Provide ongoing support and mentorship to new team members. 6. Collaboration: * Work closely with the sales leadership team to understand sales goals and align training initiatives with organizational objectives. * Collaborate with cross-functional teams to incorporate diverse perspectives into training programs. 7. Continuous Learning Culture: * Foster a culture of continuous learning by promoting self-paced learning, knowledge sharing, and skill development. * Identify external training resources and opportunities for professional growth. Skills/Qualifications * Proven experience as a corporate sales trainer or a similar role. * Strong understanding of sales methodologies, techniques, and strategies. * Excellent presentation and communication skills. * Ability to create engaging and effective training materials. * Experience with e-learning platforms and training technologies. * Results-oriented with a focus on driving sales performance. * Bachelor's degree in Business, Sales, or a related field. Benefits * Medical Insurance * Dental Insurance * Disability Insurance * Life Insurance * 401K Retirement * Education Reimbursement * Paid Holidays * Paid Vacations Salary Dependent upon experience Career Level Required Experienced (Non-Manager) Experience Required 1+ to 2 years Education Required Bachelor's Degree Job Type Employee Job Status Full-Time
    $61k-84k yearly est. 60d+ ago
  • MDA Assurance Representative Engineer

    A.I. Solutions 4.6company rating

    Information Security Analyst Job In Alabama

    Essential Roles & Responsibilities: The Missile Defense Agency (MDA) Assurance Representatives (MAR) serve as a deployed Mission Assurance resource with direct and unfettered supplier access and insight with leverage to affect value and mitigate risks. The MAR's primary duties are to minimize escapes, drive continuous improvement throughout the supply chain, and provide independent technical assessments. MARs are located across the country in company manufacturing plants and launch sites that MDA has deemed of vital importance. MARs also (1) provide on-site verification and auditing at Developer facilities to ensure that robust controls are in place for quality assurance practices including foreign object debris, electrostatic discharge, and contamination and (2) provide subject matter expertise for the identification, evaluation, and mitigation of risks associated with various aspects of the design, development, manufacturing, fielding and operation of MDA systems. In support of MDA's Quality, Safety & Mission Assurance Directorate (QS) the Contractor shall provide the following functions from an MDA Supplier location in Courtland, AL; Develop a weekly report of significant Mission Assurance issues/risks occurring at the assigned location and associated sub-tier suppliers for hardware and software items. Team with MDA Program Offices and the Defense Contract Management Agency (DCMA). Participate in Hardware Acceptance Reviews (HAR) at the assigned location and associated sub-tier suppliers to assess completed MDA product meets all requirements. Perform walk-throughs of all manufacturing/ test areas at the location and assess build /test practices to industry standard ESD, FOD and tool control practices. Assess critical lift practices to MDA Assurance Provisions (MAP) and industry standard requirements. Participate in program milestone reviews associated with the MDA product processed at the assigned location, such as Requirements Reviews, Design Reviews, Test Reviews, Program Reviews, Failure Review Boards, and Ship Readiness Reviews. Activities include (1) providing technical evaluations of Developer designs for subcomponents, assemblies, and integrated systems associated with MDA programs and (2) determining root cause of failures of MDA hardware and software. Assess MDA hardware/ software related design, manufacturing and test practices at the assigned location and associated sub-tier suppliers. Ensure these practices meet MDA MAP and industry standard requirements. Activities include providing technical evaluations of Developer designs for subcomponents, assemblies, and integrated systems. Assess first article builds, first article tests and major tests at the assigned location and associated sub-tier suppliers to ensure items meet requirements and industry best practices. Perform inspections of MDA product to ensure they meet design requirements and industry best practices. Assess all hardware and software non-conformances associated with MDA product at the assigned location and associated sub-tier suppliers to ensure root cause is accurately identified and determine if associated corrective action is robust. Travel to other Supplier sites and participate in MDA Audits. Lead the evaluation/closure of associated MDA Audit findings by assessing the root cause/corrective action and validating the company/ site improved policies/practices. Activities include (1) determining root cause of failures of MDA hardware and software, (2) determining appropriate corrective actions for failures of MDA hardware appropriate corrective actions and software, and (3) evaluating effectiveness of corrective actions following implementation. Experience working as a member of team and assisting with solving complex problems. Formal certification to IPC-610 and IPC-620 required to be maintained. New employees shall receive initial certification within 12 months after hiring date. Minimum of 20 hours training in Electrostatic Discharge (ESD) that includes hands-on equipment usage as part of this training at or within 12 months of hiring date. Minimum of 8 hours training in each of MDA MAP and MDA PMAP at or within 24 months of hiring date Minimum Qualifications: BS in engineering from a school of engineering Accreditation Board of Engineering and Technology, Inc. (ABET) Related Field and minimum of 7 years' experience in quality, mission assurance or systems engineering field. Acceptable Substitute: 10 years' additional experience in quality or mission assurance related field. Experience providing quality and mission assurance on systems, system elements, interfacing systems, components, devices and/or processes for operational programs. Security Clearance: SECRET or ability to obtain prior to start MAKE A MOVE, MAKE AN IMPACT. a.i. solutions was founded over 25 years ago with a mission to MAKE AN IMPACT by exceeding expectations. A move to our team means using your passion and ingenuity to MAKE AN IMPACT through innovations, defending national security, and enabling access to space. MAKE A MOVE, to join a team driven by a shared ambition, and rewarded for individual contributions. BENEFITS THAT MAKE AN IMPACT: Salary ranges from $116,000 to $141,000/year depending on relevant experience and qualifications. View Our Benefits Offerings Paid Time Off and Holidays 401k Safe Harbor Plan, we contribute on Day #1 Paid Parental leave for Mom & Dad Company Paid Life/AD&D Tuition Assistance Wellness plans that reward wellbeing & work life harmony
    $116k-141k yearly 60d+ ago
  • Information System Security Officer II

