Share this Job

Senior Information Assurance Analyst

Location: 

Tampa, FL, US, 33621

Job ID: 104471 

 

The Leonardo DRS Global Enterprise Solutions business delivers world-class mission-critical satellite communications and security solutions with unmatched reliability and support anywhere in the world.

Job Summary

Position Summary:
Maintain the day-to-day operations of the in-place security solutions while identifying, investigating, and resolving security breaches detected by those systems. Secondary tasks may include involvement in the implementation of new security solutions, participation in the creation and maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments. The Information Assurance Analyst is expected to be fully aware of the enterprise’s security goals as established by stated policies, procedures, and guidelines and to actively work towards upholding those goals.
 

Job Responsibilities

Duties and Responsibilities
•    Maintain the day-to-day operations of the in-place security solutions while identifying, investigating, and resolving security breaches detected by those systems
•    Secondary tasks may include involvement in the implementation of new security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments
•    The Information Assurance Analyst is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals
•    Participate in the planning, design, and implementation of enterprise security architecture
•    Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures)
•    Participate in the planning, design and test of an enterprise Business Continuity Plan and Disaster Recovery Plan
•    Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors
•    Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security
•    Perform the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security documents specifically
•    Maintain up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.)
•    Maintain operational configurations of all in-place security solutions as per the established baselines
•    Monitor all in-place security solutions for efficient and appropriate operations
•    Review logs and reports of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.). Interpret the implications of that activity and devise plans for appropriate resolution
•    Participate in investigations into problematic activity and perform incident response functions as needed
•    Participate in the design and execution of vulnerability assessments, penetration tests and security audits
•    Provide on-call support for end users for all in-place security solutions
•    Coordinate with end users and technical staff to implement and maintain systems that utilize industry best practices to meet business objectives, while maintaining the security and integrity of the data, system, and network
•    Generate metrics, project status reports and operating status reports for management and team members
•    Prepare, coordinate, and support user training and documentation and provide technical assistance for post-implementation support issues
•    Provide technical support to users
•    Perform routine to moderately complex problem analysis and resolution design for systems and applications

 

 

Job Responsibilities Part II


•    Support, communicate, reinforce, and defend the mission, values and culture of the organization
•    Maintain timely and accurate helpdesk records using the ticket management system
•    Update job knowledge by participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations
•    Accomplish organization goals by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments
•    Protect organization's value by preserving the confidentiality of information

•    Ability to work independently as well as cooperatively in a team-oriented environment
•    Ability to successfully interact with all levels of management, other IT professionals and end-users
•    Strong analytic and problem-solving skills
•    Open and responsive to change and demonstrates a commitment to the process of continuous improvement by identifying and responding actively and with sensitivity to the needs of all customers

Additional Desirable Qualifications
•    Computing Environment Certifications are desired, to include: Microsoft Technology Associate (MTA); Microsoft Certified Solutions Associate (MCSA); Microsoft Certified Technology Specialist (MCTS): Windows Server; Intel Security Certified Product Specialist (ISCPS)-ePO; Tenable Certified Nessus Auditor (TCNA). 
•    Prior experience serving in roles equivalent to DOD 8570.01-M IA Technical (IAT) I or II is desirable.
•    Additional experience in any of the following tools or technologies, while not required, would also be desirable:
o    DISA Assured Compliance Assessment Solution (ACAS)
o    DISA Host-bases Security System (HBSS)
o    OpenSCAP 1.0
o    Enterprise Mission Assurance Support Service (eMass)

