Information Security Analyst-Intermediate

Arlington, Virginia
Non-Cyber Federal
10-16-2019
Arlington
Depends on Experience 
Full-Time
1st Shift

Information Management Resources, Inc. (IMRI) is an industry-leading provider of cybersecurity, technology, program management, and engineering services for government organizations and commercial enterprises. For over 27 years, IMRI has employed solution-oriented team members utilizing their unique skills to successfully deliver services to our clients nationwide.  IMRI continues to be ranked as one of the fastest growing private companies in America by Inc. 5000 and was awarded the 2018 Gold Stevie Award for the Most Innovative Company of the Year. 

We offer competitive benefits including: paid vacation and sick leave, medical, dental, vision, life insurance, long term disability, AD&D, 401k and voluntary benefits. By joining the IMRI team, you will be providing support to protect our country’s most critical infrastructure.  We know that when you join IMRI, everyone wins — You, the Customer, and the entire IMRI Team!

This opportunity addresses the client's Information Technology Information Assurance Division (IAD) requirements for staff assistance for information security program management and conducting Risk and Vulnerability Assessments (RVAs) of Client's FISMA information systems. Knowledge areas include:

•        Knowledge of NIST Guidelines, DHS and FISMA Cyber Security compliance requirements

•        Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol (TCP) and Internet Protocol (IP), Open System Interconnection Model (OSI),              Information Technology Infrastructure Library, v3 (ITIL)

•        Knowledge of system and application security threats and vulnerabilities

•        Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services

•        Knowledge of general attack stages (e.g., foot printing and scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation,           covering tracks, etc.)

•        Knowledge of network access, identity and access management (e.g., public key infrastructure, PKI)

•        Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of Defense-in-Depth)

•        Knowledge of IA principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)

•        Skill in assessing the robustness of security systems and designs

•        Ability to identify systemic security issues based on the analysis of vulnerability and configuration data

•        Conducting required reviews as appropriate within environment (e.g., Technical Surveillance Countermeasure Reviews (TSCM), TEMPEST countermeasure reviews)

•        Perform technical (evaluation of technology) and non-technical (evaluation of people and operations) risk and vulnerability assessments of relevant technology focus           areas (i.e., local computing environment, network and infrastructure, enclave boundary, and supporting infrastructure)

•        Knowledge of applicable Computer Network Defense policies, regulations, and compliance documents specifically related to Computer Network Defense auditing

•        Ability to perform requirements related to cybersecurity during OIG audits, to  leadership, and to Information System Security Officers (ISSOs). 

EEO/Affirmative Action Statement and Non-Discrimination Policy IMRI is an Equal Employment Opportunity employer committed to maintaining a non-discriminatory, diverse work environment. In accordance with Title VII of the Civil Rights Act of 1964, Section 503 of the Rehabilitation Act of 1973, Vietnam Era Veteran’s Readjustment Assistance Act of 1974 (VEVRAA), Americans with Disabilities) (ADA), and other federal, state, and local anti-discrimination laws, IMRI does not unlawfully discriminate against any person on the basis of race, color, religion, sex, national origin, ancestry, genetic information, age, marital status, sexual orientation, physical or mental disability, or status as a special disabled veteran or other veteran. IMRI will take affirmative action to assure equal opportunity for employment is provided with regard to all personnel actions. This is including but not limited to: recruitment, selection, compensation, benefits, training, promotion, demotion, layoff, termination and all other terms and conditions of employment