    Grs, Inc. 4.4company rating

    Information Security Analyst Job 93 miles from Dothan

    Global Resource Solutions, Inc. (GRS) is seeking an enthusiastic, motivated, detail orientated, and talented individual for the position of Information System Security Officer II. Job Descriptio n: Summary: The ISSO II's primary function is working within Special Access Programs (SAPs) supporting Department of Defense (DoD) agencies, such as HQ Air Force, Office of the Secretary of Defense (OSD) and Military Compartments efforts. The position will provide “day-to-day” support for Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities. Essential Duties & Responsibilities: Review, prepare, and update AIS authorization packages Notify customer when changes occur that might affect AIS authorization Perform AIS self-inspections, provide security coordination and review of all system test plans Identify AIS vulnerabilities and implement countermeasures Represent the customer on various technical review and inspection teams Conduct security surveys at subordinate facilities and gather pertinent security documentation for inclusion into system authorization packages Coordinate, prepare, and track AIS inspections, reports, and responses Maintain AIS security records and prepare Co-Utilization Agreements for network nodes operating in government facilities Prepare reports on the status of security safeguards applied to computer systems Ensure AIS and network nodes are operated, maintained, and disposed of in accordance with security policies and practices Perform ISSO duties in support of in-house and external customers Assist Department of Defense, National Agency and Contractor organizations with the development of assessment and authorization (A&A) efforts Review, track, and conduct AIS training Requirement: Four (4) years related experience Bachelor's Degree in a related area or equivalent experience (Four (4) years) Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level 2 within 6 months of the date of hire. Security Requirements: Current Top Secret Clearance with SCI Eligibility Eligibility for access to Special Access Programs Willingness to submit to a Counterintelligence Polygraph Skills: Ability to work in a dynamic environment and effectively interact with numerous DOD, military/civilian personnel and industry partners Working knowledge of Microsoft Office (Word, PowerPoint, and Excel) Possess a high degree of originality, creativity, initiative requiring minimal supervision Must be familiar with security policy/manuals and the appropriate DCIDs/JAFANs and other guiding policy documents Requires travel within the organizational geographic Area of Responsibility (AOR) (note - could be extensive, and will include both air and ground transportation) Must be able to lift up to 50lbs Physical Requirements : This position requires employees to be willing and able to: sit, bend, reach, stoop, squat, stand, and walk. Communication: Excellent customer service via phone and face to face conversation, excellent written and oral command of English. An exciting and rewarding career awaits you with Global Resource Solutions, Inc. (GRS). GRS is a management consulting company to government and business that offers great career opportunities and a comprehensive slate of employee benefits to our employees including medical, dental, vision, short/long term disability, life insurance and a retirement plan. GRS is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status. This employer participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S. for more information please see the flyer: *******************************************************************************************
    $68k-89k yearly est. 8d ago
  • Information Security & Compliance Analyst (12 mo. contract)