Qualifications

•    Bachelor's Degree in Business Administration, Management Information Systems, Mathematics, Industrial Technology, Computer Sciences, a related field, equivalent experience, or associate level vendor certification(s)
•    5+ years of relevant experience
•    Demonstrated knowledge of state-of-the-art telecommunications security as well as data security across multiple computer platforms
•    Demonstrated proficiency in the following software applications and operating systems:
    o    Installation and administration McAfee VirusScan with e-Policy Orchestrator
    o    User-level interaction with Splunk Enterprise (create/modify queries, basic user configuration tasks)
    o    Privileged-level access to Microsoft Windows Server 2012/2016 and Windows 10, with full understanding of Active Directory concepts and methodologies
    o    Installation and administration of Tenable Nessus
    o    Installation and administration of DISA SCAP Compliance Checker
    o    Fundamental understanding and user-level interaction with open source software operating systems, such as Red Hat, SELinux, SUSE, or similar distributions
    o    Fundamental understanding and user-level interaction with VMware architectures and products, including vCenter
    o    IaaS, PaaS, SaaS
    o    Basic web application development security
•    Demonstrated proficiency in the review, auditing, and evaluation of applied Defense Information Systems Agency (DISA) Security Technical Implementation Guidance (STIG) and Security Requirements Guides (SRG), to include:
    o    Operating Systems
    o    Networks – Infrastructure, backbone transport
    o    Applications – Desktop, antivirus, database, remote desktop
    o    Deployment and use of Open Vulnerability and Assessment Language (OVAL)- and Security Content Automation Protocol (SCAP)- compliant tools
•    Demonstrated fundamental understanding by evidence of training certificate or professional experience of one or more of the following Security Control or Certification Frameworks:
    o    Application, implementation, or verification of National Institute of Standards and Technology (NIST) Special Publication 800-53 technical controls or enhancements
    o    Application, implementation, or verification of technical controls required by DoD Risk Management Framework (RMF)
    o    Application, implementation, or verification of CNSSI 1253 technical controls or enhancements
    o    Application, implementation, or verification of ISO/IEC 27003 technical controls or enhancements
•    Applicants must have a current DoD-approved Professional Baseline Certification (one or more of the following): CompTIA Security+ CE, Global Information Assurance Certification (GIAC) Security Essentials Certification (GSEC), ISC2 Systems Security Certified Practitioner (SSCP), or Cisco Certified Network Associate (CCNA) Security. 
•    Active Top Secret clearance with SCI eligibility is required

COVID-19 continues to significantly impact our employees, families, and communities. With employee health and safety as our top priority, Leonardo DRS is taking action to address the risk and uncertainty COVID variants pose in the workplace.  We require all newly hired employees in the United States to be fully vaccinated, unless a medical or religious accommodation is formally approved by Leonardo DRS prior to commencing employment.

Leonardo DRS, Inc. and its subsidiaries and affiliates are equal opportunity employers and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability status, protected veteran status, or any other characteristic protected by law.

Our Mission

To build shareholder value through a commitment to high ethical standards and a superior performance culture focused on customers, employees, financial results and corporate citizenship.

Our Vision

To be the leading mid-tier defense technology company in the U.S.

Our Values

Our employees appreciate a culture of open honest communications, and fair and equitable treatment. We accomplish this through:

INTEGRITY. At Leonardo DRS ethics and accountability always comes first.

OPERATIONAL EXCELLENCE. We set high standards of performance for ourselves and others. We consistently deliver excellent products and services. We adhere to quality levels demanded by our customers. We assume responsibility and accountability to achieve excellence. We settle for nothing less.

CUSTOMER FOCUS. We go above and beyond to meet customer needs, and work to create long-term relationships with our customers.

DIVERSITY, EQUITY, & INCLUSION. We accept unconditionally the value that every individual has to offer. We embrace different points of view. We continually foster an environment that enables all employees to contribute to their full potential. We cooperate together as a diverse workforce serving a diverse population.

INNOVATION.  At Leonardo DRS, innovation is in our DNA. We have built this company through the innovative ideas of our employees and continue to foster an environment that rewards new ideas to help our government and military customers save lives, solve critical problems and modernize to ensure mission success for years to come.

Leonardo DRS, Inc. is committed 
to building a diverse and inclusive workplace where everyone feels valued.  We are committed to building a workplace where equal employment opportunities are available to all applicants and employees without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by applicable law. At Leonardo DRS, we believe that a diverse and inclusive environment makes us a stronger Company. We embrace different points of view, respect one another in the workplace, and understand that an inclusive environment furthers creativity, innovation, and business performance. 

For additional information on  Leonardo DRS, please visit our website at www.leonardodrs.com


Nearest Major Market: Tampa