Senior Security Specialist - HVA Analyst

PSI is seeking a highly motivated Senior Security Specialist - HVA Analyst to join our team in the D.C. Metro area to support our government clients. The Senior Security Specialist - HVA Analyst is a multifaceted role that collaborates with other teams across the business.

A successful candidate will be a part of the professional services team regarding federal information and cybersecurity doctrine, including FISMA, and the NIST issuances with a focus on High-Value Assets (HVA) and Cybersecurity Framework (CSF) in support of cybersecurity operations for the Department of the Treasury.

In addition, you will be providing onsite support to conduct all-source analysis, and targeting to identify, monitor, assess, and counter the threat posed by foreign cyber actors against the U.S. Department of the Treasury's Departmental Offices (DO), critical infrastructure, and cyber-related interests. The primary purpose of this effort is to assist the Department of the Treasury in strengthening its overall cybersecurity posture and improving the maturity of agency cybersecurity programs.

Essential Functions and Job Responsibilities:

• Develop procedures and templates associated with the Security Assessment and Authorization (SA&A) process and activities to ensure compliance with federal guidelines and policies.
• Provide support for the annual process for identifying, categorizing, and prioritizing HVAs. This process was developed for identifying which of Treasury's nearly 368 systems qualify as HVAs by using sensitivity criteria that have been previously defined by Office of Management and Budget (OMB) Memorandum M-17-09. Typical activities include data collection, data analysis, and preparation of documentation, coordination, and collaboration across Treasury Bureaus.
• Support the continued development and maintenance of the HVA identification, categorization, and prioritization process as required.
• Identify additional approaches to maintain and improve requirements.
• Identify and integrate data from multiple organizations and business functions ensuring all Treasury Cyber Critical Infrastructure are properly identified.
• Coordinate the extension of ACIO/CS risk governance to bureau-wide risk governance.
• Review and revise existing processes and policies for maintenance and continuous program improvement.
• Research, develop, maintain, and update HVA documents, artifacts, and reports as required.
• Capture, maintain, and submit all required Plans of Actions & Milestones (POA&M) and Remediation Plans per BOD 18-02 and OMB M 19-03.
• Identify vulnerabilities and assist the HVA program office to implement timely remediation.
• Recommend an approach for prioritizing HVAs based on criticality and importance.
• Provide input to HVA Strategy, Implementation Plan, Timeline, and Treasury HVA policy.

Minimum Qualifications :

• Bachelor's degree in Information Technology, Computer Science, Information Systems, or related field.
• At least 10 years of federal information security experience with a minimum of 3 years of relevant experience involving HVA and CSF support with demonstrated leadership roles.
• Professional certification related to computer science or information assurance.
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM), Certified
  • Information Systems Auditor (CISA), and/or CompTIA Security .

Required Skills & Experience:

• Experience working for the Big Four, Previous experience at the Pentagon and/or Joint Level assignments. Prior experience with HVAs and/or IC experience. Project/Program management experience.

Required Technical/Business Tools Experience:

• Ability to be adjudicated for access to Sensitive but Unclassified (SBU) / Controlled Unclassified Information (CUI) following background suitability and records check.
• Mastery of, and fluency in, the NIST SP 800-3X series and SP 800-18, and a solid understanding of all other NIST FISMA issuances, as well as federal statutes, security-relevant OMB circulars and memoranda, federal information processing standards, and other federal security doctrines.
• Ability to participate as a senior member of a technical team that is performing audit support, and SSP process and artifact design and development.
• Ability to tailor information security processes and tools, based on changing landscapes, doctrine, and risk scenarios.
• Proficiency in performing work in a federal agency that has FISMA, OMB Cybersecurity & Privacy, and NIST SP/FIPS compliance requirements.
• Fluency in both spoken and written US English, including the ability to work with highly technical and specialized content. Must be able both prepare and deliver such content, verbally and in writing, but also comprehend such content from others, in both spoken and written form.
• Previous Department of Treasury experience highly desirable.

Planned Systems International provides our customers with value-added management consulting and information technology services that consistently deliver success, and we are recognized as a world-class provider of innovative solutions that benefit mankind. From Systems Lifecycle Support and Healthcare IT Solutions to Network and Desktop Solutions and e-Business, PSI is focused on making our clients' businesses run smoother and better. With a highly trained technical staff, we apply state-of-the-art information technologies, the industry's most advanced methodologies, and broad-based support services to clients in U.S. Government agencies and the commercial sector.

PSI is an Equal Opportunity Employer.

All qualified candidates are encouraged to apply, including:

Minorities, Women, Individuals with Disabilities, and Protected Veterans.

NOTE TO JOB SERVICE: VEVRAA Federal Contractor requesting priority referrals of Protected Veterans.