    Psi Services 4.5company rating

    Information Security Analyst Job 93 miles from Dothan

    **Title:** Information Security & Compliance Analyst - 12 mo. contract **_About PSI_** _We are PSI Services. We power world leading tests. Delivered with trusted science and the very best test taker experience. PSI supports test-takers on their journey to pursuing dreams and gaining certifications that are important to them. They believe that their dreams are worth working for; that their dreams are worth the effort. And we believe that too. This is our core purpose, to empower people to achieve their dreams. We do this by being the best provider of workforce solutions, which foster both technology and science to deliver the best solutions for our test takers._ _We are searching for top talent to join our PSI team and help grow our products and services. We have a creative, supportive and inclusive culture where we empower people in their careers to be their authentic self and make the most of their great talent._ _At PSI, we are committed to helping people meet their potential and we believe that promoting diversity, equity and inclusion is critical to our success. That's why you'll find these ideals are intrinsic to our company culture and applied throughout the employee lifecycle._ _Learn more about what we do at:_ _*************************** **About the Role** The Information Security, Governance, Risk and Compliance Analyst role works collaboratively with stakeholders across the business on various activities related to Quality, Environmental Sustainability, Business Continuity, Information Security and Privacy with the aim of ensuring compliance with ISO, SOC2, NIST, PCI and other industry standard frameworks. This role will collaborate with process owners, internal auditors, external auditors, and other stakeholders in order to assist in reviewing, monitoring, and resolving findings. This includes helping the team manage ISO27001, SOC 2, ISO14001, ISO22301, ISO9001 Compliance programs. By supporting the implementation of internal and external assessments, responding to and managing the full lifecycle of compliance audits, and ensuring compliance with existing and emerging regulations and standards including SOC2, ISO 27001, NIST CSF, PCI, SOX, and other GRC activities, the GRC Analyst will also contribute to the transformation of the company's compliance program. This is a full time, permanent position, Monday to Friday with flexible hours around a standard 0900-1700. The role can be performed remotely, with occasional travel to offices and test centres globally to support with audits. **Role Responsibilities** + Manage risk and vulnerability assessments, validation testing, compliance reviews, and audits in accordance with agreed standards. + Manage and support internal and external audits + Support the continuation of ISO 27001, ISO 9001, ISO 14001, ISO 22301, SOC2 and PCI certifications. + Support the development and maintenance of the Global ISMS Management Committee, including governance related responsibilities. + Maintain and monitor a central repository for audit evidence. + Inform the proper stakeholders of important concerns and hazards + Maintain up-to-date knowledge of procedures and methods that serve to broaden team knowledge and industry expertise + Supporting the development, documentation and maintenance of policies, procedures, and standards across the organisation, ranging from Information Security and Data Protection to Quality Management and Environmental Management. + Assist the department in responding to inquiries from the business units about ongoing operational compliance + Be proactive in seeking out areas for improvement and offer insightful advice and value-added guidance on process and control enhancements + Share information with managers to avoid surprises, draw attention to problems, and guarantee delivery on time + Champion Compliance by promoting and developing awareness of different security and compliance risks and best practices across the company. + Assist with the development of GRC related newsletters and training. **Knowledge, Skills and Experience Requirements** + 2+ years of direct experience in Governance, Risk & Compliance + 1+ year expertise conducting ISO 27001 and SOC 2 audits, as well as handling audit responses + **Thorough understanding of regulatory compliance requirements (ISO27001,ISO22301, SOC 2 , NIST, FedRamp, CMMC, PCI, GDPR, etc.)** + Knowledge of GRC tool techniques and best practices (ZenGRC, OneTrust, Archer) + Proven track record of organizing and carrying out several risk and compliance projects + Ability to successfully manage third-party audits, compile evidence, and organize audit responses + Keen attention to detail + Effective written and verbal communication skills and the capability to communicate with cross-functional teams + Proven analytical and problem-solving abilities for managing initiatives that advance corporate goals + Certifications (Preferred): + GRC Professional (GRCP) + Certified in Governance, Risk & Compliance (CGRC) + Certified in Cybersecurity (CC) **_Benefits & Culture_** _At PSI, our culture is to be transparent and fair. That's why all of our roles have been benchmarked at a competitive rate against the local market they are based in. To be transparent all of our adverts now include the salary so you can see if we align with your expectations when looking for your next role._ _In addition to a competitive salary, we offer a comprehensive benefits package and supportive culture when you join us. This includes;_ + _401k/Pension/Retirement Plan - with country specific employer %_ + _Enhanced PTO/Annual Leave_ + _Medical insurance - country specific_ + _Dental, Vision, Life and Short Term Disability for US_ + _Flexible Spending Accounts - for the US_ + _Medical Cashback plan covering vision, dental and income protection for UK_ + _Employee Assistance Programme_ + _Commitment and understanding of work/life balance_ + _Dedicated DE&I group that drive core people initiatives_ + _A culture of embracing wellness, including regular global initiatives_ + _Access to supportive and professional mechanisms to help you plan for your future_ + _Volunteer Day and a culture of giving back to our community and industry through volunteering opportunities_ Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)
    $68k-101k yearly est. 16d ago
  • Information Systems Security Officer (ISSO)

    Contact Government Services

    Information Security Analyst Job 172 miles from Dothan

    ISSO Employment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building in Washington, DC. The scope of this position includes full life-cycle Assessment and Authorization (A&A) management through all 6 Steps of the RMF process in support of the Government ISSM.In this role, you'll conduct security assessment, and information system security oversight activities in accordance with NIST 800.53 that support systems from the perspective RMF requirements. CGS brings motivated, highly skilled, and creative people together to solve the government's most dynamic problems with cutting-edge technology. To carry out our mission, we are seeking candidates who are excited to contribute to government innovation, appreciate collaboration, and can anticipate the needs of others. Here at CGS, we offer an environment in which our employees feel supported, and we encourage professional growth through various learning opportunities. Skills and attributes for success: * Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades. * Maintain responsibility for managing cybersecurity risk from an organizational perspective. * Identify organizational risks, prioritize those risks, and maintain a risk registry for escalating and presenting those risks to senior leadership. * Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST) RMF, DoC, and local security policies. * Providing configuration management (CM) recommendations for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO). * Maintain vulnerability scanning tool compliance, such as HBSS or ACAS, and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, manage system changes, and assess the security impact of those changes. * Support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoC RMF. * Provide subject matter expertise for cyber security and trusted system technology. * Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems. * Research, write, review, disposition feedback, and finalize recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes. * Conduct research and write risk assessment reports to include risk thresholds, evaluation, and scoring. * Support analysis of the findings and provide expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems. Qualifications: * Bachelor's Degree. * A minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role in ATO package development, including generating security documentation for requirements, security control assessment, STIG and IAVA compliance, Standard Operating Procedures, test results, etc. * eMASS experience. * Professional security certification such as: CCNA Security, CySA+, GICSP, GSEC, CompTIA Security+ CE, SSCP, or higher. * Strong desktop publishing skills using Microsoft Word and Excel. * Experience with industry writing styles such as grammar, sentence form, and structure. * Ability to multi-task in a deadline-oriented environment. Ideally, you will also have: * CISSP, CASP, or a similar certificate is preferred. * Master's Degree in Cybersecurity or related field. * Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking. * Demonstrated ability to work well independently and as a part of a team. * Excellent work ethic and a high commitment to quality. Our Commitment: Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources. We combine cutting-edge technology with world-class personnel to deliver customized solutions that fit our client's specific needs. We are committed to solving the most challenging and dynamic problems. For the past seven years, we've been growing our government contracting portfolio, and along the way, we've created valuable partnerships by demonstrating a commitment to honesty, professionalism, and quality work. Here at CGS we value honesty through hard work and self-awareness, professionalism in all we do, and to deliver the best quality to our consumers mending those relations for years to come. We care about our employees. Therefore, we offer a comprehensive benefits package. Health, Dental, and Vision Life Insurance 401k Flexible Spending Account (Health, Dependent Care, and Commuter) Paid Time Off and Observance of State/Federal Holidays Contact Government Services, LLC is an Equal Opportunity Employer. Applicants will be considered without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Join our team and become part of government innovation! Explore additional job opportunities with CGS on our Job Board: ************************************* For more information about CGS please visit: ************************** or contact: Email: ******************* $92,213.33 - $125,146.66 a year
    $92.2k-125.1k yearly Easy Apply 52d ago
  • Information Security Analyst

