Information Assurance Specialist Senior
Job Locations
US-TX-San Antonio
Job ID |
2024-3125
|
Category |
Information Technology
|
Type |
Full Time
|
Job Description
We are currently seeking an experienced and highly skilled Information Assurance/Security Specialist Senior Level to join our onsite team in San Antonio, TX. As an Information Assurance/Security Specialist, you will be responsible for implementing security policies and procedures, developing and monitoring security controls, conducting compliance audits, and managing incident response activities. If you have a strong background in information security, expertise in policy implementation, and a commitment to safeguarding information systems, we encourage you to apply for this position. Responsibilities
Implement and enforce security policies and procedures to ensure compliance with applicable laws, regulations, and standards.
- Develop, implement, and monitor security controls to protect information systems from threats and vulnerabilities.
- Conduct regular audits and assessments to ensure compliance with security policies and regulatory requirements.
- Identify, assess, and mitigate security risks to safeguard information systems and data.
- Create and maintain security documentation, including security plans, policies, procedures, and guidelines.
- Develop and conduct security training and awareness programs to educate users on security best practices and compliance requirements.
- Support the development and execution of incident response plans to address security breaches and incidents effectively.
- Provide recommendations for security improvements based on audit findings, threat assessments, and compliance requirements.
- Prepare for security inspections and assessments by gathering necessary documentation, evidence, and reports.
- Provide support during readiness inspections, including responding to inquiries and demonstrating compliance with security policies.
- Identify deficiencies and gaps in security practices during inspections and develop corrective action plans to address them.
- Generate and submit detailed reports on inspection findings, corrective actions, and compliance status to relevant stakeholders.
- Conduct follow-up activities to ensure identified deficiencies are addressed and resolved in a timely manner.
- Implement lessons learned from inspections to improve security practices and readiness for future assessments.
- Monitor information systems for potential security threats, vulnerabilities, and incidents using various security tools and technologies.
- Analyze threat intelligence data to identify trends, patterns, and emerging threats that could impact the organization's security posture.
- Coordinate and respond to security incidents, including investigation, containment, remediation, and recovery activities.
- Generate and manage security alerts and notifications to inform relevant stakeholders about potential threats and incidents.
- Perform regular vulnerability assessments and scans to identify and mitigate security weaknesses in information systems.
- Manage and analyze security logs and event data to detect and respond to suspicious activities and anomalies.
- Produce and distribute regular reports on threat activities, incident response actions, and security posture to management and stakeholders.
- Develop, implement, and maintain System Security Plans (SSPs) for information systems in accordance with regulatory requirements.
- Support the security authorization process, including conducting security assessments and obtaining necessary approvals.
- Monitor information systems for compliance with security policies, standards, and guidelines.
- Manage access control mechanisms to ensure only authorized users have access to information systems and data.
- Conduct regular security assessments and audits to evaluate the effectiveness of security controls and identify areas for improvement.
- Maintain comprehensive security documentation, including SSPs, risk assessments, security test plans, and audit reports.
- Provide security advisories and guidance to system owners, administrators, and users to enhance the security of information systems.
- Coordinate with other security professionals, system administrators, and stakeholders to address security issues and implement best practices.
Qualifications
Required
- One or more of the following certifications (IAT III):
- CASP+ CE
CCNP Security CISA CISSP (or Associate) GCED GCIH CCSP
- One or more of the following certifications (IAM III):
- CISM
CISSP (or Associate) GSLC CCISO
- Six (6) years of progressive experience demonstrating the required proficiency.
- Bachelor's degree and/or equivalency
- Active Secret Clearance
Preferred
- Current or past DHA support experience preferred
- Federal Consulting Industry Experience Preferred
#LI-Onsite
About Us
Perks of working at NetImpact Strategies
- Your health comes first - we offer comprehensive medical, dental, & vision insurance that starts the first of the month after you join the team
- Invest in your future - 401(k) Plan - Immediately vested employer contributions; no matching required
- Work hard, play hard - we offer a generous Paid Time Off (PTO) policy and observe ALL ten (10) federal holidays
- Pawsitively pawesome - Pet Insurance (because our little critters are part of our families, too!)
- Invest in your education - Tuition reimbursement, internal training programs, & company-sponsored industry certifications
- Be part of a dynamic and collaborative work environment recently ranked by The Washington Post as a Top Work Place in 2019, 2021,2022, & 2023!
- Have fun and celebrate and give back - Team building activities, community volunteering, quarterly HQ days, & an offsite annual awards banquet
ABOUT US NetImpact Strategies Inc. (NetImpact) has been a Trusted Advisor driving impact through digital transformation for the Federal Government for over a decade. We solve complex problems with innovation and agility to create meaningful, transformative, and enduring change. As Trusted Advisors, NetImpact professionals partner with customer agencies to deliver solutions that empower them to not only meet their missions but also realize their strategic vision through agile, outcome-focused solutions addressing both strategic and tactical requirements. We design and implement comprehensive, tailored solutions that are both mindful of the client's culture and organizational dynamics. NetImpact's core values and commitment to a customer and results-oriented delivery approach has propelled our growth and enabled us to deliver impactful value across Strategic Consulting, Process Automation, Cloud, DevSecOps, Data and Analytics, and Cyber Security for the Federal Government. ACCESSIBILITY NOTE NetImpact Strategies is committed to complying with all applicable provisions of the Americans with Disabilities Act, as amended ("ADA"), and applicable state and local laws. It is NetImpact's policy not to discriminate against any qualified person or applicant with regard to any terms or conditions of employment on the basis of such individual's disability. Consistent with this policy of non-discrimination, NetImpact will provide reasonable accommodations to an individual with a disability, as defined in the ADA or applicable law, who has made NetImpact aware of his/her disability, unless doing so would cause undue hardship to NetImpact. If you are an applicant and need reasonable accommodation when applying for job opportunities within NetImpact, or request reasonable accommodation to utilize NetImpact's online employment application, please contact careers@netimpactstrategies.com. EQUAL OPPORTUNITY EMPLOYER NetImpact is committed to the development of a creative, diverse, and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at NetImpact will be based on merit, qualifications, and abilities. NetImpact does not discriminate against any person because of race, color, creed, religion, sex (including gender identity, sexual orientation, and pregnancy), marital status, national origin, disability, age, veteran status, genetic information or any other characteristic protected by federal, state, and local laws (referred to as "protected status").
Need help finding the right job?
We can recommend jobs specifically for you!
Click here to get started.
|