Information Assurance

Planned Systems International (PSI), a Government Contractor, has an immediate opportunity available for a skilled, knowledgeable, and experienced Information Assurance Security Professional to support a Department of State contract, the Protected Health Information Management Services (PHIMS) contract. The IA professional will assist in protecting customer information, assets, systems and applications that store, process, and communicate data. The IA professional will assist in evaluating the security posture of the information system and assets to attack, from either internal or external threats. The IA professional, along with the system engineers will use various assessment tools including Tenable, Wazuh, CrowdStrike to continuously monitor the system/applications. He will work with other team members to determine an overall a risk assessment of the system/applications including identifying risks and mitigation requirements and developing accreditation recommendations.

Clearacne Level: Sceret Clearacne

Location: Washington, DC

Essential Functions and Job Responsibilities:

• Experience with NIST Risk Management Framework (RMF) including:
  • NIST 800-53, rev.4 standards and the Authority-to-Operate (ATO) processes
  • Create Assessment and Authorization (A&A) packages with the responsibility for gathering information from system owners, applying data to the appropriate templates, and attending meetings in support of the effort
  • Prepare for and conduct an annual security assessment of the system/application
  • Conduct a monthly review of the controls designated by the ISSO as part of the continuous monitoring effort
• Create and manage the required NIST documentation and artifacts such as:
• System Security Plan (SSP)
• Information System Contingency Plan (ISCP)
• Configuration Manage Plan (CMP)
• Incident Response Plan (IRP)
• Plan of Actions and Milestones (POAM)
• Privacy Impact Assessment (PIA)
• Review and edit draft security artifacts to ensure compliance with A&A, FISMA, and FedRAMP requirements
• Work with the system engineers to conduct and remediate security scans of the system/application and identify, report, and resolve security violations
• Establishes and satisfies information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands
• Performs vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle
• Recommends information assurance/security solutions to support customers' requirements
• Provide weekly reports on the system/application activities and security posture to the contractor and Department of State (DoS) management.
• Lead efforts to upload relevant data and documents into the DoS (Xacta) document management application.
• Coordinates the quality-control activities required to ensure the accuracy and adequacy of each deliverable, including in-process and final reviews, editing for compliance with all applicable specifications and standards, validation, and change verification

Minimum Requirements:

• Bachelor's degree in a relevant field of study such as: computer science, programming, or information systems
• Five years of experience as an Information Assurance professional in developing, testing, and/or reviewing organizational information security.
• Previous government experience with proven experience in obtaining Authority To Operate (ATO) for customers and experience interfacing with customers at different levels.
• Experience implementing NIST 800-53 security controls.
• Excellent written and verbal skills and exhibit excellent customer service skills.
• Professional certification related to computer science or information assurance. A CISSP is highly desirable

Planned Systems International provides our customers with value-added management consulting and information technology services that consistently deliver success, and we are recognized as a world-class provider of innovative solutions that benefit mankind. From Systems Lifecycle Support and Healthcare IT Solutions to Network and Desktop Solutions and e-Business, PSI is focused on making our clients' businesses run smoother and better. With a highly trained technical staff, we apply state-of-the-art information technologies, the industry's most advanced methodologies, and broad-based support services to clients in U.S. Government agencies and the commercial sector.

PSI is an Equal Opportunity Employer.
All qualified candidates are encouraged to apply, including:
Minorities, Women, Individuals with Disabilities, and Protected Veterans.
NOTE TO JOB SERVICE: VEVRAA Federal Contractor requesting priority referrals of Protected Veterans.