    Information Systems Solutions 3.6company rating

    Information Security Analyst Job 22 miles from Dothan

    Information Systems Solutions (ISS) is looking for an Information Security Analyst supporting Fort Novosel, AL. Specific duties include, but are not limited to the following: Responsible for maintaining the security posture of our program by conducting compliance checks and vulnerability scanning using the Assured Compliance Assessment Solution (ACAS) Requires a deep understanding of cybersecurity principles, risk management, and familiarity with various compliance frameworks Implement and manage the ACAS suite to conduct regular vulnerability scans across the programs' network infrastructure Analyze scan results, prioritize vulnerabilities based on risk, and report findings to relevant stakeholders Develop and maintain scanning policies and procedures to ensure comprehensive coverage of assets Work closely with IT and development teams to remediate identified vulnerabilities in a timely manner Ensure compliance with relevant cybersecurity frameworks, standards, and regulations (e.g., NIST) Assist in the development of System Security Plans (SSPs) and other documentation required for compliance purposes Collaborate with the compliance team to prepare for internal and external audits Provide technical guidance on security best practices and assist in security awareness training initiatives Stay current with emerging security threats, vulnerabilities, and controls Manage the Plan of Action and Milestones Prepare, review and update RMF documentation Participate in incident response activities as needed. Why Work For ISS? At ISS we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career. Clearance Level Secret clearance Certifications (IAT Level II) One of the following: CCNA-Security CySA+ GICSP GSEC Security+ CE CND SSCP Required Skills At least 4 years of experience in cybersecurity or equivalent field Bachelor's degree or equivalent experience Knowledge with of the NAVINTEL ICD 503 Risk Management Framework (RMF) Implementation Policies/Directives and Dept. of Navy (DON) cybersecurity Policies/Directives. Knowledge and experience with automated tools such as Assured Compliance Assessment Solution (ACAS), Center for Internet Security (CIS) Benchmark, and Security Content Automation Protocol (SCAP), and Retina. Knowledge and experience of cybersecurity, A&A and RMF documentation development and support.
    $34k-49k yearly est. 60d+ ago
  • SECURITIES ANALYST, SENIOR

    State of Alabama 3.9company rating

    Information Security Analyst Job 93 miles from Dothan

    Securities Analyst, Senior is a permanent, full-time position with the Alabama Securities Commission. Positions are located in Montgomery. This is highly specialized work relating to the registration/licensing and examination of securities, broker/dealers, and investment advisers.
    $49k-63k yearly est. 60d+ ago
  • Information Systems Security Officer

    Ironmountain Solutions 4.2company rating

    Information Security Analyst Job 252 miles from Dothan

    501462 Information Systems Security Officer Schedule: Full Time IronMountain Solutions, Inc. is seeking an Information Systems Security Officer (ISSO) to provide information assurance and cybersecurity support to the Army's Task Force Strategic Integrated Kinetic Effects (TF STRIKE) Project Office. The primary duty is to serve as an ISSO for the Mid-Range Capabilities Project Office. The ISSO will provide support across the STRIKE portfolio, which includes: Serve as an Information Assurance (IT) support to the Organizational ISSM, in the management and administration of authorization and accreditation (A&A) package processing. This position requires an understanding of IA to tactical networks, systems, security practices, and the application of IA concepts to rapid hardware/software prototype development. Participate, as a team member, within the assessment of confidentiality, integrity, and availability of systems, networks, and data through the coordination, planning, analysis, development, implementation, and enhancement of information assurance programs, policies, procedures and tools. Serve as the front-line team member to the organization's Authorizing Official team ensuring the dissemination and adherence to IA policies, procedures, guidance, and training requirements. Enforce IA standards and procedures for all phases of hardware and software lifecycle management process and assists in developing solutions to complex problems. Assist in the administrative management support of the STRIKE PMO by carrying out and responding in a timely manner to IT/IA tasks and requests; and manage internal office IT and IA work tasks. Develop and maintain relationships between Program/Project Management Offices, STRIKE program staff, and outside organizations to ensure proper communication, development and deployment of information assurance technologies, products, and systems. Assist in preparing briefing materials, supporting engineering and development meetings, coordinating security testing events, scheduling and supporting teleconferences and video teleconferences and other administrative support tasks as directed. Coordinate regularly with staff performing similar functions at other related locations. While performing the duties of this job, the employee is occasionally required to stand; walk; sit; use tools or controls; normal physical activity (reach with hands and arms; climb stairs); and communicate effectively with all levels of employees and leadership. The employee must occasionally lift or move office products and supplies, up to 25 pounds. Required Skills Active Secret Clearance Bachelor's Degree required. DoDI 8570 IAM Level II certification (CASP, CAP, CISSP/Associates) Required Experience 5+ years of cumulative experience in DoD information technology and information assurance practices. 3+ year of cumulative experience in Authorization & Accreditation (A&A) package management. 1+ year of independent experience in all six steps of the Risk Management Framework (RMF) lifecycle. 1+ years of related experience in Army Information Assurance processes and procedures. 1+ years of experience with Enterprise Mission Assurance Support Service (eMASS) solutions. 1+ years of experience with using security vulnerability and scanning tools (Retina, ACAS, Nessus, etc). Familiarity with industry information assurance policies and procedures (NIST SP 800-171, 800-37, etc.) Experience working both independently and as a team to accomplish short notice, high priority tasks directed by senior leadership. Experience applying problem solving techniques to complex government problems related to adapting enterprise solutions to tactical systems and devices. Desired Qualifications: Experience working in an organizational Headquarters run by a General Officer/SES. Good understanding of the Army's Information Technology (IT) and Information Assurance (IA) processes, procedures, regulations and governance. Desire to learn application of IA concepts and practices to rapid development and prototyping projects. Experience applying and adapting traditional IA requirements to non-standard projects and solutions. DISA eMASS training experience. Clearance Requirements: Applicants selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. IronMountain Solutions is an Equal Opportunity Employer/SDVOSB
    $64k-85k yearly est. 21d ago
  • Jr. Information System Security Officer

    Teledyne 4.0company rating

    Information Security Analyst Job 252 miles from Dothan

    **Be visionary** Teledyne Technologies Incorporated provides enabling technologies for industrial growth markets that require advanced technology and high reliability. These markets include aerospace and defense, factory automation, air and water quality environmental monitoring, electronics design and development, oceanographic research, deepwater oil and gas exploration and production, medical imaging and pharmaceutical research. We are looking for individuals who thrive on making an impact and want the excitement of being on a team that wins. **Job Description** **Job Summary** The Junior Information System Security Officer (Jr. ISSO) will assist in preparation, development, and maintenance of specialized Information Systems (IS) security plans used to obtain/retain DCSA accreditation. **Essential Duties and Responsibilities** may include the following. Other duties may be assigned. + You will be required to oversee the system compliance, and auditing of the information systems. + Review and revise IS system plans documentation based on analysis of the existing equipment configuration. Document any changes or special security requirements. + Provide day-to-day technical support to classified IS including adherence to policies, procedures, and best practices. + Assist with the design, develop, and implement annual IS security training for the end-users. Similar but specialized training will also be given to the Data Transfer Agents DTAs and SAs annually. + Assist in the development of drafting procedures for the protection of the information system. + Assists in spill containment and cleanup. + Partners and works with Government agencies, including the Department of Defense (DoD) and other relevant agencies, on information security matters + Participates in investigations relating to any IS security violations and provides "lessons learned" information to the IS community to prevent reoccurrence. + Communicates security risks and solutions to business partners and IT staff as needed + Assists the Information Systems Security Manager (ISSM) and implements information systems security tasks, as required for safeguarding, handling, and controlling of classified materials, documents and equipment. Knowledgeable in information systems security in order to assure enforcement of company and government regulations. + Attends cybersecurity events and participates in other external cybersecurity activities to maintain current in the field + Knowledge of National Industrial Security Program Operating Manual (NISPOM), DCSA Assessment and Authorization Process Manual (DAAPM), and Risk Management Framework is required. + Responds to emergencies and remediates information security incidents **Supervisory Responsibilities** This job has no supervisory responsibilities. **Competencies** To perform the job successfully, an individual should demonstrate the following competencies: + Problem Solving - Identifies and resolves problems in a timely manner; Gathers and analyzes information skillfully. + Project Management - Communicates changes and progress. + Technical Skills - Pursues training and development opportunities; Strives to continuously build knowledge and skills. + Oral/Written Communication - Listens and gets clarification; Responds well to questions; Records data; Writes clearly and informatively; Able to read and interpret written information. + Teamwork - Gives and welcomes feedback; Supports everyone's efforts to succeed. + Leadership - Exhibits confidence in self and others; Inspires and motivates others to perform well; Accepts feedback from others; Gives appropriate recognition to others. + Change Management - Develops workable implementation plans; Communicates changes effectively. + Business Acumen - Understands business implications of decisions. + Ethics - Treats people with respect; + Organizational Support - Follows policies and procedures; Supports organization's goals and values. + Judgment - Includes appropriate people in decision-making process. + Motivation - Demonstrates persistence and overcomes obstacles. + Planning/Organizing - Prioritizes and plans work activities; Uses time efficiently. + Professionalism - Approaches others in a tactful manner; Reacts well under pressure; Accepts responsibility for own actions; Follows through on commitments. + Quality - Demonstrates accuracy and thoroughness; Looks for ways to improve and promote quality; Applies feedback to improve performance; Monitors own work to ensure quality. + Quantity - Completes work in timely manner; Strives to increase productivity. + Safety and Security - Observes safety and security procedures including using Personal Protective Equipment (PPE) as required and wearing company issued badge when on company property; Reports potentially unsafe conditions ; Uses equipment and materials properly. + Adaptability - Adapts to changes in the work environment; Able to deal with frequent change, delays, or unexpected events. + Initiative - Seeks increased responsibilities; Asks for and offers help when needed. + Innovation - Generates suggestions for improving work. **Qualifications** To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. **Education and/or Experience:** + Bachelor's degree (B.S.) from four-year college or university in a related field and 0-2 years of information technology experience with a cybersecurity focus and/or training; or equivalent combination of education and experience. **Language Skills** + Strong interpersonal skills. + Strong oral and written communication abilities with all levels of management, employees, and customers, ability to communicate and explain information efficiently. + Ability to translate security situations and postures into business objectives and outcomes **Mathematical Skills** + Ability to add, subtract, multiply, and divide in all units of measure, using whole numbers, common fractions, and decimals. + Ability to compute rate, ratio, and percent. **Reasoning Ability** Develops solutions to a variety of complex problems. May refer to established precedents and policies. Demonstrates judgment and discretion in working with sensitive information and confidential matters **Computer Skills** + Ability to learn and adapt to new technologies + Full knowledge and thorough understanding of: + Automated vulnerability scanning tools, forensic tools, Windows and other operating systems + Information security architecture, systems design, integration of systems and networking + Microsoft Office Suite (i.e., Outlook, Word, Access, Excel, PowerPoint, Project, Visio, etc.) + Knowledgeable in information systems security in order to assure enforcement of company and government regulations. **Other Essential Duties** + Follows all import/export requirements, consulting with facility import/export personnel as required. **Other Skills and Abilities** + Within 1 year of hire, you must obtain and maintain a cybersecurity certification Security + or equivalent. **Other Qualifications** + Active Government Security Clearance + US Citizenship with ability to attain/maintain government security clearance. + Ability to travel (domestically/internationally) approximately _5__% Teledyne and all of our employees are committed to conducting business with the highest ethical standards. We require all employees to comply with all applicable laws, regulations, rules and regulatory orders. Our reputation for honesty, integrity and high ethics is as important to us as our reputation for making innovative sensing solutions. Teledyne is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age, or any other characteristic or non-merit based factor made unlawful by federal, state, or local laws. You may not realize it, but Teledyne enables many of the products and services you use every day **.** Teledyne provides enabling technologies to sense, transmit and analyze information for industrial growth markets, including aerospace and defense, factory automation, air and water quality environmental monitoring, electronics design and development, oceanographic research, energy, medical imaging and pharmaceutical research.
    $63k-83k yearly est. 60d+ ago
  • Sr. Information System Security Officer

    Integration Innovation, Inc. (I3

    Information Security Analyst Job 252 miles from Dothan

    i3 is seeking a Sr. Information System Security Officer (ISSO) to d esign, implement, and maintain secure cyber systems to protect an organization's information and assets from cyber threats. Oversee compliance with governmental regulations, conduct system scans, manage cybersecurity activities, and maintain the integrity and confidentiality of information systems. Position is based in Huntsville, AL, at Redstone Arsenal and is 100% onsite. Responsibilities + Serve as an Information Systems Security Officer (ISSO), ensuring systems meet acceptable risk levels and comply with RMF policies. + Prepare and submit accreditation packages and maintain RMF ConMon authorization documentation utilizing eMASS. + Collaborate with diverse teams to ensure secure system functionality and address compliance gaps. + Conduct technical evaluations, vulnerability assessments, and compliance validations for systems, networks, and applications against applicable NIST controls, DISA STIGs, and DoD policies. + Design, recommend, and enforce security policies, procedures, and plans for safeguarding information systems, software, and hardware. + Develop and maintain Risk Management Framework (RMF) lifecycle documentation, including SSPs, POA&Ms, RARs, and continuous monitoring plans. + Manage information systems using tools such as ACAS, OpenRMF and Elastic, ensuring compliance with Army, DISA, DoD, and PEO Missiles and Space regulations. + Identify, assess, and mitigate cybersecurity risks throughout the system lifecycle. + Formulate and implement mitigations and maintain the security posture of systems. + Monitor and evaluate system compliance with DoD security, resilience, and dependability requirements, ensuring adherence to established standards. + Assist and advise on investigations to resolve security incidents, recommend corrective actions. + Oversee account management, security auditing, and configuration management reporting for assigned systems. + Develop and deliver security education and awareness programs. + Support technical integration and implementation of advanced IT architectures, including virtualization and Zero-Trust models. + Implement programs to ensure implementation of IAVA and security related patches on end-user machines and servers to meet compliance requirements. Qualifications + Bachelor's degree in a technical field or additional experience may substitute for degree. + 6+ years of relevant experience in cybersecurity, RMF, and vulnerability management. + Knowledge of DoD and federal cybersecurity standards, including DISA STIGs, NIST RMF, and IAVMs. + Experience with cybersecurity tools such as ACAS and Elastic to provide cyber compliance and configuration guidance to technical teams. + Hands-on experience with STIG Viewer and eMASS. + Active or obtainable DoD 8140 Information Assurance certification (e.g., Security+, CISSP, or CASP+/Security X). + Ability to obtain and maintain a DoD Secret security clearance. + Strong understanding of information system architecture, cybersecurity principles, and risk management. + Proficiency in analyzing vulnerabilities, implementing mitigations, and maintaining compliance with security requirements. + Exceptional organizational, communication, and relationship management skills. + Ability to work independently and collaboratively in a fast-paced, dynamic environment. + Knowledge of advanced IT architectures, including virtualization, Zero-Trust and software defined networking concepts. + Experience deploying and configuring cybersecurity tools and conducting vulnerability audits. Knowledge/Skills + Strong understanding of information system architecture, cybersecurity principles, and risk management. + Proficiency in analyzing vulnerabilities, implementing mitigations, and maintaining compliance with security requirements. + Exceptional organizational, communication, and relationship management skills. + Ability to work independently and collaboratively in a fast-paced, dynamic environment. + Knowledge of advanced IT architectures, including virtualization, Zero-Trust and software defined networking concepts. + Experience deploying and configuring cybersecurity tools and conducting vulnerability audits. About i3 i3 is a technically diverse, 100% team member owned business, headquartered in Huntsville, Alabama specializing in missile and aviation systems engineering and logistic services, electronic warfare and electromagnetic effects analysis, UAS system integration and flight operations, full lifecycle C5ISR engineering services, cybersecurity and IT/IA innovative solutions and virtual training, simulation & serious game development and implementation. We have established a broad offering of products and capabilities collectively providing decades of experience supporting the full complement of DoD military services, Missile Defense Agency, National Aeronautics and Space Administration, and a variety of other Government organizations and private industry customers. Perks of being a team member owner include: + Long-term financial security + Higher job satisfaction + Greater job security + Personal and professional growth + Great company culture Other outstanding benefits: + Excellent insurance coverage + 401(k) match + Generous PTO + Health and wellness incentives + Tuition and certification reimbursement + Countless opportunities to give back to the community through i3 Cares We work hard. We compete hard. We play hard. Apply now to join us! Job LocationsUS-AL-Huntsville ID 2025-4613 Business Unit ITCE Type Full-Time Clearance Secret Preferred
    $61k-83k yearly est. 15d ago
  • Information System Security Officer (ISSO) (Senior)

    Nexthreat

    Information Security Analyst Job 252 miles from Dothan

    Job Title: Information System Security Officer (ISSO) (Senior) Job Category: Information Technology Time Type: Full-time Clearance Requirement: Current TS/SCI Clearance required Security Suitability: Must pass FBI security suitability Polygraph Requirement: Must pass an FBI-administered Counterintelligence polygraph if one has not been conducted within the last five years. Employee Type: W2 or 1099 Citizenship: US Citizen, no Dual Citizenship Job Summary: The Senior Information System Security Officer (ISSO) will play a critical role in the Infrastructure Support Team, responsible for overseeing the security of information systems that provide essential infrastructure for the Security Operations Center (SOC) capabilities and data. This position requires a subject matter expert who will maintain the Authority to Operate (ATO) for various systems and applications across the SOC while ensuring compliance with security standards and regulations, including those set forth by NIST and FISMA. Key Responsibilities: · Develop, implement, and maintain security policies, procedures, and configurations for SOC information systems. · Conduct risk assessments and security audits to identify vulnerabilities and recommend mitigations. · Ensure compliance with NIST 800 series publications and the Federal Information Security Management Act (FISMA). · Collaborate with network engineers and system administrators to implement security controls and monitor effectiveness. · Oversee the system accreditation process and manage the ATO documentation for compliance with FBI standards. · Evaluate and manage NIST 800-53 control implementations, ensuring security measures are established and followed. · Provide guidance and expertise on security best practices, regulatory requirements, and emerging threats. · Utilize GRC tools (e.g., RiskVision, Xacta, JCAM) to support compliance and risk management efforts. Unique Skills/Tasks/Software: · Required: Strong proficiency in Microsoft Windows and Active Directory. · Required: In-depth understanding of NIST 800 series publications and FISMA compliance. · Preferred: Experience with VMWare vSphere 7. · Preferred: Knowledge of Cisco Networking principles and devices. · Preferred: Hands-on experience with Dell servers and SAN storage solutions. · Familiarity with system accreditation and the FBI's ATO processes. · Experience evaluating, documenting, and managing NIST 800-53 control implementations. Preferred Certifications: · Microsoft Windows Server Hybrid Administrator Associate · VMware Data Center Virtualization (VCP-DCV) · Cisco Certified Network Professional (CCNP) · Certified Information Systems Security Professional (CISSP) Qualifications: · Bachelor's degree in Information Technology, Cybersecurity, or a related field (or equivalent experience). · Minimum 5 years of experience in information security, risk management, or related fields. · Strong analytical skills and a detail-oriented mindset.
    $61k-83k yearly est. 9d ago
  • Senior Security Analyst

    Troy University 3.9company rating

    Information Security Analyst Job 52 miles from Dothan

    The Senior Security Analyst position is responsible for technical and thought-leadership duties for multiple information security disciplines such as incident response, vulnerability management, intrusion detection and prevention, threat hunting, security operations, security policy, and awareness/education; oversight of information security incident response activities, risk assessment and risk management activities, and vulnerability assessment and vulnerability management activities spanning University and business units; managing detailed network, operating system, database, and application vulnerability assessments and security configuration audits; managing information security initiatives; oversight of operational tasks supporting information security functions such as intrusion detection and prevention, security event log analysis, management reporting, malware prevention and remediation, encryption, network segmentation, remote access, cloud security, and authentication; supporting, maintaining, monitoring, troubleshooting and enhancing security infrastructure tools, methodologies, software, and hardware; drafting and reviewing information security policies, processes, and procedures; reviewing information security awareness and education materials and other documentation; determining and documenting information security requirements and controls necessary for the protection of information resources; providing guidance and assistance regarding information security matters such as the interpretation of information security policies and requirements or their applicability to particular situations; independently maintaining automated tools and methodologies in support of Information Security functions; analyzing data from Information Security functions and providing reports and recommended response actions to Information Security management; representing Information Security to other organizations on information security related matters, as assigned; publishing regular status reports and submission to management; and performing other related tasks as assigned.
    $63k-81k yearly est. 58d ago
  • Information Systems Security Officer (ISSO)

    Contact Government Services

    Information Security Analyst Job 252 miles from Dothan

    ISSO Employment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building in Washington, DC. The scope of this position includes full life-cycle Assessment and Authorization (A&A) management through all 6 Steps of the RMF process in support of the Government ISSM.In this role, you'll conduct security assessment, and information system security oversight activities in accordance with NIST 800.53 that support systems from the perspective RMF requirements. CGS brings motivated, highly skilled, and creative people together to solve the government's most dynamic problems with cutting-edge technology. To carry out our mission, we are seeking candidates who are excited to contribute to government innovation, appreciate collaboration, and can anticipate the needs of others. Here at CGS, we offer an environment in which our employees feel supported, and we encourage professional growth through various learning opportunities. Skills and attributes for success: * Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades. * Maintain responsibility for managing cybersecurity risk from an organizational perspective. * Identify organizational risks, prioritize those risks, and maintain a risk registry for escalating and presenting those risks to senior leadership. * Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST) RMF, DoC, and local security policies. * Providing configuration management (CM) recommendations for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO). * Maintain vulnerability scanning tool compliance, such as HBSS or ACAS, and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, manage system changes, and assess the security impact of those changes. * Support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoC RMF. * Provide subject matter expertise for cyber security and trusted system technology. * Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems. * Research, write, review, disposition feedback, and finalize recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes. * Conduct research and write risk assessment reports to include risk thresholds, evaluation, and scoring. * Support analysis of the findings and provide expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems. Qualifications: * Bachelor's Degree. * A minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role in ATO package development, including generating security documentation for requirements, security control assessment, STIG and IAVA compliance, Standard Operating Procedures, test results, etc. * eMASS experience. * Professional security certification such as: CCNA Security, CySA+, GICSP, GSEC, CompTIA Security+ CE, SSCP, or higher. * Strong desktop publishing skills using Microsoft Word and Excel. * Experience with industry writing styles such as grammar, sentence form, and structure. * Ability to multi-task in a deadline-oriented environment. Ideally, you will also have: * CISSP, CASP, or a similar certificate is preferred. * Master's Degree in Cybersecurity or related field. * Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking. * Demonstrated ability to work well independently and as a part of a team. * Excellent work ethic and a high commitment to quality. Our Commitment: Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources. We combine cutting-edge technology with world-class personnel to deliver customized solutions that fit our client's specific needs. We are committed to solving the most challenging and dynamic problems. For the past seven years, we've been growing our government contracting portfolio, and along the way, we've created valuable partnerships by demonstrating a commitment to honesty, professionalism, and quality work. Here at CGS we value honesty through hard work and self-awareness, professionalism in all we do, and to deliver the best quality to our consumers mending those relations for years to come. We care about our employees. Therefore, we offer a comprehensive benefits package. Health, Dental, and Vision Life Insurance 401k Flexible Spending Account (Health, Dependent Care, and Commuter) Paid Time Off and Observance of State/Federal Holidays Contact Government Services, LLC is an Equal Opportunity Employer. Applicants will be considered without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Join our team and become part of government innovation! Explore additional job opportunities with CGS on our Job Board: ************************************* For more information about CGS please visit: ************************** or contact: Email: ******************* $92,213.33 - $125,146.66 a year
    $92.2k-125.1k yearly Easy Apply 52d ago

Learn More About Information Security Analyst Jobs

How much does an Information Security Analyst earn in Dothan, AL?

The average information security analyst in Dothan, AL earns between $55,000 and $111,000 annually. This compares to the national average information security analyst range of $71,000 to $135,000.

Average Information Security Analyst Salary In Dothan, AL

$78,000
Job type you want
Full Time
Part Time
Internship
Temporary